diff options
author | Ludovic Courtès <ludo@gnu.org> | 2016-04-28 18:00:21 +0200 |
---|---|---|
committer | Ludovic Courtès <ludo@gnu.org> | 2016-04-28 18:03:01 +0200 |
commit | f28cb89e4831ad2bbb1bc3131be3e23149facfad (patch) | |
tree | d4161118d989de69cf0385465fe03cb5063225d7 /gnu | |
parent | 5c6a062d48e36d6f086c0308d57c65df87b3c518 (diff) | |
download | guix-f28cb89e4831ad2bbb1bc3131be3e23149facfad.tar guix-f28cb89e4831ad2bbb1bc3131be3e23149facfad.tar.gz |
gnu: libtasn1: Replace 4.7 with 4.8 [fixes CVE-2016-4008].
* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
Diffstat (limited to 'gnu')
-rw-r--r-- | gnu/packages/tls.scm | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm index fac26b8bda..0f4441d70c 100644 --- a/gnu/packages/tls.scm +++ b/gnu/packages/tls.scm @@ -65,8 +65,22 @@ for transmitting machine-neutral encodings of data objects in computer networking, allowing for formal validation of data according to some specifications.") + (replacement libtasn1/fixed) (license license:lgpl2.0+))) +(define libtasn1/fixed ;for CVE-2016-4008 + (package + (inherit libtasn1) + (source + (let ((version "4.8")) + (origin + (method url-fetch) + (uri (string-append "mirror://gnu/libtasn1/libtasn1-" + version ".tar.gz")) + (sha256 + (base32 + "04y5m29pqmvkfdbppmsdifyx89v8xclxzklpfc7a1fkr9p4jz07s"))))))) + (define-public p11-kit (package (name "p11-kit") |