summaryrefslogtreecommitdiff
path: root/system/cvs/APKBUILD
diff options
context:
space:
mode:
authorMax Rees <maxcrees@me.com>2019-06-21 12:09:17 -0400
committerMax Rees <maxcrees@me.com>2019-06-21 12:09:17 -0400
commit1320a328ef2ea539881f6d14c79ca17ef3024f2d (patch)
tree6c2ba6b8b6115f0dee40ef062392b6fd871d3ede /system/cvs/APKBUILD
parent9e47f6ce3f65badc053200a4182abcafe85310da (diff)
downloadpackages-1320a328ef2ea539881f6d14c79ca17ef3024f2d.tar.gz
packages-1320a328ef2ea539881f6d14c79ca17ef3024f2d.tar.bz2
packages-1320a328ef2ea539881f6d14c79ca17ef3024f2d.tar.xz
packages-1320a328ef2ea539881f6d14c79ca17ef3024f2d.zip
system/cvs: patch for CVE-2010-3846 and CVE-2017-12836
Diffstat (limited to 'system/cvs/APKBUILD')
-rw-r--r--system/cvs/APKBUILD13
1 files changed, 11 insertions, 2 deletions
diff --git a/system/cvs/APKBUILD b/system/cvs/APKBUILD
index 8dfcca172..f9160f62b 100644
--- a/system/cvs/APKBUILD
+++ b/system/cvs/APKBUILD
@@ -2,7 +2,7 @@
# Maintainer: A. Wilcox <awilfox@adelielinux.org>
pkgname=cvs
pkgver=1.11.23
-pkgrel=1
+pkgrel=2
pkgdesc="Concurrent Versions System"
url="https://www.nongnu.org/cvs/"
arch="all"
@@ -14,8 +14,15 @@ install=
subpackages="$pkgname-doc"
source="https://ftp.gnu.org/non-gnu/cvs/source/stable/$pkgver/$pkgname-$pkgver.tar.gz
cvs-musl.patch
+ CVE-2010-3846.patch
+ CVE-2017-12836.patch
"
+# secfixes:
+# 1.11.23-r2:
+# - CVE-2010-3846
+# - CVE-2017-12836
+
build() {
cd "$builddir"
./configure \
@@ -36,4 +43,6 @@ package() {
}
sha512sums="e486df1d2aaf13605b9abc8ea5e8e2261dd015483cef82a9489919646f0d5d52a7bf4385f4fdb5f845a9c2287184153a0d456510089f1e2609957ba48ad9f96a cvs-1.11.23.tar.gz
-7de04d5ec797430f8405b00e271d9edb5dffa3be855fc1e1dc35b134d981418c969486da668a78e1da88a4dba57952bfa14ffafbe3ff3ffc081de9cc908cf245 cvs-musl.patch"
+7de04d5ec797430f8405b00e271d9edb5dffa3be855fc1e1dc35b134d981418c969486da668a78e1da88a4dba57952bfa14ffafbe3ff3ffc081de9cc908cf245 cvs-musl.patch
+eed761af81c9bcd3edd898559e9be25c6612bdef19984cc6380a08039525179fa34d9ade6c55c1b4f23e495156b34cafeab3e63cfd120c0e68a42aa7992e5e85 CVE-2010-3846.patch
+2775f5bde63d7eaee8c8f7467a8b43d533abbc172cf6b2d6ca7088203133a135e4e6a2a8028191d0102300913165dbd54fcf1f43683e742cb32f04ab06aca121 CVE-2017-12836.patch"