summaryrefslogtreecommitdiff
path: root/system/libxml2/APKBUILD
diff options
context:
space:
mode:
authorMax Rees <maxcrees@me.com>2020-03-03 14:33:49 +0000
committerMax Rees <maxcrees@me.com>2020-03-09 21:27:48 -0500
commit1ca9f51b0901a84b56258b19a78acf4c01f93eb5 (patch)
tree41c58a426fab16eb544dbd1a017d152c502a800b /system/libxml2/APKBUILD
parent680d3d2f67370934c1aff033819eef438bcb6f94 (diff)
downloadpackages-1ca9f51b0901a84b56258b19a78acf4c01f93eb5.tar.gz
packages-1ca9f51b0901a84b56258b19a78acf4c01f93eb5.tar.bz2
packages-1ca9f51b0901a84b56258b19a78acf4c01f93eb5.tar.xz
packages-1ca9f51b0901a84b56258b19a78acf4c01f93eb5.zip
system/libxml2: patch CVE-2019-20388 and CVE-2020-7595 (#234)
Diffstat (limited to 'system/libxml2/APKBUILD')
-rw-r--r--system/libxml2/APKBUILD11
1 files changed, 9 insertions, 2 deletions
diff --git a/system/libxml2/APKBUILD b/system/libxml2/APKBUILD
index 1d1664047..73b6eb2a0 100644
--- a/system/libxml2/APKBUILD
+++ b/system/libxml2/APKBUILD
@@ -2,7 +2,7 @@
# Maintainer: A. Wilcox <awilfox@adelielinux.org>
pkgname=libxml2
pkgver=2.9.10
-pkgrel=0
+pkgrel=1
pkgdesc="XML parsing library"
url="http://www.xmlsoft.org/"
arch="all"
@@ -16,6 +16,8 @@ subpackages="$pkgname-doc $pkgname-dev py-libxml2:py"
provides="$pkgname-utils=$pkgver-r$pkgrel"
source="ftp://ftp.xmlsoft.org/${pkgname}/${pkgname}-${pkgver}.tar.gz
python-segfault-fix.patch
+ CVE-2019-20388.patch
+ CVE-2020-7595.patch
"
# secfixes:
@@ -25,6 +27,9 @@ source="ftp://ftp.xmlsoft.org/${pkgname}/${pkgname}-${pkgver}.tar.gz
# - CVE-2016-9318
# 2.9.4-r4:
# - CVE-2017-5969
+# 2.9.10-r1:
+# - CVE-2019-20388
+# - CVE-2020-7595
prepare() {
default_prepare
@@ -62,4 +67,6 @@ py() {
}
sha512sums="0adfd12bfde89cbd6296ba6e66b6bed4edb814a74b4265bda34d95c41d9d92c696ee7adb0c737aaf9cc6e10426a31a35079b2a23d26c074e299858da12c072ed libxml2-2.9.10.tar.gz
-384b3d2031cd8f77528190bbb7652faa9ccb22bc604bcf4927e59046d38830dac38010828fe1568b6514976f725981a6d3ac1aa595d31477a36db2afe491452c python-segfault-fix.patch"
+384b3d2031cd8f77528190bbb7652faa9ccb22bc604bcf4927e59046d38830dac38010828fe1568b6514976f725981a6d3ac1aa595d31477a36db2afe491452c python-segfault-fix.patch
+48ea30bd8035f3b60825ce24185fbec1e7423e683f64626405fd96daaaa14011e7f7c180a7a87d7ff8f73983b0e221974cbce619d04b932c1db2110a13be014e CVE-2019-20388.patch
+90db832e60c700e971669f57a54fdb297660c42602089b4e77e013a7051c880f380f0c98c059d9f54de99855b2d9be78fcf0639443f3765a925b52fc093fb4d9 CVE-2020-7595.patch"