unofficial mirror of guix-devel@gnu.org 
 help / color / mirror / code / Atom feed
* [PATCH 0/1] mit-krb5 security update CVE-2016-3120
@ 2016-08-23  3:14 Leo Famulari
  2016-08-23  3:14 ` [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120] Leo Famulari
  0 siblings, 1 reply; 5+ messages in thread
From: Leo Famulari @ 2016-08-23  3:14 UTC (permalink / raw)
  To: guix-devel

This patch uses a graft to provide the latest release of mit-krb5, in
order to fix CVE-2016-3120:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3120

Leo Famulari (1):
  gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120].

 gnu/packages/mit-krb5.scm | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

-- 
2.9.3

^ permalink raw reply	[flat|nested] 5+ messages in thread

* [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120].
  2016-08-23  3:14 [PATCH 0/1] mit-krb5 security update CVE-2016-3120 Leo Famulari
@ 2016-08-23  3:14 ` Leo Famulari
  2016-08-23  9:36   ` Mark H Weaver
  0 siblings, 1 reply; 5+ messages in thread
From: Leo Famulari @ 2016-08-23  3:14 UTC (permalink / raw)
  To: guix-devel

* gnu/packages/mit-krb5.scm (mit-krb5)[replacement]: New field.
(mit-krb5-1.14.3): New variable.
---
 gnu/packages/mit-krb5.scm | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/gnu/packages/mit-krb5.scm b/gnu/packages/mit-krb5.scm
index 2b8839c..3d11f3a 100644
--- a/gnu/packages/mit-krb5.scm
+++ b/gnu/packages/mit-krb5.scm
@@ -1,6 +1,7 @@
 ;;; GNU Guix --- Functional package management for GNU
 ;;; Copyright © 2012, 2013 Andreas Enge <andreas@enge.fr>
 ;;; Copyright © 2015, 2016 Mark H Weaver <mhw@netris.org>
+;;; Copyright © 2016 Leo Famulari <leo@famulari.name>
 ;;;
 ;;; This file is part of GNU Guix.
 ;;;
@@ -30,6 +31,7 @@
 (define-public mit-krb5
   (package
     (name "mit-krb5")
+    (replacement mit-krb5-1.14.3)
     (version "1.14.2")
     (source (origin
               (method url-fetch)
@@ -82,3 +84,17 @@ cryptography.")
     (license (non-copyleft "file://NOTICE"
                            "See NOTICE in the distribution."))
     (home-page "http://web.mit.edu/kerberos/")))
+
+(define mit-krb5-1.14.3
+  (package
+    (inherit mit-krb5)
+    (source
+      (let ((version "1.14.3"))
+        (origin
+          (method url-fetch)
+          (uri (string-append "http://web.mit.edu/kerberos/dist/krb5/"
+                              (version-major+minor version)
+                              "/krb5-" version ".tar.gz"))
+          (sha256
+           (base32
+            "1jgjiyh1sp72lkxvk437lz5hzcibvw99jc4ihzfz03fg43aj0ind")))))))
-- 
2.9.3

^ permalink raw reply related	[flat|nested] 5+ messages in thread

* Re: [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120].
  2016-08-23  3:14 ` [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120] Leo Famulari
@ 2016-08-23  9:36   ` Mark H Weaver
  2016-08-23 10:43     ` Mark H Weaver
  0 siblings, 1 reply; 5+ messages in thread
From: Mark H Weaver @ 2016-08-23  9:36 UTC (permalink / raw)
  To: Leo Famulari; +Cc: guix-devel

Leo Famulari <leo@famulari.name> writes:
> * gnu/packages/mit-krb5.scm (mit-krb5)[replacement]: New field.
> (mit-krb5-1.14.3): New variable.

Looks good to me, please push.

    Thanks!
      Mark

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120].
  2016-08-23  9:36   ` Mark H Weaver
@ 2016-08-23 10:43     ` Mark H Weaver
  2016-08-23 15:36       ` Leo Famulari
  0 siblings, 1 reply; 5+ messages in thread
From: Mark H Weaver @ 2016-08-23 10:43 UTC (permalink / raw)
  To: Leo Famulari; +Cc: guix-devel

Mark H Weaver <mhw@netris.org> writes:

> Leo Famulari <leo@famulari.name> writes:
>> * gnu/packages/mit-krb5.scm (mit-krb5)[replacement]: New field.
>> (mit-krb5-1.14.3): New variable.
>
> Looks good to me, please push.

I went ahead and pushed this.

    Thanks,
      Mark

^ permalink raw reply	[flat|nested] 5+ messages in thread

* Re: [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120].
  2016-08-23 10:43     ` Mark H Weaver
@ 2016-08-23 15:36       ` Leo Famulari
  0 siblings, 0 replies; 5+ messages in thread
From: Leo Famulari @ 2016-08-23 15:36 UTC (permalink / raw)
  To: Mark H Weaver; +Cc: guix-devel

On Tue, Aug 23, 2016 at 06:43:16AM -0400, Mark H Weaver wrote:
> Mark H Weaver <mhw@netris.org> writes:
> 
> > Leo Famulari <leo@famulari.name> writes:
> >> * gnu/packages/mit-krb5.scm (mit-krb5)[replacement]: New field.
> >> (mit-krb5-1.14.3): New variable.
> >
> > Looks good to me, please push.
> 
> I went ahead and pushed this.

Thank you!

^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2016-08-23 15:36 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2016-08-23  3:14 [PATCH 0/1] mit-krb5 security update CVE-2016-3120 Leo Famulari
2016-08-23  3:14 ` [PATCH 1/1] gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120] Leo Famulari
2016-08-23  9:36   ` Mark H Weaver
2016-08-23 10:43     ` Mark H Weaver
2016-08-23 15:36       ` Leo Famulari

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).