[bug#74984] [PATCH] gnu: age: Patch for security vulnerability

unofficial mirror of guix-patches@gnu.org 
 help / color / mirror / code / Atom feed

* [bug#74984] [PATCH] gnu: age: Patch for security vulnerability
@ 2024-12-19 22:58 Ashish SHUKLA via Guix-patches via
  0 siblings, 0 replies; only message in thread
From: Ashish SHUKLA via Guix-patches via @ 2024-12-19 22:58 UTC (permalink / raw)
  To: 74984; +Cc: Ashish SHUKLA

See https://github.com/advisories/GHSA-32gq-x56h-299c

* gnu/packages/golang-crypto.scm (go-filippo-io-age): [source]
<patches> Add a patch.

Change-Id: I2cf58e864446589d9016415f2400f74797f0f87e
---
 gnu/packages/golang-crypto.scm | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/gnu/packages/golang-crypto.scm b/gnu/packages/golang-crypto.scm
index 0fd96eaa54..dc290635c1 100644
--- a/gnu/packages/golang-crypto.scm
+++ b/gnu/packages/golang-crypto.scm
@@ -44,6 +44,7 @@ (define-module (gnu packages golang-crypto)
   #:use-module ((guix licenses) #:prefix license:)
   #:use-module (guix build-system go)
   #:use-module (guix gexp)
+  #:use-module (guix download)
   #:use-module (guix git-download)
   #:use-module (guix packages)
   #:use-module (guix utils)
@@ -133,7 +134,14 @@ (define-public go-filippo-io-age
              (commit (string-append "v" version))))
        (file-name (git-file-name name version))
        (sha256
-        (base32 "1dms32lxqgjipmlisng7dmy1sdw0qscj43x9lmpadyzbzc64lhrv"))))
+        (base32 "1dms32lxqgjipmlisng7dmy1sdw0qscj43x9lmpadyzbzc64lhrv"))
+       (patches
+         (list
+           ;; https://github.com/advisories/GHSA-32gq-x56h-299c
+           (origin
+             (method url-fetch)
+             (uri "https://github.com/FiloSottile/age/commit/482cf6fc9babd3ab06f6606762aac10447222201.patch")
+             (sha256 (base32 "19lkq2xbv3l0sxp7z9r7qgdi2v18bkaqg9kkyvc3qzyk5nsk56j6")))))))
     (build-system go-build-system)
     (arguments
      (list

base-commit: 07b4b1d055c36c6c61d39273c26974771dbfe805
-- 
2.47.1





^ permalink raw reply related	[flat|nested] only message in thread

only message in thread, other threads:[~2024-12-19 23:00 UTC | newest]

Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-12-19 22:58 [bug#74984] [PATCH] gnu: age: Patch for security vulnerability Ashish SHUKLA via Guix-patches via

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).