From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from eggs.gnu.org ([209.51.188.92]:42570)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1h6hta-0007BR-RE
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:33:07 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1h6htY-0007Dw-Uw
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:33:06 -0400
Received: from debbugs.gnu.org ([209.51.188.43]:38665)
	by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16)
	(Exim 4.71) (envelope-from <Debian-debbugs@debbugs.gnu.org>)
	id 1h6htW-0007Bm-To
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:33:03 -0400
Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2)
	(envelope-from <Debian-debbugs@debbugs.gnu.org>) id 1h6htW-0002Fp-Nv
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:33:02 -0400
Subject: [bug#34926] [PATCH] gnu: libssh2: Update to 1.8.1 with a graft
	[security fixes].
Resent-Message-ID: <handler.34926.B.15531139368610@debbugs.gnu.org>
Received: from eggs.gnu.org ([209.51.188.92]:42475)
	by lists.gnu.org with esmtp (Exim 4.71)
	(envelope-from <leo@famulari.name>) id 1h6hse-00072t-Gk
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:32:09 -0400
Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71)
	(envelope-from <leo@famulari.name>) id 1h6hsd-0006Lq-Oc
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:32:08 -0400
Received: from out5-smtp.messagingengine.com ([66.111.4.29]:57985)
	by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
	(Exim 4.71) (envelope-from <leo@famulari.name>) id 1h6hsd-0006HT-FJ
	for guix-patches@gnu.org; Wed, 20 Mar 2019 16:32:07 -0400
Received: from jasmine.lan (c-76-124-202-137.hsd1.pa.comcast.net
	[76.124.202.137])
	by mail.messagingengine.com (Postfix) with ESMTPA id AA6ECE4176
	for <guix-patches@gnu.org>; Wed, 20 Mar 2019 16:32:03 -0400 (EDT)
From: Leo Famulari <leo@famulari.name>
Date: Wed, 20 Mar 2019 16:31:59 -0400
Message-Id: <128204645081af4cc1e10f5aef21b9b4e6dc9d81.1553113916.git.leo@famulari.name>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
List-Id: <guix-patches.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=unsubscribe>
List-Archive: <http://lists.gnu.org/archive/html/guix-patches/>
List-Post: <mailto:guix-patches@gnu.org>
List-Help: <mailto:guix-patches-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-patches>,
	<mailto:guix-patches-request@gnu.org?subject=subscribe>
Errors-To: guix-patches-bounces+kyle=kyleam.com@gnu.org
Sender: "Guix-patches" <guix-patches-bounces+kyle=kyleam.com@gnu.org>
To: 34926@debbugs.gnu.org

Fixes CVE-2019-{3855,3856,3857,3858,3859,3860,3861,3862,3863}.
---
 gnu/packages/ssh.scm | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/gnu/packages/ssh.scm b/gnu/packages/ssh.scm
index dc81736f06..ec81844b93 100644
--- a/gnu/packages/ssh.scm
+++ b/gnu/packages/ssh.scm
@@ -111,6 +111,7 @@ applications.")
 (define-public libssh2
   (package
    (name "libssh2")
+   (replacement libssh2-1.8.1)
    (version "1.8.0")
    (source (origin
             (method url-fetch)
@@ -143,6 +144,21 @@ a server that supports the SSH-2 protocol.")
    (license license:bsd-3)
    (home-page "https://www.libssh2.org/")))
 
+(define-public libssh2-1.8.1
+  (package
+    (inherit libssh2)
+    (version "1.8.1")
+    (source (origin
+             (method url-fetch)
+             (uri (string-append
+                    "https://www.libssh2.org/download/libssh2-"
+                    version ".tar.gz"))
+             (sha256
+              (base32
+               "0ngif3ynk6xqzy5nlfjs7bsmfm81g9f145av0z86kf0vbgrigda0"))
+             (patches
+              (search-patches "libssh2-fix-build-failure-with-gcrypt.patch"))))))
+
 (define-public openssh
   (package
    (name "openssh")
-- 
2.21.0