01/06: gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2

guix-commits

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

01/06: gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2

From:	guix-commits
Subject:	01/06: gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2019-1563].
Date:	Sun, 13 Oct 2019 16:50:09 -0400 (EDT)

mbakke pushed a commit to branch master
in repository guix.

commit d6718086f8904c72eb97a8c274cd156a9c08072a
Author: Marius Bakke <address@hidden>
Date:   Sun Oct 13 20:50:18 2019 +0200

    gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2019-1563].
    
    * gnu/packages/tls.scm (openssl-1.0.2t): New variable.
    (openssl-1.0)[replacement]: New field.
---
 gnu/packages/tls.scm | 22 ++++++++++++++++++++++
 1 file changed, 22 insertions(+)

diff --git a/gnu/packages/tls.scm b/gnu/packages/tls.scm
index c45767c..2def6ee 100644
--- a/gnu/packages/tls.scm
+++ b/gnu/packages/tls.scm
@@ -392,6 +392,7 @@ required structures.")
     (inherit openssl)
     (name "openssl")
     (version "1.0.2s")
+    (replacement openssl-1.0.2t)
     (source (origin
               (method url-fetch)
               (uri (list (string-append 
"https://www.openssl.org/source/openssl-";
@@ -473,6 +474,27 @@ required structures.")
                                                          ,version "/misc"))
                  #t)))))))))
 
+(define openssl-1.0.2t
+  (package
+    (inherit openssl)
+    (version "1.0.2t")
+    (source (origin
+              (inherit (package-source openssl-1.0))
+              (uri (list (string-append 
"https://www.openssl.org/source/openssl-";
+                                        version ".tar.gz")
+                         (string-append "ftp://ftp.openssl.org/source/";
+                                        "openssl-" version ".tar.gz")
+                         (string-append "ftp://ftp.openssl.org/source/old/";
+                                        (string-trim-right version 
char-set:letter)
+                                        "/openssl-" version ".tar.gz")))
+              (sha256
+               (base32
+                "1g67ra0ph7gpz6fgvv1i96d792jmd6ymci5kk53vbikszr74djql"))))
+    (arguments
+     (substitute-keyword-arguments (package-arguments openssl-1.0)
+       ;; Parallel build is not supported in 1.0.x.
+       ((#:parallel-build? _ #f) #f)))))
+
 (define-public libressl
   (package
     (name "libressl")

[Prev in Thread]

Current Thread

[Next in Thread]

branch master updated (0475c88 -> 6485528), guix-commits, 2019/10/13
- 02/06: gnu: nghttp2: Replace with 1.39.2 [fixes CVE-2019-9511, CVE-2019-9513]., guix-commits, 2019/10/13
- 03/06: gnu: curl: Replace with 7.66.0 [fixes CVE-2019-5481, CVE-2019-5482]., guix-commits, 2019/10/13
- 04/06: gnu: libgcrypt: Replace with 1.8.5 [fixes CVE-2019-13627]., guix-commits, 2019/10/13
- 05/06: gnu: expat: Replace with 2.2.9 [fixes CVE-2019-15903]., guix-commits, 2019/10/13
- 01/06: gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2019-1563]., guix-commits <=
- 06/06: gnu: librsvg: Update to 2.46.0., guix-commits, 2019/10/13

Prev by Date: 05/06: gnu: expat: Replace with 2.2.9 [fixes CVE-2019-15903].
Next by Date: branch master updated (0475c88 -> 6485528)
Previous by thread: 05/06: gnu: expat: Replace with 2.2.9 [fixes CVE-2019-15903].
Next by thread: 06/06: gnu: librsvg: Update to 2.46.0.
Index(es):
- Date
- Thread