diff options
| author | Leo <thinkabit.ukim@gmail.com> | 2021-03-11 12:44:04 -0300 |
|---|---|---|
| committer | Natanael Copa <ncopa@alpinelinux.org> | 2021-03-24 09:55:18 +0000 |
| commit | a6a29b59574fe2eb241231ab5604780f0b4ee240 (patch) | |
| tree | cbefe9b4c09a0e53244ff4286827c230573847ed | |
| parent | 222dd82a23db0a022539b1ee11621de3d1b15ecf (diff) | |
main/gnutls: upgrade to 3.7.1
fixes:
- GNUTLS-SA-2021-03-10
- CVE-2021-20231
- CVE-2021-20232
| -rw-r--r-- | main/gnutls/APKBUILD | 9 | ||||
| -rw-r--r-- | main/gnutls/tests-certtool.patch | 4 |
2 files changed, 8 insertions, 5 deletions
diff --git a/main/gnutls/APKBUILD b/main/gnutls/APKBUILD index 5b76da01c85..3c72a8194e6 100644 --- a/main/gnutls/APKBUILD +++ b/main/gnutls/APKBUILD @@ -2,7 +2,7 @@ # Contributor: Michael Mason <ms13sp@gmail.com> # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=gnutls -pkgver=3.7.0 +pkgver=3.7.1 pkgrel=0 pkgdesc="TLS protocol implementation" url="https://www.gnutls.org/" @@ -22,6 +22,9 @@ source="https://www.gnupg.org/ftp/gcrypt/gnutls/v$_v/gnutls-$pkgver.tar.xz # Upstream Tracker: https://gnutls.org/security-new.html # secfixes: +# 3.7.1-r0: +# - CVE-2021-20231 GNUTLS-SA-2021-03-10 +# - CVE-2021-20232 GNUTLS-SA-2021-03-10 # 3.6.15-r0: # - CVE-2020-24659 GNUTLS-SA-2020-09-04 # 3.6.14-r0: @@ -72,6 +75,6 @@ xx() { mv "$pkgdir"/usr/lib/lib*xx.so.* "$subpkgdir"/usr/lib/ } -sha512sums="5cf1025f2d0a0cbf5a83dd7f3b22dafd1769f7c3349096c0272d08573bb5ff87f510e0e69b4bbb47dad1b64476aa5479804b2f4ceb2216cd747bbc53bf42d885 gnutls-3.7.0.tar.xz +sha512sums="0fe801f03676c3bd970387f94578c8be7ba6030904989e7d21dffdc726209bab44c8096fbcb6d51fed2de239537bd00df2338ee9c8d984a1c386826b91062a95 gnutls-3.7.1.tar.xz 3e7d872963cc25e49f1ecf98de7d6f3b6b22d2c1c9e982bc4b22ce658c11d8567903728e5aa33ce7b6d3e25fe0b7a75b8aca3e8f53838155af5abe23887d33fa tests-crq.patch -30739b5ca06bb72e93d021065fbc90a1808c5fc139ff917308738456ae8601f5c372d223d77e51cdd34a6aa4d28dcb8140101c3f753ede1e39ee12e229c24cbe tests-certtool.patch" +3cc35bf7dcf6b7963d59bc346f68e0004151e409899b50e98ba5c675e753ade19a7baf317449343688b1bb2905ef8c8a5677dfe819e701b5bd82374d99adeb65 tests-certtool.patch" diff --git a/main/gnutls/tests-certtool.patch b/main/gnutls/tests-certtool.patch index 3c6a9a1885c..78a79f2f650 100644 --- a/main/gnutls/tests-certtool.patch +++ b/main/gnutls/tests-certtool.patch @@ -2,8 +2,8 @@ I think this tests is simply wrong. When a PIN is given, the program should run in batch mode. So the question for "Enter password" should _not_ be present. ---- a/tests/cert-tests/certtool 2019-02-07 07:33:45.960887338 +0000 -+++ b/tests/cert-tests/certtool 2019-02-07 07:36:14.550955051 +0000 +--- a/tests/cert-tests/certtool.sh 2019-02-07 07:33:45.960887338 +0000 ++++ b/tests/cert-tests/certtool.sh 2019-02-07 07:36:14.550955051 +0000 @@ -49,7 +49,7 @@ #check whether password is being honoured |