aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorCeleste <20312-Celeste@users.gitlab.alpinelinux.org>2023-11-02 12:12:43 +0000
committerKevin Daudt <kdaudt@alpinelinux.org>2023-11-02 12:22:57 +0000
commit9b6efc5b5317693e4b66a98e5a04213cc8df5066 (patch)
tree359db95bd7c2f558a2ab54ba61d05272318ea825
parentfd008200e2a4f46c3a583ae9c04f41e98879280f (diff)
community/netdata: patch libh2o submodule for CVE-2023-44487
-rw-r--r--community/netdata/APKBUILD11
1 files changed, 8 insertions, 3 deletions
diff --git a/community/netdata/APKBUILD b/community/netdata/APKBUILD
index 3bcad0a83f8..09993de19e9 100644
--- a/community/netdata/APKBUILD
+++ b/community/netdata/APKBUILD
@@ -2,7 +2,7 @@
# Maintainer: Kevin Daudt <kdaudt@alpinelinux.org>
pkgname=netdata
pkgver=1.43.2
-pkgrel=0
+pkgrel=1
pkgdesc="Real-time performance monitoring"
url="https://www.netdata.cloud/"
license="GPL-3.0-or-later"
@@ -32,7 +32,8 @@ options="!check" # Broken tests
_aclk_schemas_commit=83c661c0dcddb9526814ebbd0668fbc3e281f03f
_ml_dlib_commit=021cbbb1c2ddec39d8dd4cb6abfbbafdf1cf4482
_mqtt_websockets_commit=6664789ccf57c95451638364f544d1679efd910e
-_h2o_commit=7359e98d78d018a35f5da7523feac69f64eddb4b
+# This _h2o_commit fixes CVE-2023-44487, and does not follow upstream
+_h2o_commit=094a6f90f76eeb280a430200cba47bde39b0b8e8
_c_rbuf_commit=51485be511f8c1d592b699f09f7c783aa2270375
_c_rhash_commit=f6c21836b921535ab818c7f72b77346d25f60d8e
source="$pkgname-$pkgver.tar.gz::https://github.com/netdata/netdata/archive/v$pkgver.tar.gz
@@ -48,6 +49,10 @@ source="$pkgname-$pkgver.tar.gz::https://github.com/netdata/netdata/archive/v$pk
$pkgname.confd
"
+# secfixes:
+# 1.43.2-r1:
+# - CVE-2023-44487
+
copy_submodule() {
local name=$1
local commit=$2
@@ -128,7 +133,7 @@ bf2b0b18af5764f0b7529e75ceb0e7c526d57087ce9c76972d96d5201f41970911af8a575c981c4e
9687ede999002e73563c118fb604cbf8957670f8fac8f7c51d637c1518c00c1919e3b66bf055f152cda766695fc625a751db19a91174f487c0cc2752d47afb52 aclk-schemas-83c661c0dcddb9526814ebbd0668fbc3e281f03f.tar.gz
814e3ee5811b43349a218c2b6595e53c1daf5db2c9346b2ec0ff6475cc83b1803adad3f3210f51e219d6523fcf839543087b94eb18501ee144128fb169bd9c0b dlib-021cbbb1c2ddec39d8dd4cb6abfbbafdf1cf4482.tar.gz
26dc950804887982fe4472a6c5ce78e36ec89b75fb5e94a8ad9eac3abb7558e2e151cd10652e159910af78da13de054011f266a4cec22becb6f488154ee5737b mqtt_websockets-6664789ccf57c95451638364f544d1679efd910e.tar.gz
-8d1de96000778a742547b0481159130162d846ec61f70856a88580099f8b91691729de44831cf95a5dc85836c1b5b34ad75ab61677260f0e1c2c30f4abf143db h2o-7359e98d78d018a35f5da7523feac69f64eddb4b.tar.gz
+f494a2bf75fe7a6c97bf64ae8d2a4eabe6bcc5c1a4a038cb27c23b478a65a543f9c2dcc8223b0e05ebe2ee811baa06876d13d5abb344c1bc51bdf5e3e8d3a75b h2o-094a6f90f76eeb280a430200cba47bde39b0b8e8.tar.gz
c65c3c72c60654ef575f485b45c0389198a91b307f39ce984baa4d2fc519c62d645fd226f076b2ec059a97599be8892a8270ffb57bba575c0390181244aff228 c-rbuf-51485be511f8c1d592b699f09f7c783aa2270375.tar.gz
2082de803895a1499006e683f3173205b5033c9f788f1d5a5944463c1da5bc8d8661a187e7a0ec23f9f0e0251557741f72d54a7732a3ad010930e16fa04a0853 c_rhash-f6c21836b921535ab818c7f72b77346d25f60d8e.tar.gz
39cc473fbfff28862a9c3dbbfe59005c57ccee6664bb328924c2124a8f1faeb5e6247a6405a7e498c01a975e826582c28e66b7dd4552b8923ded446bf42609cd cxx17-2.patch