aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJ0WI <J0WI@users.noreply.github.com>2021-03-21 23:21:18 +0100
committerLeo <thinkabit.ukim@gmail.com>2021-04-15 16:07:31 -0300
commite7e87f67d76b45571d5aaecd45033c72c0906e94 (patch)
tree8b774a04961c6718b60320caed9888d72c0ad0ab
parent615b5baa0efd5103ee0644c23b9523a8bb0448ab (diff)
downloadaports-e7e87f67d76b45571d5aaecd45033c72c0906e94.tar.gz
aports-e7e87f67d76b45571d5aaecd45033c72c0906e94.tar.bz2
aports-e7e87f67d76b45571d5aaecd45033c72c0906e94.tar.xz
main/nettle: security upgrade to 3.7.2
-rw-r--r--main/nettle/APKBUILD13
1 files changed, 7 insertions, 6 deletions
diff --git a/main/nettle/APKBUILD b/main/nettle/APKBUILD
index 7dee89e025..d98d0deff4 100644
--- a/main/nettle/APKBUILD
+++ b/main/nettle/APKBUILD
@@ -2,7 +2,7 @@
# Contributor: Fabian Affolter <fabian@affolter-engineering.ch>
# Maintainer: Fabian Affolter <fabian@affolter-engineering.ch>
pkgname=nettle
-pkgver=3.7
+pkgver=3.7.2
pkgrel=0
pkgdesc="A low-level cryptographic library"
url="https://www.lysator.liu.se/~nisse/nettle/"
@@ -11,9 +11,11 @@ license="LGPL-2.0-or-later"
depends_dev="gmp-dev"
makedepends="$depends_dev m4"
subpackages="$pkgname-static $pkgname-dev $pkgname-utils"
-source="https://ftp.gnu.org/gnu/nettle/nettle-$pkgver.tar.gz
- fix-pcc.patch
- "
+source="https://ftp.gnu.org/gnu/nettle/nettle-$pkgver.tar.gz"
+
+# secfixes:
+# 3.7.2-r0:
+# - CVE-2021-20305
build() {
./configure \
@@ -49,5 +51,4 @@ utils() {
mv "$pkgdir"/usr/bin "$subpkgdir"/usr/
}
-sha512sums="be32eff0ea3c83abb8b6670d049a8ce21ea9c7cac3e1a5d41ae003d5160e2683572c7dd8930b869ac1db0b89f9423605e0a8ec0cff074c63e2a60c71996ef66c nettle-3.7.tar.gz
-5dc732fec72e7c9b08b46215454398e514cd24c508ae6cacbf63f0dac2c692e872bf85617886ddc83ae6f07f4e52569ee678ac4864da56dfb5692800583bc6d8 fix-pcc.patch"
+sha512sums="5f6edcc24ff620885b24394b31e55b494418c35dd63e6ece222ddabc58e793c44a82155051cc5759896ed5f014a8efd547f0aef6736a131e41651c5cab7c7211 nettle-3.7.2.tar.gz"