aboutsummaryrefslogtreecommitdiffstats
path: root/main/gnutls/APKBUILD
diff options
context:
space:
mode:
authorNatanael Copa <ncopa@alpinelinux.org>2021-03-24 12:41:25 +0100
committerNatanael Copa <ncopa@alpinelinux.org>2021-03-24 13:44:04 +0100
commitf15d1c4a97433880b929b06b8604e19d76f7cb36 (patch)
treed6d7b1def5b54f8ea28825e5655851ba19ca1d91 /main/gnutls/APKBUILD
parent691d020dbd55bec25acc7b795bb2ad454020f64f (diff)
downloadaports-f15d1c4a97433880b929b06b8604e19d76f7cb36.tar.gz
aports-f15d1c4a97433880b929b06b8604e19d76f7cb36.tar.bz2
aports-f15d1c4a97433880b929b06b8604e19d76f7cb36.tar.xz
main/gnutls: fix CVE-2021-20231 and CVE-2021-20232
fixes #12543
Diffstat (limited to 'main/gnutls/APKBUILD')
-rw-r--r--main/gnutls/APKBUILD11
1 files changed, 9 insertions, 2 deletions
diff --git a/main/gnutls/APKBUILD b/main/gnutls/APKBUILD
index 9ee64e49cf..1cfa356915 100644
--- a/main/gnutls/APKBUILD
+++ b/main/gnutls/APKBUILD
@@ -3,7 +3,7 @@
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=gnutls
pkgver=3.6.15
-pkgrel=0
+pkgrel=1
pkgdesc="A TLS protocol implementation"
url="https://www.gnutls.org/"
arch="all"
@@ -17,9 +17,14 @@ case $pkgver in
*.*.*.*) _v=${_v%.*};;
esac
source="https://www.gnupg.org/ftp/gcrypt/gnutls/v$_v/gnutls-$pkgver.tar.xz
+ CVE-2021-20231.patch
+ CVE-2021-20232.patch
"
# secfixes:
+# 3.6.15-r1:
+# - CVE-2021-20231
+# - CVE-2021-20232
# 3.6.15-r0:
# - CVE-2020-24659 GNUTLS-SA-2020-09-04
# 3.6.14-r0:
@@ -69,4 +74,6 @@ xx() {
mv "$pkgdir"/usr/lib/lib*xx.so.* "$subpkgdir"/usr/lib/
}
-sha512sums="f757d1532198f44bcad7b73856ce6a05bab43f6fb77fcc81c59607f146202f73023d0796d3e1e7471709cf792c8ee7d436e19407e0601bc0bda2f21512b3b01c gnutls-3.6.15.tar.xz"
+sha512sums="f757d1532198f44bcad7b73856ce6a05bab43f6fb77fcc81c59607f146202f73023d0796d3e1e7471709cf792c8ee7d436e19407e0601bc0bda2f21512b3b01c gnutls-3.6.15.tar.xz
+37261adbb9da45b3f2b11e65a148e19c825970d3342b2946ccbc4abbea9b61c8a90d79b220ddc16cdcad95ee26a77a53fac6400d68c76e2cf8aea5e22900e374 CVE-2021-20231.patch
+9c6bffcccc2ac887f92f252be94a822465a79a5080d6e912c3f8ef44a53511f1eefb2fa876a3af6d21ddc2baf5717b8c454d6a79bd328fe52b02f4d27c12a505 CVE-2021-20232.patch"