main/avahi: fix CVE-2017-6519 and CVE-2018-1000845

Fixes #9241

1 files changed, 11 insertions, 3 deletions

diff --git a/main/avahi/APKBUILD b/main/avahi/APKBUILD
index db7e8135a4..2784482032 100644
--- a/main/avahi/APKBUILD
+++ b/main/avahi/APKBUILD
@@ -1,7 +1,7 @@
 # Maintainer: Natanael Copa <ncopa@alpinelinux.org>
 pkgname=avahi
 pkgver=0.7
-pkgrel=1
+pkgrel=2
 pkgdesc="A multicast/unicast DNS-SD framework"
 url="https://www.avahi.org/"
 arch="all"
@@ -17,9 +17,16 @@ subpackages="$pkgname-dev $pkgname-doc $pkgname-tools $pkgname-glib
 	$pkgname-libs $pkgname-compat-howl:howl
 	$pkgname-compat-libdns_sd:lidns_sd $pkgname-lang
 	py2-avahi:_py2:noarch"
-source="https://github.com/lathiat/avahi/releases/download/v$pkgver/avahi-$pkgver.tar.gz"
+source="https://github.com/lathiat/avahi/releases/download/v$pkgver/avahi-$pkgver.tar.gz
+	CVE-2017-6519-and-CVE-2018-1000845.patch
+	"
 builddir="$srcdir/$pkgname-$pkgver"
 
+# secfixes:
+#   0.7-r2:
+#     - CVE-2017-6519
+#     - CVE-2018-1000845
+
 prepare() {
 	default_prepare
 	autoreconf -vif
@@ -128,4 +135,5 @@ _py2() {
 	mv "$pkgdir"/usr/lib/python2.* "$subpkgdir"/usr/lib/
 }
 
-sha512sums="bae5a1e9204aca90b90e7fd223d19e809e3514d03ba5fa2da1e55bf1d72d3d3b98567f357900c36393613dc17dc98e15ff3ebf0f226f2f6b9766e592452a6ce7  avahi-0.7.tar.gz"
+sha512sums="bae5a1e9204aca90b90e7fd223d19e809e3514d03ba5fa2da1e55bf1d72d3d3b98567f357900c36393613dc17dc98e15ff3ebf0f226f2f6b9766e592452a6ce7  avahi-0.7.tar.gz
+dc5c9fde8d1244e70e3cf1c09bc274b094458d2fad982f5a79bcbf3cbddc43a0cf79e9ba106b3b0446a6f0b006fd3beeee48a03bd3d8a06cf8d9821f6945ffed  CVE-2017-6519-and-CVE-2018-1000845.patch"