diff options
author | Sergey Lukin <sergej.lukin@gmail.com> | 2017-01-18 11:22:20 +0000 |
---|---|---|
committer | Leonardo Arena <rnalrd@alpinelinux.org> | 2017-01-18 12:50:08 +0000 |
commit | f8ff0d8865cb911e2659e0d67807186537e23411 (patch) | |
tree | 2e492a861645ac175d4b9362963ab56a8af9d4c5 /main/irssi | |
parent | b8487132638ccfbb441733164ca93ab03643ab6a (diff) | |
download | aports-f8ff0d8865cb911e2659e0d67807186537e23411.tar.bz2 aports-f8ff0d8865cb911e2659e0d67807186537e23411.tar.xz |
main/irssi: security upgrade to 0.8.21 - fixes #6694
CVE-2017-5193: A NULL pointer dereference in the nickcmp function.
CVE-2017-5194: Use after free when receiving invalid nick message.
CVE-2017-5356: Out of bounds read when Printing the value.
CVE-2017-5195: Out of bounds read in certain incomplete control codes.
CVE-2017-5196: Out of bounds read in certain incomplete character sequences.
Diffstat (limited to 'main/irssi')
-rw-r--r-- | main/irssi/APKBUILD | 15 |
1 files changed, 11 insertions, 4 deletions
diff --git a/main/irssi/APKBUILD b/main/irssi/APKBUILD index 4b01468296..310c4696dd 100644 --- a/main/irssi/APKBUILD +++ b/main/irssi/APKBUILD @@ -1,6 +1,7 @@ +# Contributor: Sergei Lukin <sergej.lukin@gmail.com> # Maintainer: Kiyoshi Aman <kiyoshi.aman at gmail.com> pkgname=irssi -pkgver=0.8.20 +pkgver=0.8.21 pkgrel=0 pkgdesc="A modular textUI IRC client with IPv6 support" url="http://irssi.org/" @@ -12,6 +13,12 @@ subpackages="$pkgname-doc $pkgname-dev $pkgname-proxy $pkgname-perl" source="https://github.com/irssi/irssi/releases/download/$pkgver/irssi-$pkgver.tar.xz" # secfixes: +# 0.8.21-r0: +# - CVE-2017-5193 +# - CVE-2017-5194 +# - CVE-2017-5356 +# - CVE-2017-5195 +# - CVE-2017-5196 # 0.8.20-r0: # - CVE-2016-7044 # - CVE-2016-7045 @@ -73,6 +80,6 @@ proxy() { mv "$pkgdir"/usr/lib/irssi/modules/libirc_proxy.* "$subpkgdir"/usr/lib/irssi/modules/ } -md5sums="67d48c5feec2d3b949d088aa4abc3601 irssi-0.8.20.tar.xz" -sha256sums="7882c4e821f5aac469c5e69e69d7e235f4986101285c675e81a9a95bfb20505a irssi-0.8.20.tar.xz" -sha512sums="ace39022a3e7461fc33cbd0e8c6635aa84c67fc4f6364b66747f860a4538a4b17bbd677e342fbfa9ae7e97783745f8d7dab350a27330ce14f1702386231296b1 irssi-0.8.20.tar.xz" +md5sums="b820760c3b4f3b0c24abe4db82b6366a irssi-0.8.21.tar.xz" +sha256sums="e433063b8714dcf17438126902c9a9d5c97944b3185ecd0fc5ae25c4959bf35a irssi-0.8.21.tar.xz" +sha512sums="110934ab85c8574fc76bce367c58378e28603898e63a5014a72170ffe441ffe3dbda432531e899176f5c4126f47d929a3a01a2f87bcacbfe0ba4d6d8cb31e642 irssi-0.8.21.tar.xz" |