diff options
| author | Leo <thinkabit.ukim@gmail.com> | 2019-10-31 09:49:16 -0300 |
|---|---|---|
| committer | Kevin Daudt <kdaudt@alpinelinux.org> | 2019-10-31 16:43:26 +0000 |
| commit | 1d79155e9beac31b949f29acb3ae3a9a7a7b6edb (patch) | |
| tree | 7657b8180140d43b6ef5985e4d2a17d5b7883f17 /main/libarchive | |
| parent | 07f84335ced6f486514d7acae830837a5a619385 (diff) | |
| download | aports-1d79155e9beac31b949f29acb3ae3a9a7a7b6edb.tar.bz2 aports-1d79155e9beac31b949f29acb3ae3a9a7a7b6edb.tar.xz | |
main/libarchive: fix CVE-2019-18408
ref #10926
Closes !962
Diffstat (limited to 'main/libarchive')
| -rw-r--r-- | main/libarchive/APKBUILD | 11 |
1 files changed, 8 insertions, 3 deletions
diff --git a/main/libarchive/APKBUILD b/main/libarchive/APKBUILD index d098ec568a..cefa010513 100644 --- a/main/libarchive/APKBUILD +++ b/main/libarchive/APKBUILD @@ -2,17 +2,21 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libarchive pkgver=3.3.3 -pkgrel=0 +pkgrel=1 pkgdesc="library that can create and read several streaming archive formats" url="http://libarchive.org/" arch="all" license="BSD" makedepends="zlib-dev bzip2-dev xz-dev lz4-dev acl-dev libressl-dev expat-dev" subpackages="$pkgname-dev $pkgname-doc $pkgname-tools" -source="http://www.libarchive.org/downloads/$pkgname-$pkgver.tar.gz" +source="http://www.libarchive.org/downloads/$pkgname-$pkgver.tar.gz + CVE-2019-18408.patch::https://github.com/libarchive/libarchive/commit/b8592ecba2f9e451e1f5cb7ab6dcee8b8e7b3f60.patch + " builddir="$srcdir/$pkgname-$pkgver" # secfixes: +# 3.3.3-r1: +# - CVE-2019-18408 # 3.3.3-r0: # - CVE-2017-14501 # - CVE-2017-14502 @@ -42,4 +46,5 @@ tools() { mv "$pkgdir"/usr/bin "$subpkgdir"/usr/ } -sha512sums="9d12b47d6976efa9f98e62c25d8b85fd745d4e9ca7b7e6d36bfe095dfe5c4db017d4e785d110f3758f5938dad6f1a1b009267fd7e82cb7212e93e1aea237bab7 libarchive-3.3.3.tar.gz" +sha512sums="9d12b47d6976efa9f98e62c25d8b85fd745d4e9ca7b7e6d36bfe095dfe5c4db017d4e785d110f3758f5938dad6f1a1b009267fd7e82cb7212e93e1aea237bab7 libarchive-3.3.3.tar.gz +4807e01dffb83ff4ef430c66339157e9f7a61db4fc5cec2812c3ee5ad130b4fc2d3c1cbeea87930c76cd8ec3e66272e20622a48edf0c66215b626c4e0db99cab CVE-2019-18408.patch" |