diff options
| author | Sergey Lukin <sergej.lukin@gmail.com> | 2017-02-02 13:59:57 +0000 |
|---|---|---|
| committer | Leonardo Arena <rnalrd@alpinelinux.org> | 2017-02-06 14:02:29 +0000 |
| commit | a2d8297fdbd08e8dcfc76244abd83ad49f3659cc (patch) | |
| tree | 0d1fac05bb87fca997029dfbe78b0e473e28ace5 /main/libevent/APKBUILD | |
| parent | b1397dbdb8c571b5368878b0624d30ef233c47b4 (diff) | |
| download | aports-a2d8297fdbd08e8dcfc76244abd83ad49f3659cc.tar.bz2 aports-a2d8297fdbd08e8dcfc76244abd83ad49f3659cc.tar.xz | |
main/libevent: security upgrade to 2.1.8 - fixes #6798
CVE-2016-10195: dns remote stack overread vulnerability
CVE-2016-10196: (stack) buffer overflow in evutil_parse_sockaddr_port()
CVE-2016-10197: out-of-bounds read in search_make_new()
Diffstat (limited to 'main/libevent/APKBUILD')
| -rw-r--r-- | main/libevent/APKBUILD | 35 |
1 files changed, 24 insertions, 11 deletions
diff --git a/main/libevent/APKBUILD b/main/libevent/APKBUILD index 13ec0052c2..e57a59855e 100644 --- a/main/libevent/APKBUILD +++ b/main/libevent/APKBUILD @@ -1,7 +1,8 @@ +# Contributor: Sergei Lukin <sergej.lukin@gmail.com> # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libevent -pkgver=2.0.22 -pkgrel=1 +pkgver=2.1.8 +pkgrel=0 pkgdesc="An event notification library" url="http://libevent.org/" arch="all" @@ -10,16 +11,25 @@ depends="" depends_dev="python2" makedepends="$depends_dev libressl-dev" subpackages="$pkgname-dev" -source="https://github.com/$pkgname/$pkgname/releases/download/release-${pkgver}-stable/$pkgname-${pkgver}-stable.tar.gz" -_builddir="$srcdir"/$pkgname-$pkgver-stable +source="https://github.com/$pkgname/$pkgname/releases/download/release-${pkgver}-stable/$pkgname-${pkgver}-stable.tar.gz + libressl.patch + " + +# secfixes: +# 2.1.8-r0: +# - CVE-2016-10195 +# - CVE-2016-10196 +# - CVE-2016-10197 + +builddir="$srcdir"/$pkgname-$pkgver-stable prepare() { - cd "$_builddir" - update_config_sub || return 1 + cd "$builddir" + default_prepare || return 1 } build() { - cd "$_builddir" + cd "$builddir" ./configure \ --build=$CBUILD \ --host=$CHOST \ @@ -31,7 +41,7 @@ build() { } package() { - cd "$_builddir" + cd "$builddir" make -j1 DESTDIR=$pkgdir install || return 1 } @@ -41,6 +51,9 @@ dev() { mv "$pkgdir"/usr/bin "$subpkgdir"/usr/ } -md5sums="c4c56f986aa985677ca1db89630a2e11 libevent-2.0.22-stable.tar.gz" -sha256sums="71c2c49f0adadacfdbe6332a372c38cf9c8b7895bb73dabeaa53cdcc1d4e1fa3 libevent-2.0.22-stable.tar.gz" -sha512sums="990637f12e890bfa7f86c194c8b112701436e92b60afb829194879efb85d558b986261e6508fe29bde73981feada874438e2d442cec8ea5730c889954f9bc907 libevent-2.0.22-stable.tar.gz" +md5sums="f3eeaed018542963b7d2416ef1135ecc libevent-2.1.8-stable.tar.gz +281a6844632a5e7d76f39a0f858f7ff3 libressl.patch" +sha256sums="965cc5a8bb46ce4199a47e9b2c9e1cae3b137e8356ffdad6d94d3b9069b71dc2 libevent-2.1.8-stable.tar.gz +81ccaf983f8e3e46b19f293b49c32887da53f6daeb843cee9052aabf194df458 libressl.patch" +sha512sums="a2fd3dd111e73634e4aeb1b29d06e420b15c024d7b47778883b5f8a4ff320b5057a8164c6d50b53bd196c79d572ce2639fe6265e03a93304b09c22b41e4c2a17 libevent-2.1.8-stable.tar.gz +10abdd9195826739144b2164c2b95a65a7202ed7e1d202ec6f149e286377ee0726f05172ffabcfc6cf83b2832d883bb15632d9323f6907106580989c7af7ee95 libressl.patch" |