diff options
Diffstat (limited to 'main/curl/APKBUILD')
-rw-r--r-- | main/curl/APKBUILD | 29 |
1 files changed, 24 insertions, 5 deletions
diff --git a/main/curl/APKBUILD b/main/curl/APKBUILD index 99e44ef538..2dad59b08e 100644 --- a/main/curl/APKBUILD +++ b/main/curl/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=curl pkgver=7.49.1 -pkgrel=0 +pkgrel=1 pkgdesc="An URL retrival utility and library" url="http://curl.haxx.se" arch="all" @@ -9,11 +9,21 @@ license="MIT" depends="ca-certificates" depends_dev="zlib-dev openssl-dev libssh2-dev" makedepends="groff $depends_dev perl" -source="http://curl.haxx.se/download/curl-$pkgver.tar.bz2" subpackages="$pkgname-doc $pkgname-dev" +source="http://curl.haxx.se/download/curl-$pkgver.tar.bz2 + CVE-2016-5419.patch + CVE-2016-5420.patch + CVE-2016-5421.patch + " _builddir="$srcdir/$pkgname-$pkgver" +# security fixes: +# 7.49.1-r1: +# - CVE-2016-5419 +# - CVE-2016-5420 +# - CVE-2016-5421 + prepare() { local i cd "$_builddir" @@ -43,6 +53,15 @@ package() { rm "$pkgdir"/usr/lib/*.la || return 1 } -md5sums="6bb1f7af5b58b30e4e6414b8c1abccab curl-7.49.1.tar.bz2" -sha256sums="eb63cec4bef692eab9db459033f409533e6d10e20942f4b060b32819e81885f1 curl-7.49.1.tar.bz2" -sha512sums="665ef178c282c14f429498547b3711ef79faf85f6db7f4ec24259e2c6247f6ee234dda158ebc207d03f08b5198c5844480e054f24f054b2de6c6a15d4f1ce6e6 curl-7.49.1.tar.bz2" +md5sums="6bb1f7af5b58b30e4e6414b8c1abccab curl-7.49.1.tar.bz2 +290f6b37d95c9731849fc805a2ece53b CVE-2016-5419.patch +150e3c110d6eb85187e109d04317b9e3 CVE-2016-5420.patch +0524664bc926374f6a7b057046924bd2 CVE-2016-5421.patch" +sha256sums="eb63cec4bef692eab9db459033f409533e6d10e20942f4b060b32819e81885f1 curl-7.49.1.tar.bz2 +d3499aaf331fca2303749bdffbedf5677a555a37ada187c1a734926c7cb718e5 CVE-2016-5419.patch +23e1fbd27860c6f46bec094c06b5618da2ab71b091945f587c0d7e8d143472f7 CVE-2016-5420.patch +bca78667ac9110920c5ce31c8d82a784fe327eb184460c1b87fab4de004e6692 CVE-2016-5421.patch" +sha512sums="665ef178c282c14f429498547b3711ef79faf85f6db7f4ec24259e2c6247f6ee234dda158ebc207d03f08b5198c5844480e054f24f054b2de6c6a15d4f1ce6e6 curl-7.49.1.tar.bz2 +a596e489b0b566d9dcc8292ccec4d90dfbeae7cb11e250871217ff90d1c9525d602f40e112eb0d47a0a597e5768c105423d1cb0cb2825c39a319ea9d582269d0 CVE-2016-5419.patch +9578f13c5d8e5a5d184b5b08dd7d59de596644084f2de04c025ad8cd78e11dadcff45bf4fab02b8942d7ed19977dec4d220893f675d64ed13b27284d63dfa5f1 CVE-2016-5420.patch +2b5e77dda11dbb77cbfe760da5377c94a1664b04f254c9fa642f49da119d93123ef6ee27e4c08d0ba9094240791ac09273c8be23fa8ca5982f8ed14d6b29ad7e CVE-2016-5421.patch" |