From 0f78b47a7128e2dae92cf2484af36e044ae66dac Mon Sep 17 00:00:00 2001
From: Natanael Copa <ncopa@alpinelinux.org>
Date: Thu, 11 Jun 2015 09:46:32 +0000
Subject: main/libtasn1: security fix for CVE-2015-3622

fixes #4232
---
 main/libtasn1/APKBUILD | 12 ++++++++----
 1 file changed, 8 insertions(+), 4 deletions(-)

diff --git a/main/libtasn1/APKBUILD b/main/libtasn1/APKBUILD
index 79e4d0afb9..a423e5b474 100644
--- a/main/libtasn1/APKBUILD
+++ b/main/libtasn1/APKBUILD
@@ -1,7 +1,7 @@
 # Maintainer: Natanael Copa <ncopa@alpinelinux.org>
 pkgname=libtasn1
 pkgver=3.6
-pkgrel=1
+pkgrel=2
 pkgdesc="The ASN.1 library used in GNUTLS"
 url="http://www.gnu.org/software/gnutls/"
 arch="all"
@@ -12,6 +12,7 @@ makedepends="texinfo"
 install=
 source="ftp://ftp.gnu.org/gnu/$pkgname/$pkgname-$pkgver.tar.gz
 	CVE-2015-2806.patch
+	CVE-2015-3622.patch
 	"
 
 _builddir="$srcdir"/$pkgname-$pkgver
@@ -36,8 +37,11 @@ package() {
 	rm "$pkgdir"/usr/lib/*.la || return 1
 }
 md5sums="6ed38e161e11013054f2a2bb4c4da449  libtasn1-3.6.tar.gz
-4a0e850f458a1ae1a94f419e47e2390b  CVE-2015-2806.patch"
+4a0e850f458a1ae1a94f419e47e2390b  CVE-2015-2806.patch
+fbe5e8a0a79f3d46b4c214ddbc14166d  CVE-2015-3622.patch"
 sha256sums="19e34766a38abc74cec1863cc30c8a4e13f763310ecaf7a5e861ba1d143ea430  libtasn1-3.6.tar.gz
-203076736bcac3e31bc0f6e2c6b16db28d0e66e9e734656d27d2ee938443f4c2  CVE-2015-2806.patch"
+203076736bcac3e31bc0f6e2c6b16db28d0e66e9e734656d27d2ee938443f4c2  CVE-2015-2806.patch
+02eb371e987731c6558a8870553d90c54feefc86de1ab6f8536bc9dd2728f105  CVE-2015-3622.patch"
 sha512sums="c682cd7502c687e3a304216366fdbb9de62052cb5f3394bbe1172ccb5eae8fd00bbf7282ad642c58a6be5f1ad224353a4a3f7d9a6bad14ab7016d530883a5d9e  libtasn1-3.6.tar.gz
-7107e5a25208118994f508731f0d219734dc1f61d3ae991d6bacdcacf5759dbecf21b10e2ff49b7dc9f22af405fcd7480feeb93cc5d2854ff9311497431ca9f8  CVE-2015-2806.patch"
+7107e5a25208118994f508731f0d219734dc1f61d3ae991d6bacdcacf5759dbecf21b10e2ff49b7dc9f22af405fcd7480feeb93cc5d2854ff9311497431ca9f8  CVE-2015-2806.patch
+535784b109de72363c1efe02c42b60a0486c19270f9b8ffb53f08db2879a11f5c3e9072782631800da848ef0e95176223a2912752faa13b14ee36a81ae96c60d  CVE-2015-3622.patch"
-- 
cgit v1.2.3