From 442ccc174a119c491694394b8050532b256cd0ed Mon Sep 17 00:00:00 2001
From: J0WI <J0WI@users.noreply.github.com>
Date: Tue, 2 Apr 2019 22:19:24 +0200
Subject: community/mumble: security fixes (CVE-2018-20743)

---
 community/mumble/APKBUILD | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

(limited to 'community/mumble/APKBUILD')

diff --git a/community/mumble/APKBUILD b/community/mumble/APKBUILD
index 6f24149d44..33f749a4f6 100644
--- a/community/mumble/APKBUILD
+++ b/community/mumble/APKBUILD
@@ -3,7 +3,7 @@
 # Maintainer: Johannes Matheis <jomat+alpinebuild@jmt.gr>
 pkgname=mumble
 pkgver=1.2.19
-pkgrel=8
+pkgrel=9
 pkgdesc="Low-latency, high quality voice chat software"
 url="https://wiki.mumble.info"
 arch="all"
@@ -18,10 +18,16 @@ pkgusers="murmur"
 pkggroups="murmur"
 subpackages="$pkgname-doc murmur murmur-doc:murmur_doc:noarch"
 source="https://github.com/mumble-voip/$pkgname/releases/download/$pkgver/$pkgname-$pkgver.tar.gz
+	CVE-2018-20743.1.patch
+	CVE-2018-20743.2.patch
 	boost-1.66.patch
 	murmur.initd"
 builddir="$srcdir"/$pkgname-$pkgver
 
+# secfixes:
+#   1.2.19-r9:
+#     - CVE-2018-20743
+
 build() {
 	cd "$builddir"
 
@@ -110,5 +116,7 @@ murmur_doc() {
 }
 
 sha512sums="f91111194a899149b500a94afcf7cc5b9691c7ce8669f07fca2c66adbb3916ddb863bf703d04fb8387133fb75f3c8edb52974d1acf3febfafa1f73da19946de4  mumble-1.2.19.tar.gz
+6a3c78a479c795f91fabd557c34249308e1032be51ee668a9576cb8d2f7028526c4d79895b5053822c05f998e147a0577e801e8a27c9a454a4473193f16de943  CVE-2018-20743.1.patch
+9e2b0dcb5ca34aea1607e0561446bced93e13ce296df986855299f7b652e99db8f9504e0dfa6544e8f443996b8a78a912328f4924813a4716028a8323c70d6d0  CVE-2018-20743.2.patch
 fcdaf2a3575e3871fe4003b93364a70a7c7029beb64ba5e24931abbe3898b72791848b5cf78ccf48eee5942a37f696a5134d061c2b8d60b66913abd701758330  boost-1.66.patch
 c74ade232146a180448cb0027503f59642000bee50613a1fb99162cdc4bc81089ab4e84e51b0bbdac5c176eb52b76e6bd2b3ec790a9148135a1fc050569921c3  murmur.initd"
-- 
cgit v1.2.3