summary refs log tree commit diff
diff options
context:
space:
mode:
authorLeo Famulari <leo@famulari.name>2016-08-22 23:14:06 -0400
committerMark H Weaver <mhw@netris.org>2016-08-23 06:40:00 -0400
commit6f8ede1a87abe8776d0fe8caf31714dc1e3d72a6 (patch)
treeec8f4383cd91e5a66e7b178b10472c2abab73c7b
parent1b94f1827a7ec57fea48bf852b2be46c560a23c2 (diff)
downloadguix-6f8ede1a87abe8776d0fe8caf31714dc1e3d72a6.tar.gz
gnu: mit-krb5: Replace with 1.14.3 [fixes CVE-2016-3120].
* gnu/packages/mit-krb5.scm (mit-krb5)[replacement]: New field.
(mit-krb5-1.14.3): New variable.
-rw-r--r--gnu/packages/mit-krb5.scm16
1 files changed, 16 insertions, 0 deletions
diff --git a/gnu/packages/mit-krb5.scm b/gnu/packages/mit-krb5.scm
index 2b8839c7e9..3d11f3a450 100644
--- a/gnu/packages/mit-krb5.scm
+++ b/gnu/packages/mit-krb5.scm
@@ -1,6 +1,7 @@
 ;;; GNU Guix --- Functional package management for GNU
 ;;; Copyright © 2012, 2013 Andreas Enge <andreas@enge.fr>
 ;;; Copyright © 2015, 2016 Mark H Weaver <mhw@netris.org>
+;;; Copyright © 2016 Leo Famulari <leo@famulari.name>
 ;;;
 ;;; This file is part of GNU Guix.
 ;;;
@@ -30,6 +31,7 @@
 (define-public mit-krb5
   (package
     (name "mit-krb5")
+    (replacement mit-krb5-1.14.3)
     (version "1.14.2")
     (source (origin
               (method url-fetch)
@@ -82,3 +84,17 @@ cryptography.")
     (license (non-copyleft "file://NOTICE"
                            "See NOTICE in the distribution."))
     (home-page "http://web.mit.edu/kerberos/")))
+
+(define mit-krb5-1.14.3
+  (package
+    (inherit mit-krb5)
+    (source
+      (let ((version "1.14.3"))
+        (origin
+          (method url-fetch)
+          (uri (string-append "http://web.mit.edu/kerberos/dist/krb5/"
+                              (version-major+minor version)
+                              "/krb5-" version ".tar.gz"))
+          (sha256
+           (base32
+            "1jgjiyh1sp72lkxvk437lz5hzcibvw99jc4ihzfz03fg43aj0ind")))))))