gnu: zstd: Downgrade to 1.4.4 and make security graft saner.

* gnu/packages/patches/zstd-CVE-2021-24031_CVE-2021-24032.patch: New patch. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/compression.scm (zstd-1.4.9): Remove. (zstd/fixed): New variable. Apply patch. (zstd)[replacement]: Graft with zstd/fixed.
author: Léo Le Bouter <lle-bout@zaclys.net> 2021-03-30 02:10:19 +0200
committer: Léo Le Bouter <lle-bout@zaclys.net> 2021-03-30 02:21:25 +0200
commit: 9feef62b73e284e106717a386624d6da90750a3d (patch)
tree: 48886275eeca43c4dc5f4f53d6ca29a5c0c7745e /gnu/local.mk
parent: aae012e91e66e3edcc486db7bd4939fb34ed3b24 (diff)
download: guix-9feef62b73e284e106717a386624d6da90750a3d.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/gnu/local.mk b/gnu/local.mk
index 40732ca696..deb4ddcede 100644
--- a/gnu/local.mk
+++ b/gnu/local.mk
@@ -1824,6 +1824,7 @@ dist_patch_DATA =						\
   %D%/packages/patches/yggdrasil-extra-config.patch	\
   %D%/packages/patches/ytnef-CVE-2021-3403.patch	\
   %D%/packages/patches/ytnef-CVE-2021-3404.patch	\
+  %D%/packages/patches/zstd-CVE-2021-24031_CVE-2021-24032.patch	\
   %D%/packages/patches/zziplib-CVE-2018-16548.patch
 
 MISC_DISTRO_FILES =				\
author	Léo Le Bouter <lle-bout@zaclys.net>	2021-03-30 02:10:19 +0200
committer	Léo Le Bouter <lle-bout@zaclys.net>	2021-03-30 02:21:25 +0200
commit	9feef62b73e284e106717a386624d6da90750a3d (patch)
tree	48886275eeca43c4dc5f4f53d6ca29a5c0c7745e /gnu/local.mk
parent	aae012e91e66e3edcc486db7bd4939fb34ed3b24 (diff)
download	guix-9feef62b73e284e106717a386624d6da90750a3d.tar.gz