summary refs log tree commit diff
path: root/gnu
diff options
context:
space:
mode:
authorMarius Bakke <marius@gnu.org>2021-08-12 00:23:01 +0200
committerMarius Bakke <marius@gnu.org>2021-08-12 00:23:01 +0200
commitffa01e68859bb7a6daa9fcffdc8d77ca35db4bc0 (patch)
tree90ebc8396f4f67bea594ad4c2cfcdec1279a50fc /gnu
parent43bc7dd39c3d7891c9f35a8372a520f4afdc7875 (diff)
downloadguix-ffa01e68859bb7a6daa9fcffdc8d77ca35db4bc0.tar.gz
gnu: mit-krb5: Replace with 1.19.2 [fixes CVE-2021-36222].
This is an adaptation of fdd2f57359, for the 1.19 branch of mit-krb5.

* gnu/packages/kerberos.scm (mit-krb5)[replacement]: New field.
(mit-krb5-1.19.2): New variable.
Diffstat (limited to 'gnu')
-rw-r--r--gnu/packages/kerberos.scm18
1 files changed, 18 insertions, 0 deletions
diff --git a/gnu/packages/kerberos.scm b/gnu/packages/kerberos.scm
index 5065f3be17..01fea23ec1 100644
--- a/gnu/packages/kerberos.scm
+++ b/gnu/packages/kerberos.scm
@@ -54,6 +54,7 @@
 (define-public mit-krb5
   (package
     (name "mit-krb5")
+    (replacement mit-krb5-1.19.2)
     (version "1.19.1")
     (source (origin
               (method url-fetch)
@@ -117,6 +118,23 @@ cryptography.")
     (home-page "https://web.mit.edu/kerberos/")
     (properties '((cpe-name . "kerberos")))))
 
+(define mit-krb5-1.19.2
+  (package
+    (inherit mit-krb5)
+    (version "1.19.2")
+    (source (origin
+              (inherit (package-source mit-krb5))
+              (uri (list
+                    (string-append "https://web.mit.edu/kerberos/dist/krb5/"
+                                   (version-major+minor version)
+                                   "/krb5-" version ".tar.gz")
+                    (string-append "https://kerberos.org/dist/krb5/"
+                                   (version-major+minor version)
+                                   "/krb5-" version ".tar.gz")))
+              (sha256
+               (base32
+                "0snz1jm2w4dkk65zcz953jmmv9mqa30fanch2bk8r3rs9vp3yi8h"))))))
+
 (define-public shishi
   (package
     (name "shishi")