From 63bbf38fb177bc28e6b8c8692815812e636d6e18 Mon Sep 17 00:00:00 2001 From: Tobias Geerinckx-Rice Date: Wed, 25 Oct 2017 18:23:44 +0200 Subject: gnu: expat: Update replacement to 2.2.4 [security fixes]. See 'Changes' in the source distribution for more information about the fixed security issues. * gnu/packages/xml.scm (expat)[replacement]: Update to 2.2.4. (expat-2.2.2): Replace with... (expat-2.2.4): ...new variable. --- gnu/packages/xml.scm | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) (limited to 'gnu/packages/xml.scm') diff --git a/gnu/packages/xml.scm b/gnu/packages/xml.scm index 163743c07d..4e69449531 100644 --- a/gnu/packages/xml.scm +++ b/gnu/packages/xml.scm @@ -12,7 +12,7 @@ ;;; Copyright © 2016 Ben Woodcroft ;;; Copyright © 2016 Jan Nieuwenhuizen ;;; Copyright © 2016, 2017 ng0 -;;; Copyright © 2016 Tobias Geerinckx-Rice +;;; Copyright © 2016, 2017 Tobias Geerinckx-Rice ;;; Copyright © 2016, 2017 Marius Bakke ;;; Copyright © 2017 Adriano Peluso ;;; Copyright © 2017 Gregor Giesen @@ -58,7 +58,7 @@ (package (name "expat") (version "2.2.1") - (replacement expat-2.2.2) + (replacement expat-2.2.4) (source (origin (method url-fetch) (uri (string-append "mirror://sourceforge/expat/expat/" @@ -75,17 +75,17 @@ stream-oriented parser in which an application registers handlers for things the parser might find in the XML document (like start tags).") (license license:expat))) -(define expat-2.2.2 ; Fixes CVE-2017-9233, CVE-2016-9063 and other issues. +(define expat-2.2.4 ; Fix CVE-{2016-9063,2017-9233,2017-11742} & other issues. (package (inherit expat) - (version "2.2.2") + (version "2.2.4") (source (origin (method url-fetch) (uri (string-append "mirror://sourceforge/expat/expat/" version "/expat-" version ".tar.bz2")) (sha256 (base32 - "0ik0r39ala9c6hj4kxrk933klgwkzlkbrfhvhaykx8l1rwgr2xj3")))))) + "17h1fb9zvqvf0sr78j211bngc6jpql5wzar8fg9b52jzjvdqbb83")))))) (define-public libebml (package -- cgit 1.4.1