[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
02/06: gnu: nghttp2: Replace with 1.39.2 [fixes CVE-2019-9511, CVE-2019-
From: |
guix-commits |
Subject: |
02/06: gnu: nghttp2: Replace with 1.39.2 [fixes CVE-2019-9511, CVE-2019-9513]. |
Date: |
Sun, 13 Oct 2019 16:50:09 -0400 (EDT) |
mbakke pushed a commit to branch master
in repository guix.
commit cb867883ea5cfc56dd7fe5bc6c29fda491d374c2
Author: Marius Bakke <address@hidden>
Date: Sun Oct 13 20:50:47 2019 +0200
gnu: nghttp2: Replace with 1.39.2 [fixes CVE-2019-9511, CVE-2019-9513].
* gnu/packages/web.scm (nghttp2-1.39.2): New variable.
(nghttp2)[replacement]: New field.
---
gnu/packages/web.scm | 14 ++++++++++++++
1 file changed, 14 insertions(+)
diff --git a/gnu/packages/web.scm b/gnu/packages/web.scm
index 7b0bb91..728fb60 100644
--- a/gnu/packages/web.scm
+++ b/gnu/packages/web.scm
@@ -6530,6 +6530,7 @@ derivation by David Revoy from the original MonsterID by
Andreas Gohr.")
(package
(name "nghttp2")
(version "1.39.1")
+ (replacement nghttp2-1.39.2)
(source
(origin
(method url-fetch)
@@ -6607,6 +6608,19 @@ compressed JSON header blocks.
@end itemize\n")
(license license:expat)))
+(define nghttp2-1.39.2
+ (package
+ (inherit nghttp2)
+ (version "1.39.2")
+ (source (origin
+ (method url-fetch)
+ (uri (string-append "https://github.com/nghttp2/nghttp2/"
+ "releases/download/v" version "/"
+ "nghttp2-" version ".tar.xz"))
+ (sha256
+ (base32
+ "12yfsjghbaypp4w964d45ih9vs38g6anih80wbsflaxx192idlm2"))))))
+
(define-public hpcguix-web
(let ((commit "f39c90b35e99e4122b0866ec4337020d61c81508")
(revision "4"))
- branch master updated (0475c88 -> 6485528), guix-commits, 2019/10/13
- 02/06: gnu: nghttp2: Replace with 1.39.2 [fixes CVE-2019-9511, CVE-2019-9513].,
guix-commits <=
- 03/06: gnu: curl: Replace with 7.66.0 [fixes CVE-2019-5481, CVE-2019-5482]., guix-commits, 2019/10/13
- 04/06: gnu: libgcrypt: Replace with 1.8.5 [fixes CVE-2019-13627]., guix-commits, 2019/10/13
- 05/06: gnu: expat: Replace with 2.2.9 [fixes CVE-2019-15903]., guix-commits, 2019/10/13
- 01/06: gnu: OpenSSL@1.0: Replace with 1.0.2t [fixes CVE-2019-1547, CVE-2019-1563]., guix-commits, 2019/10/13
- 06/06: gnu: librsvg: Update to 2.46.0., guix-commits, 2019/10/13