gnu: libtasn1: Replace 4.7 with 4.8 [fixes CVE-2016-4008].

* gnu/packages/tls.scm (libtasn1)[replacement]: New field.
(libtasn1/fixed): New variable.
This commit is contained in:
Ludovic Courtès 2016-04-28 18:00:21 +02:00
parent 5c6a062d48
commit f28cb89e48
No known key found for this signature in database
GPG Key ID: 090B11993D9AEBB5
1 changed files with 14 additions and 0 deletions

View File

@ -65,8 +65,22 @@
for transmitting machine-neutral encodings of data objects in computer
networking, allowing for formal validation of data according to some
specifications.")
(replacement libtasn1/fixed)
(license license:lgpl2.0+)))
(define libtasn1/fixed ;for CVE-2016-4008
(package
(inherit libtasn1)
(source
(let ((version "4.8"))
(origin
(method url-fetch)
(uri (string-append "mirror://gnu/libtasn1/libtasn1-"
version ".tar.gz"))
(sha256
(base32
"04y5m29pqmvkfdbppmsdifyx89v8xclxzklpfc7a1fkr9p4jz07s")))))))
(define-public p11-kit
(package
(name "p11-kit")