Commit Graph

13007 Commits

Author SHA1 Message Date
Efraim Flashner b507646160
gnu: tinyproxy: Update to 1.8.4 [Fixes CVE-2012-3505].
* gnu/packages/web.scm (tinyproxy): Update to 1.8.4.
[source]: Download from new location.
[home-page]: Project has moved to Github.
2016-05-30 12:08:48 +03:00
Efraim Flashner 538884ccef
gnu: jansson: Fix CVE-2016-4425.
* gnu/packages/web.scm (jansson)[source]: Add patch.
* gnu/packages/patches/jansson-CVE-2016-4425.patch: New variable.
* gnu/local.mk (dist_patch_DATA): Add it.
2016-05-30 09:57:16 +03:00
Efraim Flashner 9116f12690
gnu: antiword: Fix CVE-2014-8123.
* gnu/packages/textutils.scm (antiword)[source]: Add patch.
* gnu/packages/patches/antiword-CVE-2014-8123: New variable.
* gnu/local.mk (dist_patch_DATA): Add it.
2016-05-30 09:57:09 +03:00
Efraim Flashner d01f680c07
gnu: a2ps: Use 'modify-phases'.
* gnu/packages/pretty-print.scm (a2ps)[arguments]: Use 'modify-phases'.
2016-05-30 07:44:29 +03:00
Efraim Flashner 6447e19108
gnu: a2ps: Fix CVE-2001-1593, CVE-2014-0466.
* gnu/packages/pretty-print.scm (a2ps)[source]: Add patches.
* gnu/packages/patches/a2ps-CVE-2001-1593.patch,
gnu/packages/patches/a2ps-CVE-2014-0466.patch: New variables.
* gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30 07:44:29 +03:00
Leo Famulari ccda7c8317
gnu: pcre2: Fix CVE-2016-3191.
* gnu/packages/patches/pcre2-CVE-2016-3191.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/pcre.scm (pcre2): Use it.
2016-05-29 23:57:31 -04:00
Leo Famulari 0d567b5531
gnu: libyaml: Fix CVE-2014-9130.
* gnu/packages/patches/libyaml-CVE-2014-9130.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/web.scm (libyaml): Use it.
2016-05-29 23:48:28 -04:00
Leo Famulari d8862778c1
gnu: graphicsmagick: Fix CVE-2016-5118.
* gnu/packages/patches/graphicsmagick-CVE-2016-5118.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/imagemagick.scm (graphicsmagick): Use it.
2016-05-29 23:46:21 -04:00
Efraim Flashner b3d20b8280
gnu: vorbis-tools: Fix CVE-2014-9638, CVE-2014-9639, CVE-2014-9640.
* gnu/packages/xiph.scm (vorbis-tools)[source]: Add patches.
* gnu/packages/patches/vorbis-tools-CVE-2014-9638+CVE-2014-9639.patch,
gnu/packages/patches/vorbis-tools-CVE-2014-9640.patch: New variables.
* gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30 06:42:02 +03:00
Efraim Flashner e99dd67ad8
gnu: libtar: Fix CVE-2013-4420.
* gnu/packages/compression.scm (libtar)[source]: Add patch.
* gnu/packages/patches/libtar-CVE-2013-4420.patch: New variable.
* gnu/local.mk (dist_patch_DATA): Add it.

This is a follow-up to 89d80159b1.
2016-05-30 06:04:46 +03:00
Ludovic Courtès 28dc10a455
gnu: glibc: Refer to the target kernel headers when cross-compiling.
This fixes a regression introduced in
efc4eb1475 whereby the build process
corresponding to 'guix build glibc --target=mips64el-linux-gnu' would
refer to the native headers instead of the target headers, leading to a
build failure:

  ../sysdeps/unix/sysv/linux/statfs64.c: In function ‘__statfs64’:
  ../sysdeps/unix/sysv/linux/statfs64.c:73:1: error: control reaches end of non-void function [-Werror=return-type]
   }
   ^

When we were using CROSS_CPATH instead of CROSS_C_INCLUDE_PATH, the
problem was hidden by the fact that CPATH corresponds to '-I' whereas
C_INCLUDE_PATH corresponds to '-isystem', and '-isystem' directories are
searched after '-I' directories.

* gnu/packages/base.scm (glibc)[arguments]: Refer to the kernel headers
from '%build-target-inputs' when cross-building.
2016-05-30 00:17:44 +02:00
Efraim Flashner 89d80159b1
gnu: libtar: Update to 1.2.20 [fixes CVE-2013-4397, CVE-2013-4420].
* gnu/packages/compression.scm (libtar): Update to 1.2.20.
[source]: Add Debian mirror.
[arguments]: Add 'autoconf phase.
[native-inputs]: Add autoconf, automake, libtool.
[inputs]: Add zlib.
[home-page]: Point to temporary home.
2016-05-29 22:47:05 +03:00
Efraim Flashner 43ec6ca06e
gnu: pciutils: Add kmod support.
* gnu/packages/pciutils.scm (pciutils)[inputs]: Add kmod.
2016-05-29 22:07:47 +03:00
Efraim Flashner 0ef7a93d78
gnu: pciutils: Use 'modify-phases'.
* gnu/packages/pciutils.scm (pciutils)[arguments]: Use 'modify-phases'.
2016-05-29 22:07:47 +03:00
Efraim Flashner fb3c855381
gnu: pciutils: Update to 3.5.1.
* gnu/packages/pciutils.scm (pciutils): Update to 3.5.1.
2016-05-29 22:07:47 +03:00
Leo Famulari 65da8dd01e
gnu: rpm: Fix CVE-2014-8118.
* gnu/packages/patches/rpm-CVE-2014-8118.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/package-management.scm (rpm): Use it.
2016-05-29 14:02:08 -04:00
Leo Famulari 41019e9f2a
gnu: rpm: Update to 4.12.0.1.
* gnu/packages/package-management.scm (rpm): Update to 4.12.0.1.
2016-05-29 14:02:08 -04:00
Leo Famulari d6c108a916
gnu: zeromq: Update to 4.0.7 [fixes CVE-2014-9721].
* gnu/packages/networking.scm (zeromq): Update to 4.0.7.
2016-05-29 13:40:38 -04:00
Leo Famulari 5d1cd076de
gnu: libsodium: Update to 1.0.10.
* gnu/packages/crypto.scm (libsodium): Update to 1.0.10.
2016-05-29 13:27:05 -04:00
Leo Famulari 1d982d787d
gnu: procmail: Fix CVE-2014-3618.
* gnu/packages/patches/procmail-CVE-2014-3618.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/mail.scm (procmail): Use it.
2016-05-29 13:12:16 -04:00
Leo Famulari c68d8126f9
gnu: elfutils: Update to 0.166 [fixes CVE-2014-9447].
* gnu/packages/elf.scm (elfutils): Update to 0.166.
2016-05-29 12:49:50 -04:00
Efraim Flashner 89deaf167a
gnu: luajit: Update to 2.0.4.
* gnu/packages/lua.scm (luajit): Update to 2.0.4.
2016-05-29 09:47:46 +03:00
Efraim Flashner 2cb33ef86e
gnu: lua: Update to 5.2.4.
* gnu/packages/lua.scm (lua): Update to 5.2.4.
2016-05-29 09:47:46 +03:00
Efraim Flashner a4349e7a00
gnu: lua: Use 'modify-phases'.
* gnu/packages/lua.scm (lua)[arguments]: Use 'modify-phases'.
2016-05-29 09:47:46 +03:00
Efraim Flashner 32fddd8e29
gnu: lua-5.1: Fix CVE-2014-5461.
* gnu/packages/lua.scm (lua-5.1)[source]: Add patch.
* gnu/packages/patches/lua-CVE-2014-5461: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
2016-05-29 09:47:46 +03:00
宋文武 576b1aeed6
gnu: retroarch: Update to 1.3.4.
* gnu/packages/games.scm (retroarch): Update to 1.3.4.
2016-05-29 11:12:12 +08:00
Leo Famulari e00df583a2
gnu: libyaml: Update to 0.1.6 [fixes CVE-2014-2525].
* gnu/packages/web.scm (libyaml): Update to 0.1.6.
2016-05-28 20:21:12 -04:00
Leo Famulari a535e12226
services: Add urandom-seed-service.
Fixes <http://bugs.gnu.org/23605>.

* gnu/services/base.scm (urandom-seed-service): New procedure.
(%random-seed-file, urandom-seed-service-type): New variables.
(%urandom-seed-shepherd-service): New procedure.
(%base-services): Call 'urandom-seed-service'.
* doc/guix.texi (Base Services): Document it.
2016-05-28 19:59:31 -04:00
Efraim Flashner 922fe075d1
gnu: potrace: Update to 1.13 [fixes CVE-2013-7437].
* gnu/packages/fontutils.scm (potrace): Update to 1.13.
2016-05-28 22:57:16 +03:00
Patrick Hetu 9b381643f0
gnu: Add Guile-GNOME.
* gnu/packages/gtk.scm (guile-gnome): New variable.

Co-authored-by: Ludovic Courtès <ludo@gnu.org>
2016-05-28 18:06:15 +02:00
Ben Woodcroft 9fcc3509a7 gnu: Update diamond to 0.8.3.
* gnu/packages/bioinformatics.scm (diamond): Update to 0.8.3.
2016-05-28 23:44:16 +10:00
宋文武 68e9ee725a
gnu: Add gcide.
* gnu/packages/dictionaries.scm (gcide): New variable.
2016-05-28 12:53:01 +08:00
宋文武 de477809d7
gnu: wxmaxima: Wrap with GSETTINGS_SCHEMA_DIR and XDG_DATA_DIRS.
Fixes <http://bugs.gnu.org/22709> and <http://bugs.gnu.org/23260>.

* gnu/packages/math.scm (wxmaxima)[arguments]: Wrap with
GSETTINGS_SCHEMA_DIR and XDG_DATA_DIRS.
2016-05-28 07:29:10 +08:00
宋文武 1a6d3cd374
gnu: gprolog: Don't install files into "$out/gprolog-1.4.4".
* gnu/packages/gprolog.scm (gprolog)[arguments]: Pass '--with-install-dir'
to #:configure-flags.
2016-05-28 07:27:46 +08:00
宋文武 6242b314c2
gnu: Add wiredtiger.
* gnu/packages/database.scm (wiredtiger): New variable.
2016-05-28 07:27:46 +08:00
Ludovic Courtès 870bf71eb0
cve: Use a more compact format for the list of package/versions.
On a warm cache, "guix lint -c cve vorbis-tools" goes down
from 6.5s to 2.4s.

* guix/cve.scm (cpe->package-name): Change to return two values instead
of a pair.
(cpe->product-alist): New procedure.
(%parse-vulnerability-feed): Use it instead of 'filter-map'.
(fetch-vulnerabilities): Bump sexp format version to 1.
(vulnerabilities->lookup-proc): Adjust accordingly.  When #:version is
omitted, return a list of vulnerabilities instead of a list of
version/vulnerability pairs.
* tests/cve.scm (%expected-vulnerabilities)
("vulnerabilities->lookup-proc): Adjust accordingly.
2016-05-28 01:07:12 +02:00
Ludovic Courtès 494dc2fc62
guix package: Inherit the transformed version number.
Previously, 'guix package -i emacs --with-source=./emacs-42.tar.gz'
would fail to use "42" as the version number in the manifest entry.

Reported by piyo on #guix.

* guix/scripts/package.scm (process-actions)[transform-entry]: Inherit
the version number from the result of TRANSFORM when it's a package.
* tests/guix-package.sh: Test it.
2016-05-27 22:05:34 +02:00
Leo Famulari b5d08d7c28
gnu: gd: Update to 2.2.1 [fixes CVE-2015-{8874, 8877}].
* gnu/packages/patches/gd-CVE-2016-3074.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
* gnu/packages/gd.scm (gd): Update to 2.2.1.
[source]: Remove patch. Update source URL.
2016-05-27 12:33:42 -04:00
Efraim Flashner 9da459f350
gnu: scrot: Add source mirror.
* gnu/packages/xdisorg.scm (scrot)[source]: Add fossies mirror.
2016-05-27 16:49:12 +03:00
Efraim Flashner 6d22653e39
gnu: serf: Update project source.
* gnu/packages/web.scm (serf)[source]: Releases are now hosted by Apache.
[home-page]: Project is now hosted by Apache.
2016-05-27 16:40:05 +03:00
Efraim Flashner e4ddf924e5
gnu: xlockmore: Update to 5.47.
* gnu/packages/xdisorg.scm (xlockmore): Update to 5.47.
2016-05-27 16:35:47 +03:00
Efraim Flashner a60c705bd8
gnu: t1lib: Add source mirror.
* gnu/packages/fontutils.scm (t1lib)[souce]: Add fossies mirror.
2016-05-27 16:23:21 +03:00
Efraim Flashner 63ae20da16
gnu: synergy: Update to 1.7.6.
* gnu/packages/synergy.scm (synergy): Update to 1.7.6.
2016-05-27 16:07:20 +03:00
Efraim Flashner a3025a4490
gnu: synergy: Use 'modify-phases'.
* gnu/packages/synergy.scm (synergy)[arguments]; Use 'modify-phases'.
2016-05-27 15:54:10 +03:00
Efraim Flashner cecaee420e
gnu: synergy: Update project source.
* gnu/packages/synergy.scm (synergy)[source]: Use new location.
[home-page]: Use project's new website.
2016-05-27 14:56:49 +03:00
Efraim Flashner ea3d5291cc
gnu: eyed3: Update to 0.7.9.
* gnu/packages/mp3.scm (eyed3): Update to 0.7.9.
2016-05-27 11:37:53 +03:00
Efraim Flashner 1a847b708d
gnu: mpc123: Use 'modify-phases'.
* gnu/packages/mp3.scm (mpc123)[arguments]: Use 'modify-phases'.
2016-05-27 11:37:53 +03:00
Efraim Flashner d1cd67af5d
gnu: mpc123: Add new source location.
* gnu/packages/mp3.scm (mpc123)[source]: Add Debian mirror.
[home-page]: Project has moved to Github.
2016-05-27 11:37:53 +03:00
Ludovic Courtès b18ede2704
download: Default to a 10s connection establishment timeout.
* guix/build/download.scm (ftp-fetch): Add #:timeout and pass it to
'ftp-open'.
(http-fetch): Add #:timeout and pass it to 'open-connection-for-uri' and
in recursive calls.
(url-fetch): Add #:timeout and pass it to 'http-fetch' and 'ftp-fetch'.
2016-05-27 10:37:11 +02:00
Ludovic Courtès dab2472c6a
download: Use URI objects for content-addressed mirrors.
This fixes a bug whereby 'http-fetch' would be passed a string instead
of a URI object.

* guix/build/download.scm (url-fetch): Rename 'content-addressed-urls'
to 'content-addressed-uris', and call 'string->uri'.
2016-05-27 10:37:11 +02:00