GNU bug report logs - #28755
[PATCH] gnu: mit-krb5: Replace with 1.15.2 [fixes CVE-2017-{11368, 11462}].

Previous Next

Package: guix-patches;

Reported by: Leo Famulari <leo <at> famulari.name>

Date: Mon, 9 Oct 2017 03:05:01 UTC

Severity: normal

Tags: patch

Done: Leo Famulari <leo <at> famulari.name>

Bug is archived. No further changes may be made.

To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 28755 in the body.
You can then email your comments to 28755 AT debbugs.gnu.org in the normal way.

Toggle the display of automated, internal messages from the tracker.

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to guix-patches <at> gnu.org:
bug#28755; Package guix-patches. (Mon, 09 Oct 2017 03:05:02 GMT) Full text and rfc822 format available.
Acknowledgement sent to Leo Famulari <leo <at> famulari.name>:
New bug report received and forwarded. Copy sent to guix-patches <at> gnu.org. (Mon, 09 Oct 2017 03:05:02 GMT) Full text and rfc822 format available.

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Leo Famulari <leo <at> famulari.name>
To: guix-patches <at> gnu.org
Subject: [PATCH] gnu: mit-krb5: Replace with 1.15.2 [fixes CVE-2017-{11368,
 11462}].
Date: Sun,  8 Oct 2017 23:03:51 -0400

* gnu/packages/kerberos.scm (mit-krb5)[replacement]: New field.
(mit-krb5-1.15.2): New variable.
---
 gnu/packages/kerberos.scm | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/gnu/packages/kerberos.scm b/gnu/packages/kerberos.scm
index 48b220419..501cede3e 100644
--- a/gnu/packages/kerberos.scm
+++ b/gnu/packages/kerberos.scm
@@ -46,6 +46,7 @@
 (define-public mit-krb5
   (package
     (name "mit-krb5")
+    (replacement mit-krb5-1.15.2)
     (version "1.15.1")
     (source (origin
               (method url-fetch)
@@ -93,6 +94,19 @@ cryptography.")
     (home-page "http://web.mit.edu/kerberos/")
     (properties '((cpe-name . "kerberos")))))
 
+(define mit-krb5-1.15.2 ; CVE-2017-{11368,11462}
+  (package
+    (inherit mit-krb5)
+    (version "1.15.2")
+    (source (origin
+              (method url-fetch)
+              (uri (string-append "http://web.mit.edu/kerberos/dist/krb5/"
+                                  (version-major+minor version)
+                                  "/krb5-" version ".tar.gz"))
+              (sha256
+               (base32
+                "0zn8s7anb10hw3nzwjz7vg10fgmmgvwnibn2zrn3nppjxn9f6f8n"))))))
+
 (define-public shishi
   (package
     (name "shishi")
-- 
2.14.2
Information forwarded to guix-patches <at> gnu.org:
bug#28755; Package guix-patches. (Mon, 09 Oct 2017 07:34:02 GMT) Full text and rfc822 format available.

Message #8 received at 28755 <at> debbugs.gnu.org (full text, mbox):

From: ludo <at> gnu.org (Ludovic Courtès)
To: Leo Famulari <leo <at> famulari.name>
Cc: 28755 <at> debbugs.gnu.org
Subject: Re: [bug#28755] [PATCH] gnu: mit-krb5: Replace with 1.15.2 [fixes
 CVE-2017-{11368, 11462}].
Date: Mon, 09 Oct 2017 09:33:18 +0200

Leo Famulari <leo <at> famulari.name> skribis:

> * gnu/packages/kerberos.scm (mit-krb5)[replacement]: New field.
> (mit-krb5-1.15.2): New variable.

LGTM, thanks!

Ludo'.
bug closed, send any further explanations to 28755 <at> debbugs.gnu.org and Leo Famulari <leo <at> famulari.name> Request was from Leo Famulari <leo <at> famulari.name> to control <at> debbugs.gnu.org. (Mon, 09 Oct 2017 17:36:01 GMT) Full text and rfc822 format available.
bug archived. Request was from Debbugs Internal Request <help-debbugs <at> gnu.org> to internal_control <at> debbugs.gnu.org. (Tue, 07 Nov 2017 12:24:06 GMT) Full text and rfc822 format available.
This bug report was last modified 7 years and 283 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.