about summary refs log tree commit diff
diff options
context:
space:
mode:
authorAndreas Rammhold <andreas@rammhold.de>2018-01-11 12:26:50 +0100
committerAndreas Rammhold <andreas@rammhold.de>2018-01-11 12:45:03 +0100
commit9213d0cfa54883311462b82938bf05fad0ff2465 (patch)
tree9422512432208e64cc48a37084b1a842b9670d5a
parent788c5195f36fe101ecbf016137e017655063bc6b (diff)
downloadnixlib-9213d0cfa54883311462b82938bf05fad0ff2465.tar
nixlib-9213d0cfa54883311462b82938bf05fad0ff2465.tar.gz
nixlib-9213d0cfa54883311462b82938bf05fad0ff2465.tar.bz2
nixlib-9213d0cfa54883311462b82938bf05fad0ff2465.tar.lz
nixlib-9213d0cfa54883311462b82938bf05fad0ff2465.tar.xz
nixlib-9213d0cfa54883311462b82938bf05fad0ff2465.tar.zst
nixlib-9213d0cfa54883311462b82938bf05fad0ff2465.zip
spark: mark versions <= 2.2.0 && <= 2.1.2 as insecure due to CVE-2017-12612
Details can be retrieve at [1].

[1] https://spark.apache.org/security.html
Diffstat
-rw-r--r--pkgs/applications/networking/cluster/spark/default.nix1
1 files changed, 1 insertions, 0 deletions
diff --git a/pkgs/applications/networking/cluster/spark/default.nix b/pkgs/applications/networking/cluster/spark/default.nix
index 79500a33bf80..60625a407419 100644
--- a/pkgs/applications/networking/cluster/spark/default.nix
+++ b/pkgs/applications/networking/cluster/spark/default.nix
@@ -67,6 +67,7 @@ stdenv.mkDerivation rec {
     license          = stdenv.lib.licenses.asl20;
     platforms        = stdenv.lib.platforms.all;
     maintainers      = with maintainers; [ thoughtpolice offline ];
+    knownVulnerabilities = optional (!((versionAtLeast version "2.2.0") || (versionOlder version "2.2.0" && versionAtLeast version "2.1.2"))) "CVE-2017-12612";
     repositories.git = git://git.apache.org/spark.git;
   };
 }
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-21 13:14:43 +0000