diff options
author | Franz Pletz <fpletz@fnordicwalking.de> | 2016-09-24 19:27:50 +0200 |
---|---|---|
committer | Franz Pletz <fpletz@fnordicwalking.de> | 2016-09-24 21:52:51 +0200 |
commit | 6244be2d0a07778b51eb4ff41f5ecefc187b54a8 (patch) | |
tree | 6f0781c130b3823267bdbe0c3a6ce9783b602b4e /pkgs/development/libraries/pcre | |
parent | 265a4752f63bb3eb37a7b3ae4f5f488e1a6022b0 (diff) | |
download | nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.tar nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.tar.gz nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.tar.bz2 nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.tar.lz nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.tar.xz nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.tar.zst nixlib-6244be2d0a07778b51eb4ff41f5ecefc187b54a8.zip |
pcre: 8.38 -> 8.39 (security)
Fixes: - CVE-2014-9769 - CVE-2015-2327 - CVE-2015-2328 - CVE-2015-8382 - CVE-2016-3191 cc #18856
Diffstat (limited to 'pkgs/development/libraries/pcre')
-rw-r--r-- | pkgs/development/libraries/pcre/CVE-2016-1283.patch | 18 | ||||
-rw-r--r-- | pkgs/development/libraries/pcre/default.nix | 8 |
2 files changed, 2 insertions, 24 deletions
diff --git a/pkgs/development/libraries/pcre/CVE-2016-1283.patch b/pkgs/development/libraries/pcre/CVE-2016-1283.patch deleted file mode 100644 index 2c2dad29e929..000000000000 --- a/pkgs/development/libraries/pcre/CVE-2016-1283.patch +++ /dev/null @@ -1,18 +0,0 @@ -Index: pcre_compile.c -=================================================================== ---- a/pcre_compile.c (revision 1635) -+++ b/pcre_compile.c (revision 1636) -@@ -7311,7 +7311,12 @@ - so far in order to get the number. If the name is not found, leave - the value of recno as 0 for a forward reference. */ - -- else -+ /* This patch (removing "else") fixes a problem when a reference is -+ to multiple identically named nested groups from within the nest. -+ Once again, it is not the "proper" fix, and it results in an -+ over-allocation of memory. */ -+ -+ /* else */ - { - ng = cd->named_groups; - for (i = 0; i < cd->names_found; i++, ng++) diff --git a/pkgs/development/libraries/pcre/default.nix b/pkgs/development/libraries/pcre/default.nix index 7e2bec80c3ca..d3499f3e15c1 100644 --- a/pkgs/development/libraries/pcre/default.nix +++ b/pkgs/development/libraries/pcre/default.nix @@ -7,7 +7,7 @@ with stdenv.lib; assert elem variant [ null "cpp" "pcre16" "pcre32" ]; let - version = "8.38"; + version = "8.39"; pname = if (variant == null) then "pcre" else if (variant == "cpp") then "pcre-cpp" else variant; @@ -17,13 +17,9 @@ in stdenv.mkDerivation rec { src = fetchurl { url = "ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/pcre-${version}.tar.bz2"; - sha256 = "1pvra19ljkr5ky35y2iywjnsckrs9ch2anrf5b0dc91hw8v2vq5r"; + sha256 = "12wyajlqx2v7dsh39ra9v9m5hibjkrl129q90bp32c28haghjn5q"; }; - patches = [ - ./CVE-2016-1283.patch - ]; - outputs = [ "bin" "dev" "out" "doc" "man" ]; configureFlags = [ |