From 9213d0cfa54883311462b82938bf05fad0ff2465 Mon Sep 17 00:00:00 2001 From: Andreas Rammhold Date: Thu, 11 Jan 2018 12:26:50 +0100 Subject: spark: mark versions <= 2.2.0 && <= 2.1.2 as insecure due to CVE-2017-12612 Details can be retrieve at [1]. [1] https://spark.apache.org/security.html --- pkgs/applications/networking/cluster/spark/default.nix | 1 + 1 file changed, 1 insertion(+) diff --git a/pkgs/applications/networking/cluster/spark/default.nix b/pkgs/applications/networking/cluster/spark/default.nix index 79500a33bf80..60625a407419 100644 --- a/pkgs/applications/networking/cluster/spark/default.nix +++ b/pkgs/applications/networking/cluster/spark/default.nix @@ -67,6 +67,7 @@ stdenv.mkDerivation rec { license = stdenv.lib.licenses.asl20; platforms = stdenv.lib.platforms.all; maintainers = with maintainers; [ thoughtpolice offline ]; + knownVulnerabilities = optional (!((versionAtLeast version "2.2.0") || (versionOlder version "2.2.0" && versionAtLeast version "2.1.2"))) "CVE-2017-12612"; repositories.git = git://git.apache.org/spark.git; }; } -- cgit 1.4.1 From e250ca072ab8afd449aa8296378a30039c1893ff Mon Sep 17 00:00:00 2001 From: Andreas Rammhold Date: Thu, 11 Jan 2018 12:50:51 +0100 Subject: spark_16: removed ancient (insecure) version --- pkgs/applications/networking/cluster/spark/default.nix | 4 ---- pkgs/top-level/all-packages.nix | 1 - 2 files changed, 5 deletions(-) diff --git a/pkgs/applications/networking/cluster/spark/default.nix b/pkgs/applications/networking/cluster/spark/default.nix index 60625a407419..ac3399445b40 100644 --- a/pkgs/applications/networking/cluster/spark/default.nix +++ b/pkgs/applications/networking/cluster/spark/default.nix @@ -6,10 +6,6 @@ let versionMap = { - "1.6.3" = { - hadoopVersion = "cdh4"; - sparkSha256 = "00il083cjb9xqzsma2ifphq9ggichwndrj6skh2z5z9jk3z0lgyn"; - }; "2.2.0" = { hadoopVersion = "hadoop2.7"; sparkSha256 = "0wjjn2pgalrcji8avhj5d48kl1mf7rhrdxhzf29dbiszq4fkx0s6"; diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix index 1136208bf30c..30ebbe03a10e 100644 --- a/pkgs/top-level/all-packages.nix +++ b/pkgs/top-level/all-packages.nix @@ -6964,7 +6964,6 @@ with pkgs; self = callPackage_i686 ../development/interpreters/self { }; spark = spark_22; - spark_16 = callPackage ../applications/networking/cluster/spark { version = "1.6.3"; }; spark_22 = callPackage ../applications/networking/cluster/spark { version = "2.2.0"; }; spidermonkey_1_8_5 = callPackage ../development/interpreters/spidermonkey/1.8.5.nix { }; -- cgit 1.4.1 From 3e2015c239bba4732a576cc89a538173a944ef36 Mon Sep 17 00:00:00 2001 From: Andreas Rammhold Date: Thu, 11 Jan 2018 12:52:32 +0100 Subject: spark_22: 2.2.0 -> 2.2.1 --- pkgs/applications/networking/cluster/spark/default.nix | 5 ++--- pkgs/top-level/all-packages.nix | 2 +- 2 files changed, 3 insertions(+), 4 deletions(-) diff --git a/pkgs/applications/networking/cluster/spark/default.nix b/pkgs/applications/networking/cluster/spark/default.nix index ac3399445b40..99b7566fc713 100644 --- a/pkgs/applications/networking/cluster/spark/default.nix +++ b/pkgs/applications/networking/cluster/spark/default.nix @@ -6,9 +6,9 @@ let versionMap = { - "2.2.0" = { + "2.2.1" = { hadoopVersion = "hadoop2.7"; - sparkSha256 = "0wjjn2pgalrcji8avhj5d48kl1mf7rhrdxhzf29dbiszq4fkx0s6"; + sparkSha256 = "10nxsf9a6hj1263sxv0cbdqxdb8mb4cl6iqq32ljq9ydvk32s99c"; }; }; in @@ -63,7 +63,6 @@ stdenv.mkDerivation rec { license = stdenv.lib.licenses.asl20; platforms = stdenv.lib.platforms.all; maintainers = with maintainers; [ thoughtpolice offline ]; - knownVulnerabilities = optional (!((versionAtLeast version "2.2.0") || (versionOlder version "2.2.0" && versionAtLeast version "2.1.2"))) "CVE-2017-12612"; repositories.git = git://git.apache.org/spark.git; }; } diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix index 30ebbe03a10e..bc1708f9c91d 100644 --- a/pkgs/top-level/all-packages.nix +++ b/pkgs/top-level/all-packages.nix @@ -6964,7 +6964,7 @@ with pkgs; self = callPackage_i686 ../development/interpreters/self { }; spark = spark_22; - spark_22 = callPackage ../applications/networking/cluster/spark { version = "2.2.0"; }; + spark_22 = callPackage ../applications/networking/cluster/spark { version = "2.2.1"; }; spidermonkey_1_8_5 = callPackage ../development/interpreters/spidermonkey/1.8.5.nix { }; spidermonkey_17 = callPackage ../development/interpreters/spidermonkey/17.nix { }; -- cgit 1.4.1