Mail archive
alpine-aports

[alpine-aports] [PATCH 2/3] main/nginx-lua: security upgrade to 1.8.1 (close CVE-2016-0742, CVE-2016-0746, CVE-2016-0747)

From: Valery Kartel <valery.kartel_at_gmail.com>
Date: Wed, 27 Jan 2016 10:38:06 +0200

- upgrade lua-module to 0.10.0
- some APKBUILD cleanups
---
 main/nginx-lua/APKBUILD | 29 ++++++++++++-----------------
 1 file changed, 12 insertions(+), 17 deletions(-)
diff --git a/main/nginx-lua/APKBUILD b/main/nginx-lua/APKBUILD
index 8dd0ead..c0d4619 100644
--- a/main/nginx-lua/APKBUILD
+++ b/main/nginx-lua/APKBUILD
_at_@ -2,14 +2,15 @@
 # Contributor: Jeff Bilyk <jbilyk_at_gmail.com>
 # Contributor: Bartłomiej Piotrowski <nospam_at_bpiotrowski.pl>
 # Contributor: Timo Teräs <timo.teras_at_iki.fi>
+# Contributor: Valery Kartel <valery.kartel_at_gmail.com>
 
 pkgname=nginx-lua
 _pkgname=nginx
-pkgver=1.8.0
+pkgver=1.8.1
 _ngx_rtmp_ver=1.1.7
 _ngx_devel_kit_ver=0.2.19
-_ngx_lua_ver=0.9.16
-pkgrel=5
+_ngx_lua_ver=0.10.0
+pkgrel=0
 pkgdesc="lightweight HTTP and reverse proxy server with Lua support"
 url="http://www.nginx.org"
 arch="all"
_at_@ -24,12 +25,10 @@ source="http://nginx.org/download/$_pkgname-$pkgver.tar.gz
 	nginx-devel-kit-$_ngx_devel_kit_ver.tar.gz::https://github.com/simpl/ngx_devel_kit/archive/v$_ngx_devel_kit_ver.tar.gz
 	nginx-rtmp-module-$_ngx_rtmp_ver.tar.gz::https://github.com/arut/nginx-rtmp-module/archive/v$_ngx_rtmp_ver.tar.gz
 	lua-nginx-module-$_ngx_lua_ver.tar.gz::https://github.com/openresty/lua-nginx-module/archive/v$_ngx_lua_ver.tar.gz
-
 	ipv6.patch
 	"
 
 _builddir="$srcdir"/$_pkgname-$pkgver
-
 prepare() {
 	cd "$_builddir"
 	for i in $source; do
_at_@ -61,8 +60,8 @@ build() {
 		--http-fastcgi-temp-path=$_tmpdir/fastcgi \
 		--http-uwsgi-temp-path=$_tmpdir/uwsgi \
 		--http-scgi-temp-path=$_tmpdir/scgi \
-		--user=nginx \
-		--group=nginx \
+		--user=$pkgusers \
+		--group=$pkggroups \
 		--with-ipv6 \
 		--with-file-aio \
 		--with-pcre-jit \
_at_@ -89,10 +88,6 @@ package() {
 	[ "$CARCH" = "x86" ] && paxflags="-msp"
 	paxmark "$paxflags" "$pkgdir"/usr/sbin/$_pkgname || return 1
 
-	install -m755 -D "$srcdir"/$_pkgname.initd "$pkgdir"/etc/init.d/$_pkgname
-	install -m644 -D "$srcdir"/$_pkgname.logrotate \
-		"$pkgdir"/etc/logrotate.d/$_pkgname
-
 	install -m644 -D LICENSE "$pkgdir"/usr/share/licenses/$_pkgname/LICENSE
 	install -m644 -D man/$_pkgname.8 "$pkgdir"/usr/share/man/man8/$_pkgname.8
 
_at_@ -104,18 +99,18 @@ package() {
 	install -d -m0700 "$pkgdir"/$_logdir || return 1
 }
 
-md5sums="3ca4a37931e9fa301964b8ce889da8cb  nginx-1.8.0.tar.gz
+md5sums="2e91695074dbdfbf1bcec0ada9fda462  nginx-1.8.1.tar.gz
 09a18178adca7b5674129d8100ce4f68  nginx-devel-kit-0.2.19.tar.gz
 8006de2560db3e55bb15d110220076ac  nginx-rtmp-module-1.1.7.tar.gz
-4041309464989fe3970c5a0efa931d53  lua-nginx-module-0.9.16.tar.gz
+37d06e0f21bb4b2eedf80736a6aca3a2  lua-nginx-module-0.10.0.tar.gz
 801a87f7f9d27f8ad85b41a78b4c4461  ipv6.patch"
-sha256sums="23cca1239990c818d8f6da118320c4979aadf5386deda691b1b7c2c96b9df3d5  nginx-1.8.0.tar.gz
+sha256sums="8f4b3c630966c044ec72715754334d1fdf741caa1d5795fb4646c27d09f797b7  nginx-1.8.1.tar.gz
 501f299abdb81b992a980bda182e5de5a4b2b3e275fbf72ee34dd7ae84c4b679  nginx-devel-kit-0.2.19.tar.gz
 7922b0e3d5f3d9c4b275e4908cfb8f5fb1bfb3ac2df77f4c262cda56df21aab3  nginx-rtmp-module-1.1.7.tar.gz
-a3cda55b8cba5bc6632aa270b8a02d543fdb43f4d60a3bd2cb411c2a3b467656  lua-nginx-module-0.9.16.tar.gz
+cf31c64b107a54999fdf8b68e8b8d52d88a3c95d9307417f049c32c5687ed780  lua-nginx-module-0.10.0.tar.gz
 a24ef5843ae0afa538b00c37eb7da7870f9d7f146f52a9668678f7296cf71d9b  ipv6.patch"
-sha512sums="3e5d7e1b01839b2638251c47046149450b9b65985e611ef55e5953846e9eb0128c3708c695540ad4dfd0ce5e3060dfecb51213403048fab1a99dd5cea94f0038  nginx-1.8.0.tar.gz
+sha512sums="546eba1749af0034cb8b924d2432be2f0e82a75c545aa929391ef7234103c3f29376235a2ef1363b120e1825cda15aeb085a05f9ce3596c88466e112e82aa882  nginx-1.8.1.tar.gz
 915954acf16a27fbd3c93c154012d38e864f1d8dfd51cde401bba26e46eb3e3c778ec4c92f4f8ed83ac001e96cee72765554d0e4da06acf6a4be5184b23b3657  nginx-devel-kit-0.2.19.tar.gz
 9883462a04683f1e7af175da04b86d259ff6d677864667588fb073143f7130969eb2a5a5a48ddceda7a555b908580f179bdcacb7f0111413d51db5bfe43b396e  nginx-rtmp-module-1.1.7.tar.gz
-01be7dca10c1c1f25d2b8e65c9944662d5ba0235ecccba1143f7c30dcb76fad847a4a2fa7a34055906a33d50ecf8fb463aac9f76581390035a88e48c9b9f5319  lua-nginx-module-0.9.16.tar.gz
+8d1b07a040368e236a3473c5e9ed7aac6867743c08b57ffe7c708806ccee87e6dfca5412f37753f2576ca7a518acbd06fa0fd573c75e864c6bcfbed160f7221e  lua-nginx-module-0.10.0.tar.gz
 68d64a84568ec2df0366925ab282a05ebe21a85044b6c7844a47573cfd8cc8ed119cc772358bc3fff36e2d4fdf583a730592825f5f98632993ca86d1f8438d5f  ipv6.patch"
-- 
2.7.0
---
Unsubscribe:  alpine-aports+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-aports+help_at_lists.alpinelinux.org
---
Received on Wed Jan 27 2016 - 10:38:06 GMT