Mail archive
alpine-aports

[alpine-aports] [PATCH] main/curl: security upgrade to 7.52.1 (CVE-2016-9594)

From: Daniel Sabogal <dsabogalcc_at_gmail.com>
Date: Fri, 23 Dec 2016 12:50:40 -0500

---
This patch is also applicable to 3.5-stable.
---
 main/curl/APKBUILD | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)
diff --git a/main/curl/APKBUILD b/main/curl/APKBUILD
index da1460f5ab..5cca30c296 100644
--- a/main/curl/APKBUILD
+++ b/main/curl/APKBUILD
_at_@ -2,7 +2,7 @@
 # Contributor: Ɓukasz Jendrysik <scadu_at_yandex.com>
 # Maintainer: Natanael Copa <ncopa_at_alpinelinux.org>
 pkgname=curl
-pkgver=7.52.0
+pkgver=7.52.1
 pkgrel=0
 pkgdesc="An URL retrival utility and library"
 url="http://curl.haxx.se"
_at_@ -15,6 +15,8 @@ source="http://curl.haxx.se/download/$pkgname-$pkgver.tar.bz2"
 subpackages="$pkgname-dbg $pkgname-doc $pkgname-dev libcurl"
 
 # secfixes:
+#   7.52.1:
+#     - CVE-2016-9594
 #   7.51.0:
 #     - CVE-2016-8615
 #     - CVE-2016-8616
_at_@ -69,6 +71,6 @@ libcurl() {
 	mv "$pkgdir"/usr/lib "$subpkgdir"/usr
 }
 
-md5sums="f0a7fef25eb1a5c5a0cb8f8b611f3895  curl-7.52.0.tar.bz2"
-sha256sums="b9a2e18b4785eb75ad84598720e1559e1c53550ea011c0e00becdb94e2df5cc6  curl-7.52.0.tar.bz2"
-sha512sums="03b1539bdb9993fa4d4022dabca0ad5f923e6f71120ccbf800cda75e6b7c6da0256555a0cd80e9f121820d6647824ee80f35142409c42084ed8e27e5204b1f9a  curl-7.52.0.tar.bz2"
+md5sums="dd014df06ff1d12e173de86873f9f77a  curl-7.52.1.tar.bz2"
+sha256sums="d16185a767cb2c1ba3d5b9096ec54e5ec198b213f45864a38b3bda4bbf87389b  curl-7.52.1.tar.bz2"
+sha512sums="cf36563c77d096f2c6084354ed6d45ccca7c557828ceab21204e4e8be0d4f0d287839c8cfac906174b86d51a1ee816c2769fc78ef88f039c9645bd2c27982a75  curl-7.52.1.tar.bz2"
-- 
2.11.0
---
Unsubscribe:  alpine-aports+unsubscribe_at_lists.alpinelinux.org
Help:         alpine-aports+help_at_lists.alpinelinux.org
---
Received on Fri Dec 23 2016 - 12:50:40 GMT