public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

couchdb: 1.6.1 -> 1.7.1 for multiple CVEs

Browse Source 
Fixes CVE-2017-12635, CVE-2017-12636.

https://blog.couchdb.org/2017/11/14/apache-couchdb-cve-2017-12635-and-cve-2017-12636/
This commit is contained in:
Franz Pletz 2017-11-19 17:38:04 +01:00
parent 71b8437e2c
commit 0426b9456e
No known key found for this signature in database
GPG Key ID: 846FDED7792617B4
1 changed files with 5 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
pkgs/servers/http/couchdb/default.nix
View File

@ -3,30 +3,18 @@
stdenv.mkDerivation rec { stdenv.mkDerivation rec {
name = "couchdb-${version}"; name = "couchdb-${version}";
version = "1.6.1"; version = "1.7.1";
src = fetchurl { src = fetchurl {
url = "mirror://apache/couchdb/source/${version}/apache-${name}.tar.gz"; url = "mirror://apache/couchdb/source/${version}/apache-${name}.tar.gz";
sha256 = "09w6ijj9l5jzh81nvc3hrlqp345ajg3haj353g9kxkik6wbinq2s"; sha256 = "1b9cbdrmh1i71mrwvhm17v4cf7lckpil1vvq7lpmxyn6zfk0l84i";
}; };
buildInputs = [ erlang icu openssl spidermonkey curl help2man sphinx which nativeBuildInputs = [ help2man which file pkgconfig sphinx ];
file pkgconfig ]; buildInputs = [ erlang icu openssl spidermonkey curl ];
/* This patch removes the `-Werror` flag as there are warnings due to
* _BSD_SOURCE being deprecated in glibc >= 2.20
*/
patchPhase = ''
patch src/couchdb/priv/Makefile.in <<EOF
392c392
< couchjs_CFLAGS = -g -Wall -Werror -D_BSD_SOURCE \$(CURL_CFLAGS) \$(JS_CFLAGS)
---
> couchjs_CFLAGS = -g -Wall -D_BSD_SOURCE \$(CURL_CFLAGS) \$(JS_CFLAGS)
EOF
'';
postInstall = '' postInstall = ''
sed -i -e "s|\`getopt|\`${getopt}/bin/getopt|" $out/bin/couchdb substituteInPlace $out/bin/couchdb --replace getopt "${getopt}/bin/getopt"
''; '';
/* /*