From 8b3dc7a3a0633aaa293d994921be925d6d703334 Mon Sep 17 00:00:00 2001 From: Robert Scott Date: Mon, 1 Jul 2019 00:27:59 +0100 Subject: [PATCH 1/2] powerdns: fix build by supplying libressl_2_8 instead of the new default 2.9 this is a bit of a temporary fix to get powerdns back in a buildable state because there's the added urgency of powerdns security issues forcing a version bump --- pkgs/top-level/all-packages.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pkgs/top-level/all-packages.nix b/pkgs/top-level/all-packages.nix index 54f2cab11d4..914d638052e 100644 --- a/pkgs/top-level/all-packages.nix +++ b/pkgs/top-level/all-packages.nix @@ -15879,7 +15879,7 @@ in semodule-utils = callPackage ../os-specific/linux/semodule-utils { }; - powerdns = callPackage ../servers/dns/powerdns { }; + powerdns = callPackage ../servers/dns/powerdns { libressl = libressl_2_8; }; dnsdist = callPackage ../servers/dns/dnsdist { }; From 46dfe2bab95eeebd069f90e9bfdfff41e1a64c43 Mon Sep 17 00:00:00 2001 From: Robert Scott Date: Mon, 1 Jul 2019 01:07:22 +0100 Subject: [PATCH 2/2] powerdns: 4.1.7 -> 4.1.9 fixing CVE-2019-10162, CVE-2019-10163 --- pkgs/servers/dns/powerdns/default.nix | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkgs/servers/dns/powerdns/default.nix b/pkgs/servers/dns/powerdns/default.nix index 722ae26b166..4d840462f79 100644 --- a/pkgs/servers/dns/powerdns/default.nix +++ b/pkgs/servers/dns/powerdns/default.nix @@ -5,11 +5,11 @@ stdenv.mkDerivation rec { name = "powerdns-${version}"; - version = "4.1.7"; + version = "4.1.9"; src = fetchurl { url = "https://downloads.powerdns.com/releases/pdns-${version}.tar.bz2"; - sha256 = "11c4r0mbq6ybbihm0jbl9hspb01pj1gi6x3m374liw9jij7dw8b4"; + sha256 = "1dmx37xzg7qckq166jr7swcnw3m9wjh5169844ad59qhspfzflnk"; }; nativeBuildInputs = [ pkgconfig ];