public/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

spark: mark versions <= 2.2.0 && <= 2.1.2 as insecure due to CVE-2017-12612

Browse Source 
Details can be retrieve at [1].

[1] https://spark.apache.org/security.html
This commit is contained in:
Andreas Rammhold 2018-01-11 12:26:50 +01:00
parent 788c5195f3
commit 9213d0cfa5
No known key found for this signature in database
GPG Key ID: E432E410B5E48C86
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pkgs/applications/networking/cluster/spark/default.nix
View File

@ -67,6 +67,7 @@ stdenv.mkDerivation rec {
license = stdenv.lib.licenses.asl20; license = stdenv.lib.licenses.asl20;
platforms = stdenv.lib.platforms.all; platforms = stdenv.lib.platforms.all;
maintainers = with maintainers; [ thoughtpolice offline ]; maintainers = with maintainers; [ thoughtpolice offline ];
knownVulnerabilities = optional (!((versionAtLeast version "2.2.0") || (versionOlder version "2.2.0" && versionAtLeast version "2.1.2"))) "CVE-2017-12612";
repositories.git = git://git.apache.org/spark.git; repositories.git = git://git.apache.org/spark.git;
}; };
} }