main/nghttp2: add patch for CVE-2023-44487

0ca024f5 · Celeste · fe9a1555 · 0ca024f5 · 0ca024f5
Commit 0ca024f5 authored 1 year ago by Celeste
--- a/main/nghttp2/APKBUILD
+++ b/main/nghttp2/APKBUILD
@@ -2,7 +2,7 @@
 # Maintainer: Francesco Colista <fcolista@alpinelinux.org>
 pkgname=nghttp2
 pkgver=1.51.0
-pkgrel=1
+pkgrel=2
 pkgdesc="Experimental HTTP/2 client, server and proxy"
 url="https://nghttp2.org"
 arch="all"
@@ -13,11 +13,14 @@ subpackages="$pkgname-static $pkgname-doc $pkgname-dev $pkgname-libs"
 source="https://github.com/nghttp2/nghttp2/releases/download/v$pkgver/nghttp2-$pkgver.tar.xz
 	disable-failing-musl-unittest.patch
 	CVE-2023-35945.patch
+	CVE-2023-44487.patch
 	"
 # temp allow textrels on riscv64
 [ "$CARCH" = "riscv64" ] && options="$options textrels"

 # secfixes:
+#   1.51.0-r2:
+#     - CVE-2023-44487
 #   1.51.0-r1:
 #     - CVE-2023-35945
 #   1.41.0-r0:
@@ -64,4 +67,5 @@ sha512sums="
 0212680e57a15f9afca3b5226429edebd2fe8a52117480007d4472cd0c1bd3aa4d9f21269c637a11efd0f2146a3ee16c3c07ab35d9fb3d4566235d3a14268eeb  nghttp2-1.51.0.tar.xz
 ad9a645e00d33747338cd23d1d0ff7c744ea6abd504b9175e086574d23881b188fd014464b660923ff37a64c0c46c4379c96374ac8997b03eb2350f9ec817740  disable-failing-musl-unittest.patch
 0ff46076708a19629875c337e5a1bf9f16ea011e39b2a1eb33fe902348a55079d1f9599ed83e860deb2eca996ca56d46855570c5964813ecdc85e25760ff8ec4  CVE-2023-35945.patch
+c0aed8a1c46f2a962a99e7a84890a8434a5287d2aa7ea44885f0acf31485b1465feb8c059fbb165c1061acf71a36a0fb857b440a85a06977d20def456aace724  CVE-2023-44487.patch
 "
--- a/main/nghttp2/CVE-2023-44487.patch
+++ b/main/nghttp2/CVE-2023-44487.patch