Commit 5954a5fe authored by Chris Novakovic's avatar Chris Novakovic
Browse files

main/curl: security upgrade to 7.77.0

Contains fixes for the following vulnerabilities in 7.76.1:

* CVE-2021-22897
* CVE-2021-22898
* CVE-2021-22901

Also explicitly use OpenSSL as the TLS library, which is necessary
following the merge of https://github.com/curl/curl/pull/6897.
parent 709e6950
......@@ -8,7 +8,7 @@
# this aport from arch=all WILL be reverted.
pkgname=curl
pkgver=7.76.1
pkgver=7.77.0
pkgrel=0
pkgdesc="URL retrival utility and library"
url="https://curl.se/"
......@@ -24,6 +24,10 @@ source="https://curl.se/download/curl-$pkgver.tar.xz"
options="net" # Required for running tests
# secfixes:
# 7.77.0-r0:
# - CVE-2021-22897
# - CVE-2021-22898
# - CVE-2021-22901
# 7.76.0-r0:
# - CVE-2021-22876
# - CVE-2021-22890
......@@ -116,6 +120,7 @@ build() {
--enable-ipv6 \
--enable-unix-sockets \
--enable-static \
--with-openssl \
--without-libidn \
--without-libidn2 \
--with-nghttp2 \
......@@ -147,4 +152,4 @@ static() {
mv "$pkgdir"/usr/lib/*.a "$subpkgdir"/usr/lib
}
sha512sums="5fe85d2e776789aa8117c57fe7648e375b7fa92d5ead5d69855f19ca9a2624d77a1f9ab91766ecb72bbc17e82862248cd07e48917884d6fd856b93fb00d83e28 curl-7.76.1.tar.xz"
sha512sums="aef92a0e3f8ce8491b258a9a1c4dcea3c07c29b139a1f68f08619caa0295cfde76335d2dfb9cdf434525daea7dd05d8acd22f203f5ccc7735bd317964ec1da76 curl-7.77.0.tar.xz"
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment