Commit ad08747e authored by Natanael Copa's avatar Natanael Copa

main/python2: security upgrade to 2.7.14 (CVE-2017-1000158)

fixes #8542
parent 54ac0229
......@@ -2,7 +2,7 @@
pkgname=python2
# the python2-tkinter's pkgver needs to be synchronized with this.
pkgver=2.7.13
pkgver=2.7.14
_verbase=${pkgver%.*}
pkgrel=0
pkgdesc="A high-level scripting language"
......@@ -20,6 +20,12 @@ source="http://www.python.org/ftp/python/$pkgver/Python-$pkgver.tar.xz
unchecked-ioctl.patch"
builddir="$srcdir/Python-$pkgver"
# secfixes:
# 2.7.14-r0:
# - CVE-2017-1000158
# 2.7.7-r0:
# - CVE-2014-4616
prepare() {
default_prepare || return 1
......@@ -100,12 +106,6 @@ gdbm() {
_mv_files $(find usr/lib -name '*gdbm*')
}
md5sums="53b43534153bb2a0363f08bae8b9d990 Python-2.7.13.tar.xz
2840477c6552a0ca2f4ede885ad872f1 musl-find_library.patch
dada786a50fa332686a9b9260d84c110 unchecked-ioctl.patch"
sha256sums="35d543986882f78261f97787fd3e06274bfa6df29fac9b4a94f73930ff98f731 Python-2.7.13.tar.xz
83fd071bc556d4e88373a35fde74cb9c464ee4b8e95e5583b55f2e36d4f33cf2 musl-find_library.patch
f9d37609bab83d9ffff96ec9a33e16568cfb14980d389f7fe34a1c837397e359 unchecked-ioctl.patch"
sha512sums="f37c9a28ce129d01e63c84d7db627a06402854578f62d17927334ea21ede318e04bbf66e890e3f47c85333e6b19f6e5581fb3f3e27efd24be27017d1b6529c4b Python-2.7.13.tar.xz
sha512sums="78310b0be6388ffa15f29a80afb9ab3c03a572cb094e9da00cfe391afadb51696e41f592eb658d6a31a2f422fdac8a55214a382cbb8cfb43d4a127d5b35ea7f9 Python-2.7.14.tar.xz
ab8eaa2858d5109049b1f9f553198d40e0ef8d78211ad6455f7b491af525bffb16738fed60fc84e960c4889568d25753b9e4a1494834fea48291b33f07000ec2 musl-find_library.patch
5a8e013a4132d71c4360771f130d27b37275ae59330cf9a75378dc8a11236017f540eb224f2a148984e82ca3fb6b29129375b1080ba05b81044faa717520ab82 unchecked-ioctl.patch"
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment