From patchwork Fri Jun 16 18:47:52 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Kaelyn Takata X-Patchwork-Id: 50984 Return-Path: X-Original-To: patchwork@mira.cbaines.net Delivered-To: patchwork@mira.cbaines.net Received: by mira.cbaines.net (Postfix, from userid 113) id 6546027BBEA; Fri, 16 Jun 2023 19:49:25 +0100 (BST) X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on mira.cbaines.net X-Spam-Level: X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIM_INVALID, DKIM_SIGNED,FREEMAIL_FROM,MAILING_LIST_MULTI,SPF_HELO_PASS, URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.6 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) by mira.cbaines.net (Postfix) with ESMTPS id 60B3027BBE2 for ; Fri, 16 Jun 2023 19:49:24 +0100 (BST) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1qAEVP-0003MH-VM; Fri, 16 Jun 2023 14:49:07 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qAEVL-0003La-Ab for guix-patches@gnu.org; Fri, 16 Jun 2023 14:49:03 -0400 Received: from debbugs.gnu.org ([209.51.188.43]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1qAEVK-0002Qn-W7 for guix-patches@gnu.org; Fri, 16 Jun 2023 14:49:03 -0400 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1qAEVK-0001Pn-EH for guix-patches@gnu.org; Fri, 16 Jun 2023 14:49:02 -0400 X-Loop: help-debbugs@gnu.org Subject: [bug#64116] [PATCH] gnu: libx11: Replace with 1.8.6 [security and bug fixes] Resent-From: Kaelyn Takata Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Fri, 16 Jun 2023 18:49:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 64116 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: 64116@debbugs.gnu.org Cc: Kaelyn Takata X-Debbugs-Original-To: guix-patches@gnu.org Received: via spool by submit@debbugs.gnu.org id=B.16869413105371 (code B ref -1); Fri, 16 Jun 2023 18:49:02 +0000 Received: (at submit) by debbugs.gnu.org; 16 Jun 2023 18:48:30 +0000 Received: from localhost ([127.0.0.1]:50360 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qAEUn-0001OY-N0 for submit@debbugs.gnu.org; Fri, 16 Jun 2023 14:48:29 -0400 Received: from lists.gnu.org ([209.51.188.17]:46428) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1qAEUl-0001OH-K4 for submit@debbugs.gnu.org; Fri, 16 Jun 2023 14:48:28 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qAEUc-0003Gu-UC for guix-patches@gnu.org; Fri, 16 Jun 2023 14:48:22 -0400 Received: from mail-40133.protonmail.ch ([185.70.40.133]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1qAEUa-0002NA-42 for guix-patches@gnu.org; Fri, 16 Jun 2023 14:48:17 -0400 Date: Fri, 16 Jun 2023 18:47:52 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail3; t=1686941285; x=1687200485; bh=kVD6e5nd0ljJQ1gjjmcAWBcNNBOdhaH3bCtbB4Y1VXY=; h=Date:To:From:Cc:Subject:Message-ID:Feedback-ID:From:To:Cc:Date: Subject:Reply-To:Feedback-ID:Message-ID:BIMI-Selector; b=zAgv0HRsEMKgeTU8akeyu3Fa0afpAYXWTpe8aYSE6vy64sT8gHxcJrVIFiHT5YTgZ vaxj6emc8aqXyKgFbtpa6CYS6+q96Ix3gUoNpMufvwPitNAhSxUgzxohBvUXkx3cjk 2ekgIh322c6zQi1C6qQ33YSapRU9+6nn2kjbaWFizNLUvHq8HXDa5zDe3md1H2ce/U oP4IbbKxxTXMLpFNr8Fx756L734ACozDsb2X3yroMynGGf/e6RYDbokgj3jeNeIzq2 A2wjdHh5VtkOsAoU76q6E4aiFhhRbEjCAf8HZMDzqAOK3gO5vGVVAJnKBN/3YOnOTJ 80H//Bjo2fk2w== Message-ID: Feedback-ID: 34709329:user:proton MIME-Version: 1.0 Received-SPF: pass client-ip=185.70.40.133; envelope-from=kaelyn.alexi@protonmail.com; helo=mail-40133.protonmail.ch X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-to: Kaelyn Takata X-ACL-Warn: , Kaelyn Takata via Guix-patches X-Patchwork-Original-From: Kaelyn Takata via Guix-patches via From: Kaelyn Takata Errors-To: guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org Sender: guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org X-getmail-retrieved-from-mailbox: Patches Includes fix for: CVE-2023-3138. * gnu/packages/xorg.scm (libx11-fixed): New variable. (libx11)[replacement]: Graft. --- gnu/packages/xorg.scm | 14 ++++++++++++++ 1 file changed, 14 insertions(+) base-commit: 31336e9f5d68512a9c1c6826bce9f17c892a2125 -- 2.40.1 diff --git a/gnu/packages/xorg.scm b/gnu/packages/xorg.scm index e1a7cf96f9..49a70b1e07 100644 --- a/gnu/packages/xorg.scm +++ b/gnu/packages/xorg.scm @@ -5254,6 +5254,7 @@ (define-public libx11 (package (name "libx11") (version "1.8.1") + (replacement libx11-fixed) ; security fixes (source (origin (method url-fetch) @@ -5283,6 +5284,19 @@ (define-public libx11 (description "Xorg Core X11 protocol client library.") (license license:x11))) +(define-public libx11-fixed + (package + (inherit libx11) + (version "1.8.6") + (source + (origin + (method url-fetch) + (uri (string-append "mirror://xorg/individual/lib/libX11-" + version ".tar.xz")) + (sha256 + (base32 + "1jawl8zp1h7hdmxx1sc6kmxkki187d9yixr2l03ai6wqqry5nlsr")))))) + ;; packages of height 5 in the propagated-inputs tree (define-public libxcursor