From patchwork Tue Dec 18 02:53:19 2018 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Alex Vong X-Patchwork-Id: 481 Return-Path: X-Original-To: patchwork@mira.cbaines.net Delivered-To: patchwork@mira.cbaines.net Received: by mira.cbaines.net (Postfix, from userid 113) id 8715F16981; Tue, 18 Dec 2018 02:55:11 +0000 (GMT) X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on mira.cbaines.net X-Spam-Level: X-Spam-Status: No, score=-6.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM, RCVD_IN_DNSWL_HI,T_DKIM_INVALID,URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.0 Received: from lists.gnu.org (lists.gnu.org [IPv6:2001:4830:134:3::11]) by mira.cbaines.net (Postfix) with ESMTP id DAC731697D for ; Tue, 18 Dec 2018 02:55:10 +0000 (GMT) Received: from localhost ([::1]:51382 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gZ5XJ-0004mm-PT for patchwork@mira.cbaines.net; Mon, 17 Dec 2018 21:55:09 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:33589) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gZ5XG-0004mU-Ac for guix-patches@gnu.org; Mon, 17 Dec 2018 21:55:07 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gZ5XC-0001FM-IH for guix-patches@gnu.org; Mon, 17 Dec 2018 21:55:06 -0500 Received: from debbugs.gnu.org ([208.118.235.43]:48174) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1gZ5XC-0001F8-Dp for guix-patches@gnu.org; Mon, 17 Dec 2018 21:55:02 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1gZ5XC-0006br-Be for guix-patches@gnu.org; Mon, 17 Dec 2018 21:55:02 -0500 X-Loop: help-debbugs@gnu.org Subject: [bug#33783] [PATCH] gnu: sqlite: Replace with 3.26.0 [security fixes]. Resent-From: Alex Vong Original-Sender: "Debbugs-submit" Resent-CC: guix-patches@gnu.org Resent-Date: Tue, 18 Dec 2018 02:55:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: report 33783 X-GNU-PR-Package: guix-patches X-GNU-PR-Keywords: patch To: 33783@debbugs.gnu.org X-Debbugs-Original-To: guix-patches@gnu.org Received: via spool by submit@debbugs.gnu.org id=B.154510164725338 (code B ref -1); Tue, 18 Dec 2018 02:55:02 +0000 Received: (at submit) by debbugs.gnu.org; 18 Dec 2018 02:54:07 +0000 Received: from localhost ([127.0.0.1]:52432 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gZ5WC-0006aA-WF for submit@debbugs.gnu.org; Mon, 17 Dec 2018 21:54:07 -0500 Received: from eggs.gnu.org ([208.118.235.92]:52054) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1gZ5W6-0006Zt-Tx for submit@debbugs.gnu.org; Mon, 17 Dec 2018 21:53:59 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gZ5W0-0006nt-8Q for submit@debbugs.gnu.org; Mon, 17 Dec 2018 21:53:49 -0500 Received: from lists.gnu.org ([2001:4830:134:3::11]:35516) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1gZ5W0-0006nI-0F for submit@debbugs.gnu.org; Mon, 17 Dec 2018 21:53:48 -0500 Received: from eggs.gnu.org ([2001:4830:134:3::10]:33366) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1gZ5Vx-0004e7-Ln for guix-patches@gnu.org; Mon, 17 Dec 2018 21:53:47 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1gZ5Vt-0006fV-QO for guix-patches@gnu.org; Mon, 17 Dec 2018 21:53:45 -0500 Received: from mail-pl1-x642.google.com ([2607:f8b0:4864:20::642]:45152) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1gZ5Vo-0006Gw-0C for guix-patches@gnu.org; Mon, 17 Dec 2018 21:53:38 -0500 Received: by mail-pl1-x642.google.com with SMTP id a14so7080959plm.12 for ; Mon, 17 Dec 2018 18:53:27 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:cc:subject:user-agent:date:message-id:mime-version; bh=QXfZG7uH9/ciK4D1yUPycbWLZdswJGv+rCDritw3954=; b=T15JqgoOGUHQWg+Fwx92Vhja65E0kQ2rh0UR2fBxtfz4yJzOjaCFI11aAxZyMRm8IU du4AzZ0yecb9Vnmy/e8DTnGS2E05NfLzlZFkI6Eu+7R7VIriwLB6YjMkFY2MGdF9NIl+ 0d6nyTKDzbWWZovg5w7qX6GOzxxjmzY1XA9SHIAIgB4g93l91r19bdbqDsjzmvfH6HjA zwtfg1wOPvkPQmwfI5m5b3IT7fe+lekMMnGKUc8Em/QjINgIVdoqo3iX3dKnWm4ur2I5 rcINSOAlNMFkdyYZCaU7MjZ0Ve/BFdp3ZDCbsBeqlY3+JbyU2YwawJao90R7Ko1PsMG6 jVqA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:user-agent:date:message-id :mime-version; bh=QXfZG7uH9/ciK4D1yUPycbWLZdswJGv+rCDritw3954=; b=JpCuFrlG07mZGsa2u92cfYyo935urVv6p8ifrZIbQdQaUS7cj6xK/SWS9jsYbRZBeB mfrndCadKsmhW0stnPH1aJcrjgUXEKXTi8JFeLS975oe4ntZtTHPfklofPqWeSgTYCj1 8RsYC5D5bJOxhYEln4iYMkyNxsANBZNPBrDPCDLvw9G/6ZLKw2iC2ibrKMVQy40F61Y0 6nk0Qxg3UwYlbkTuXfphyhy/fW14RTyqvhrMqiA80izOFFPfKXTvzQUiKw/+RgTUen6V ucWyK8wyDbKEd5ydHxbps3WwGkgmuz+HUokjASF22+oLrXL0tGMVdWDDEPPSZ6Z3xIAH M/Pw== X-Gm-Message-State: AA+aEWYfxO8MuxVMldzEfGKye6grEYBjVYSJe5W9rhmFYMEX7nXmJmv5 zukLI1lwsoNxFcgb+r+56uM= X-Google-Smtp-Source: AFSGD/WWbufwxgDzAna8hD4UgD+wGQXV4+wVwsCuPlSIVG02lhpYLfYswUMe0W0Pe7PdJ1wIOz4TjQ== X-Received: by 2002:a17:902:3181:: with SMTP id x1mr14802055plb.58.1545101606989; Mon, 17 Dec 2018 18:53:26 -0800 (PST) Received: from debian (n058152177090.netvigator.com. [58.152.177.90]) by smtp.gmail.com with ESMTPSA id u123sm16592543pfb.1.2018.12.17.18.53.25 (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Mon, 17 Dec 2018 18:53:26 -0800 (PST) From: Alex Vong User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/26.1 (gnu/linux) Date: Tue, 18 Dec 2018 10:53:19 +0800 Message-ID: <87mup31r6o.fsf@gmail.com> MIME-Version: 1.0 X-detected-operating-system: by eggs.gnu.org: Genre and OS details not recognized. X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.6.x X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: guix-patches@gnu.org List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Cc: alexvong1995@gmail.com Errors-To: guix-patches-bounces+patchwork=mira.cbaines.net@gnu.org Sender: "Guix-patches" X-getmail-retrieved-from-mailbox: Patches Tag: security Hello, This patch grafts sqlite to its latest version. It also changes all the sqlite-* packages to use 'package/inherit' so that they get the replacement as well. See for details. Cheers, Alex From 9d0fae1e1fa2fc13bd794bb2dbeb89750c772cfb Mon Sep 17 00:00:00 2001 From: Alex Vong Date: Tue, 18 Dec 2018 10:36:52 +0800 Subject: [PATCH] gnu: sqlite: Replace with 3.26.0 [security fixes]. Fixes . Reported by Marius Bakke . * gnu/packages/databases.scm (sqlite-3.26.0): New public variable. (sqlite)[replacement]: Use it. (sqlite-with-fts5): Use 'package/inherit'. (sqlite-with-column-metadata): Likewise. --- gnu/packages/databases.scm | 27 ++++++++++++++++++++++++--- 1 file changed, 24 insertions(+), 3 deletions(-) diff --git a/gnu/packages/databases.scm b/gnu/packages/databases.scm index 0fa6d451e..78d9a6739 100644 --- a/gnu/packages/databases.scm +++ b/gnu/packages/databases.scm @@ -24,7 +24,7 @@ ;;; Copyright © 2017 Adriano Peluso ;;; Copyright © 2017 Arun Isaac ;;; Copyright © 2017, 2018 Tobias Geerinckx-Rice -;;; Copyright © 2017 Alex Vong +;;; Copyright © 2017, 2018 Alex Vong ;;; Copyright © 2017, 2018 Ben Woodcroft ;;; Copyright © 2017 Rutger Helling ;;; Copyright © 2017, 2018 Pierre Langlois @@ -1183,6 +1183,7 @@ changes.") (define-public sqlite (package (name "sqlite") + (replacement sqlite-3.26.0) (version "3.24.0") (source (origin (method url-fetch) @@ -1219,9 +1220,29 @@ widely deployed SQL database engine in the world. The source code for SQLite is in the public domain.") (license license:public-domain))) +(define-public sqlite-3.26.0 + (package/inherit sqlite + (version "3.26.0") + (source (origin + (method url-fetch) + (uri (let ((numeric-version + (match (string-split version #\.) + ((first-digit other-digits ...) + (string-append first-digit + (string-pad-right + (string-concatenate + (map (cut string-pad <> 2 #\0) + other-digits)) + 6 #\0)))))) + (string-append "https://sqlite.org/2018/sqlite-autoconf-" + numeric-version ".tar.gz"))) + (sha256 + (base32 + "0pdzszb4sp73hl36siiv3p300jvfvbcdxi2rrmkwgs6inwznmajx")))))) + ;; This is used by Tracker. (define-public sqlite-with-fts5 - (package (inherit sqlite) + (package/inherit sqlite (name "sqlite-with-fts5") (arguments (substitute-keyword-arguments (package-arguments sqlite) @@ -1230,7 +1251,7 @@ is in the public domain.") ;; This is used by Qt. (define-public sqlite-with-column-metadata - (package (inherit sqlite) + (package/inherit sqlite (name "sqlite-with-column-metadata") (arguments (substitute-keyword-arguments (package-arguments sqlite) -- 2.19.2