[PATCH] gnu: dnsmasq: Update to 2.83 [security fixes].

  • Done
  • quality assurance status badge
Details
2 participants
  • Leo Famulari
  • Pierre Langlois
Owner
unassigned
Submitted by
Pierre Langlois
Severity
normal
P
P
Pierre Langlois wrote on 21 Jan 2021 00:44
(name . Guix-patches)(address . guix-patches@gnu.org)
87pn1zfa22.fsf@gmx.com
Hi Guix!

There was a security advisory on dnsmasq recently [0], so here's a patch
to address those by updating to the latest release.

I thought I'd post the patch on here first just in case it's already in
someone's pipeline, in which case I can drop it. If not I can push this
shortly, I assume it's not controversial :-).

Thanks!
Pierre

-----BEGIN PGP SIGNATURE-----

iQFMBAEBCgA2FiEEctU9gYy29KFyWDdMqPyeRH9PfVQFAmAIwFUYHHBpZXJyZS5s
YW5nbG9pc0BnbXguY29tAAoJEKj8nkR/T31U27UIALBjaKCeIymuHzOqtxtRsIzU
bZNuNlBNp2J831gmz0IAaCph7RMrk3EWCpiihhWPU09P1VVfMVFjAoeQpsy76rAL
8dNyFkW1Jcr2vRrTXAEwhnUrTBQmQZuMFXAqQB+eg6f/Ye8eBHjhfAVbfBfo5ObC
K3W9XuLs8eQpB3wsHvZFut4Qf7ORK8bfrmU4rgpYbF+2G4Vdvq++mR3DEKEsBBP3
O2rdJStIwqxWyBTUwlMtwdeLGDtDh8ffgfSaTHVDb2/woj/zxIYH9oZoIP+pL3v6
0EkVgfzf4ibbZjoV4TXXJeQCCrrRpmWBmj1SUt5mtLhVtxcxBdwIOPDKz12kerg=
=ybbP
-----END PGP SIGNATURE-----

From 319503d962de459aa6a357c3efd183d04f3bff6b Mon Sep 17 00:00:00 2001
From: Pierre Langlois <pierre.langlois@gmx.com>
Date: Wed, 20 Jan 2021 23:35:49 +0000
Subject: [PATCH] gnu: dnsmasq: Update to 2.83 [security fixes].

Includes fixes for CVE-2020-25681, CVE-2020-25682, CVE-2020-25683,
CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687.

* gnu/packages/dns.scm (dnsmasq): Update to 2.83.
---
gnu/packages/dns.scm | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)

Toggle diff (33 lines)
diff --git a/gnu/packages/dns.scm b/gnu/packages/dns.scm
index 5bb725ae92..a1ed730f62 100644
--- a/gnu/packages/dns.scm
+++ b/gnu/packages/dns.scm
@@ -13,7 +13,7 @@
;;; Copyright © 2019 Mathieu Othacehe <m.othacehe@gmail.com>
;;; Copyright © 2019 Chris Marusich <cmmarusich@gmail.com>
;;; Copyright © 2019 Rutger Helling <rhelling@mykolab.com>
-;;; Copyright © 2020 Pierre Langlois <pierre.langlois@gmx.com>
+;;; Copyright © 2020, 2021 Pierre Langlois <pierre.langlois@gmx.com>
;;; Copyright © 2020 Arun Isaac <arunisaac@systemreboot.net>
;;; Copyright © 2020 Leo Famulari <leo@famulari.name>
;;; Copyright © 2020 Brice Waegeneire <brice@waegenei.re>
@@ -277,7 +277,7 @@ prompt the user with the option to go with insecure DNS only.")
(define-public dnsmasq
(package
(name "dnsmasq")
- (version "2.82")
+ (version "2.83")
(source (origin
(method url-fetch)
(uri (string-append
@@ -285,7 +285,7 @@ prompt the user with the option to go with insecure DNS only.")
version ".tar.xz"))
(sha256
(base32
- "0cn1xd1s6xs78jmrmwjnh9m6w3q38pk6dyqy2phvasqiyd33cll4"))))
+ "1sjamz1v588qf35m8z6wcqkjk5w12bqhj7d7p48dj8jyn3lgghgz"))))
(build-system gnu-build-system)
(native-inputs
`(("pkg-config" ,pkg-config)))
--
2.30.0
L
L
Leo Famulari wrote on 21 Jan 2021 01:11
(name . Pierre Langlois)(address . pierre.langlois@gmx.com)(address . 46010@debbugs.gnu.org)
YAjGvv9vwenp7SP0@jasmine.lan
On Wed, Jan 20, 2021 at 11:44:21PM +0000, Pierre Langlois wrote:
Toggle quote (9 lines)
> Hi Guix!
>
> There was a security advisory on dnsmasq recently [0], so here's a patch
> to address those by updating to the latest release.
>
> I thought I'd post the patch on here first just in case it's already in
> someone's pipeline, in which case I can drop it. If not I can push this
> shortly, I assume it's not controversial :-).

Thanks, please push!
-----BEGIN PGP SIGNATURE-----

iQIzBAABCAAdFiEEsFFZSPHn08G5gDigJkb6MLrKfwgFAmAIxrsACgkQJkb6MLrK
fwh+CRAA8NCXvFnD1XzbKsJhx6ZTxECu/NYPDiWrRFANrGPeE/lENwTG2i1PNKwt
hLHtfCQLmjq+8GfMSkxlA00PIRHawbXN4/7bSxqebssorgske4TF2zCld52yL833
cC5XTtWnZpMSvxraB5mjDCHwrokUTsC8LcJxtPnoBBe2Svwt799fTGo4OTs5FgEL
ms3cnyAgbc9kXX0yWAcBp2xQIdlb3BVigTIbkp2gOb87VQYnjzeMN7WjsAaZ4/ar
n8mt4UkZY4ukXghTeHkISc5e+2D30EmJDIBLk2CfRSQ8/S9tFPImdXzeOr47qxjO
odcCpEdA1w30urN46rGhe/dfp/6efsPrZxgSP7v37dogKykk6qvehOJNoNGNz85u
q7aINPAXAieqxIJ72RsNLno/aI32aM4u0clx0fnREYHelGnHP5omOVI5nv/Bl8NM
l820xw0fNS0DBgZsvW16gdA9jKN7hJepxPOq/QpCg54R6r1MNE65DM+Mi69oy1SA
Iu/kIfoxVk1V0sIbISuPuym9ps0hM69dbHWJe+jos9sT4cHj+36fmAAS/WUzAUgU
wAmXIV6bxasDPkSorzBxvzzJHFAo4gU+s5b9upiQoPr3pTCYgO/p1g+UsVPtl2WX
3B82SgCqu6FFufWpKila0yect1/WYZqlEeqvFyC0ss7f3lgyWXM=
=ZZiT
-----END PGP SIGNATURE-----


P
P
Pierre Langlois wrote on 21 Jan 2021 10:17
(name . Leo Famulari)(address . leo@famulari.name)
87bldiir8l.fsf@gmx.com
Leo Famulari writes:

Toggle quote (12 lines)
> On Wed, Jan 20, 2021 at 11:44:21PM +0000, Pierre Langlois wrote:
>> Hi Guix!
>>
>> There was a security advisory on dnsmasq recently [0], so here's a patch
>> to address those by updating to the latest release.
>>
>> I thought I'd post the patch on here first just in case it's already in
>> someone's pipeline, in which case I can drop it. If not I can push this
>> shortly, I assume it's not controversial :-).
>
> Thanks, please push!

Done, pushed with a1819473c3a9692e0b1a2fd9fbb9cb642a387521.

Thanks!
Pierre
-----BEGIN PGP SIGNATURE-----

iQFMBAEBCgA2FiEEctU9gYy29KFyWDdMqPyeRH9PfVQFAmAJRpoYHHBpZXJyZS5s
YW5nbG9pc0BnbXguY29tAAoJEKj8nkR/T31UN0wH/jRXgzsoimrrvAT8kl/sY3Bq
VcX0eqU+oigRZCN/Pe3HGFeASXLae3WwMtrO79N72Av8R27GGOYHddZ93toltHJU
wf38Gm9rWMEbZ75d7StZDeFOqzY2WbC4HNR6wttonDfNF6mOQ1RbutcrDXsjdnMu
d2EXxepS0NEBLXbworJ9JspvjX6fk8MM/0iS4gV9DUk7wzDkAhqVS2q/jgG95uGY
srWVSm9YTFBWjg9CdQ0YsBDc+at4u+d1gaX0Ngcf0icdOLx5iqacn8hDT/+hs7oA
/ipRqqcpQm04uKAdejxBEChzmHWQj0LbNqMF0t3qwK9bhzyEzhD3LRpVyhbX9Fc=
=QfJ2
-----END PGP SIGNATURE-----

Closed
?