couchdb2: 2.0.0 -> 2.1.1 for multiple CVEs

Fixes CVE-2017-12635, CVE-2017-12636.

https://blog.couchdb.org/2017/11/14/apache-couchdb-cve-2017-12635-and-cve-2017-12636/
This commit is contained in:
Franz Pletz 2017-11-19 17:39:01 +01:00
parent 0426b9456e
commit 3628595eba
No known key found for this signature in database
GPG Key ID: 846FDED7792617B4

View File

@ -3,14 +3,15 @@
stdenv.mkDerivation rec {
name = "couchdb-${version}";
version = "2.0.0";
version = "2.1.1";
src = fetchurl {
url = "mirror://apache/couchdb/source/${version}/apache-${name}.tar.gz";
sha256 = "1jkfx6g9anrgmkhrkcn50axcamragranwsciw1rhmi86rglkrbyc";
sha256 = "1k3v9v05417087b6fcj5yv03wl6i61xqrrhp0prl9b3ir2mmbwnm";
};
buildInputs = [ erlang icu openssl spidermonkey makeWrapper ];
nativeBuildInputs = [ makeWrapper ];
buildInputs = [ erlang icu openssl spidermonkey ];
patches = [ ./jsapi.patch ];
postPatch = ''