curl: update to fix CVE-2014-3707

2014-11-10 21:07:54 +01:00 · 2014-11-10 21:07:54 +01:00 · 4849e32abe
commit 4849e32abe
parent 827ec7b3d6
1 changed files with 2 additions and 2 deletions
--- a/pkgs/tools/networking/curl/default.nix
+++ b/pkgs/tools/networking/curl/default.nix
@ -13,11 +13,11 @@ assert scpSupport -> libssh2 != null;
 assert c-aresSupport -> c-ares != null;

 stdenv.mkDerivation rec {
-  name = "curl-7.38.0";
+  name = "curl-7.39.0";

  src = fetchurl {
    url = "http://curl.haxx.se/download/${name}.tar.bz2";
-    sha256 = "1flybwbdahx0sm9ipgp9k60wlrpkrmfflk1zf5j4w6mak4gd8nq3";
+    sha256 = "1q545q853i2dadz6kiybq6613bk0ncs6dp81nc0rgkc7f1p5c8mj";
  };

  # Zlib and OpenSSL must be propagated because `libcurl.la' contains