webkitgtk: 2.16.3 -> 2.16.4 for multiple CVEs

Fixes:

  * CVE-2017-2538
  * CVE-2017-2424

See https://webkitgtk.org/security/WSA-2017-0005.html
This commit is contained in:
Franz Pletz 2017-06-21 22:15:24 +02:00
parent 7469eb9fed
commit febe37a24a
No known key found for this signature in database
GPG Key ID: 846FDED7792617B4

View File

@ -12,7 +12,7 @@ assert enableGeoLocation -> geoclue2 != null;
with stdenv.lib;
stdenv.mkDerivation rec {
name = "webkitgtk-${version}";
version = "2.16.3";
version = "2.16.4";
meta = {
description = "Web content rendering engine, GTK+ port";
@ -42,7 +42,7 @@ stdenv.mkDerivation rec {
src = fetchurl {
url = "http://webkitgtk.org/releases/${name}.tar.xz";
sha256 = "04mmfxm8284zrlkrhkcn9gq1l4lpm1q6wwb5hyybj081v8qr2ki0";
sha256 = "0a2ikwiw1wn8w11y9ci6nn6dq9w0iki48l9lhnbm7g8rhcrs9azr";
};
# see if we can clean this up....