Commit Graph

10 Commits

Author SHA1 Message Date
Daiderd Jordan
0d3f0f05e2
libupnp: 1.6.20 -> 1.6.21 for CVE-2016-8863
Switching to git tags means we don't get pre-generated configure
scripts. Thusly, run bootstrap ourselves.

For https://github.com/NixOS/nixpkgs/issues/21289
For CVE-2016-8863 (remote code execution)
2016-12-21 14:37:47 -05:00
Graham Christensen
60a004cf0c
libupnp: 1.6.19 -> 1.6.20 for CVE-2016-6255 2016-09-26 12:56:02 -04:00
Robin Gloster
1b979d8384 Merge remote-tracking branch 'upstream/master' into hardened-stdenv 2016-08-03 13:34:44 +00:00
Tuomas Tynkkynen
21f17d69f6 treewide: Add lots of meta.platforms
Build-tested on x86_64 Linux & Mac.
2016-08-02 21:42:43 +03:00
Franz Pletz
aff1f4ab94 Use general hardening flag toggle lists
The following parameters are now available:

  * hardeningDisable
    To disable specific hardening flags
  * hardeningEnable
    To enable specific hardening flags

Only the cc-wrapper supports this right now, but these may be reused by
other wrappers, builders or setup hooks.

cc-wrapper supports the following flags:

  * fortify
  * stackprotector
  * pie (disabled by default)
  * pic
  * strictoverflow
  * format
  * relro
  * bindnow
2016-03-05 18:55:26 +01:00
Robin Gloster
1ff7179925 libupnp: no fortify hardening 2016-01-30 16:36:57 +00:00
Robin Gloster
f6d3b7a2ae switch hardening flags 2016-01-30 16:36:57 +00:00
Franz Pletz
954e9903ad Use a hardened stdenv by default 2016-01-30 16:36:57 +00:00
Nixpkgs Monitor
f85b57b2fc libupnp: update from 1.6.6 to 1.6.19, potentially fixes CVE-2012-5958, CVE-2012-5959, CVE-2012-5960 2014-01-10 08:28:58 +01:00
Ludovic Courtès
1c71357835 libupnp: Switch to the `pupnp' version.
The other one was unmaintained, as reported by Armijn Hemel.

svn path=/nixpkgs/trunk/; revision=13014
2008-10-08 20:03:35 +00:00