~ruther/guix-local: gnu: man-db: Update to 2.7.6.1 [fixes CVE-2015-1336].

287900936b6b7e6b353f1e15a2d6315ef1ad80e0 — Leo Famulari 8 years ago e23cf93

gnu: man-db: Update to 2.7.6.1 [fixes CVE-2015-1336].

* gnu/packages/man.scm (man-db): Update to 2.7.6.1.
[arguments]: Add '--disable-cache-owner' to #:configure-flags.

patch browse .tar.gz

1 files changed, 8 insertions(+), 3 deletions(-)

M gnu/packages/man.scm

M gnu/packages/man.scm => gnu/packages/man.scm +8 -3

@@ 57,14 57,14 @@ a flexible and convenient way.")
 (define-public man-db
   (package
     (name "man-db")
-    (version "2.7.5")
+    (version "2.7.6.1")
     (source (origin
               (method url-fetch)
               (uri (string-append "mirror://savannah/man-db/man-db-"
                                   version ".tar.xz"))
               (sha256
                (base32
-                "056a3il7agfazac12yggcg4gf412yq34k065im0cpfxbcw6xskaw"))))
+                "0gqgs4zc3r87apns0k5qp689p2ylxx2596s2mkmkxjjay99brv88"))))
     (build-system gnu-build-system)
     (arguments
      '(#:phases


@@ 93,7 93,12 @@ a flexible and convenient way.")
              (xz    (assoc-ref %build-inputs "xz"))
              (util  (assoc-ref %build-inputs "util-linux")))
          ;; Invoke groff, less, gzip, bzip2, and xz directly from the store.
-         (append (list "--disable-setuid" ;; Disable setuid man user.
+         (append (list ;; Disable setuid man user.
+                       "--disable-setuid"
+                       ;; Don't constrain ownership of system-wide cache files.
+                       ;; Otherwise creating the manpage database fails with
+                       ;; man-db > 2.7.5.
+                       "--disable-cache-owner"
                        (string-append "--with-pager=" less "/bin/less")
                        (string-append "--with-gzip=" gzip "/bin/gzip")
                        (string-append "--with-bzip2=" bzip2 "/bin/gzip")