mirrors/aports
1
0
Fork 0
mirror of https://gitlab.alpinelinux.org/alpine/aports.git synced 2026-05-05 20:36:40 +02:00
Code Issues Packages Projects Releases Wiki Activity

community/thrift: security upgrade to 0.23.0

Browse Source
This commit is contained in:
J0WI 2026-05-04 22:48:33 +02:00 committed by Andy Postnikov
parent 961fdd748f
commit afb20cb32b
2 changed files with 12 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
community/thrift/APKBUILD
View File

@ -1,6 +1,6 @@
# Maintainer: Patrick Gansterer <paroga@paroga.com>
pkgname=thrift
pkgver=0.22.0
pkgver=0.23.0
pkgrel=0
pkgdesc="Language-independent software stack for RPC implementation"
url="https://thrift.apache.org/"
@ -30,11 +30,18 @@ subpackages="
lib$pkgname-glib:libglib
lib$pkgname-qt:libqt
"
source="$pkgname-$pkgver.tar.gz::https://github.com/apache/thrift/archive/v$pkgver.tar.gz
big-endian.patch
"
source="$pkgname-$pkgver.tar.gz::https://github.com/apache/thrift/archive/v$pkgver.tar.gz"
# secfixes:
# 0.23.0-r0:
# - CVE-2025-48431
# - CVE-2026-41602
# - CVE-2026-41603
# - CVE-2026-41604
# - CVE-2026-41605
# - CVE-2026-41606
# - CVE-2026-41607
# - CVE-2026-41636
# 0.14.0-r0:
# - CVE-2020-13949
@ -104,6 +111,5 @@ libz() {
}
sha512sums="
6dedcf48a8900e3a1dabfa73a4577a4d2482527b45ad8b77fec3fa7fdd8ea21b9249b3602c1e3e54bcee98143a9bb325b59e345423dc6dd8c9365889095615e2 thrift-0.22.0.tar.gz
678ad38455e315a6babc6a76b0338a7af2cca7d3168344a02aafcfe15758f21613879ab07e5e04185088334bc2d0ca88dc26c72a07a63bce880f744b54b14440 big-endian.patch
4008c38b28dade88728cb98792a36f16f496e274a7c3e47c0c3cf61a5ee30916a1caf05115b8863c049d7435d7b5be21bd23591c1acd6c13a278059cdf4257af thrift-0.23.0.tar.gz
"

16
community/thrift/big-endian.patch
View File

@ -1,16 +0,0 @@
FIX broken build on big endian platforms
Upstream MR: https://github.com/apache/thrift/pull/3162
--- a/lib/cpp/src/thrift/protocol/TProtocol.h
+++ b/lib/cpp/src/thrift/protocol/TProtocol.h
@@ -170,8 +170,8 @@ static inline To bitwise_cast(From from) {
| (((n) & 0x0000ff00ul) << 8) \
| (((n) & 0x000000fful) << 24) )
# define bswap_16(n) \
- ( (((n) & (static_cast<unsigned short>(0xff00ul)) >> 8) \
- | (((n) & (static_cast<unsigned short>(0x00fful)) << 8) )
+ ( (((n) & static_cast<unsigned short>(0xff00ul)) >> 8) \
+ | (((n) & static_cast<unsigned short>(0x00fful)) << 8) )
# define THRIFT_htolell(n) bswap_64(n)
# define THRIFT_letohll(n) bswap_64(n)
# define THRIFT_htolel(n) bswap_32(n)