From afb20cb32bf16bb8a6b4c9766495adb247fa835d Mon Sep 17 00:00:00 2001
From: J0WI <J0WI@users.noreply.github.com>
Date: Mon, 4 May 2026 22:48:33 +0200
Subject: [PATCH] community/thrift: security upgrade to 0.23.0

---
 community/thrift/APKBUILD         | 18 ++++++++++++------
 community/thrift/big-endian.patch | 16 ----------------
 2 files changed, 12 insertions(+), 22 deletions(-)
 delete mode 100644 community/thrift/big-endian.patch

diff --git a/community/thrift/APKBUILD b/community/thrift/APKBUILD
index ca6da5229c8..d70546a93e4 100644
--- a/community/thrift/APKBUILD
+++ b/community/thrift/APKBUILD
@@ -1,6 +1,6 @@
 # Maintainer: Patrick Gansterer <paroga@paroga.com>
 pkgname=thrift
-pkgver=0.22.0
+pkgver=0.23.0
 pkgrel=0
 pkgdesc="Language-independent software stack for RPC implementation"
 url="https://thrift.apache.org/"
@@ -30,11 +30,18 @@ subpackages="
 	lib$pkgname-glib:libglib
 	lib$pkgname-qt:libqt
 	"
-source="$pkgname-$pkgver.tar.gz::https://github.com/apache/thrift/archive/v$pkgver.tar.gz
-	big-endian.patch
-	"
+source="$pkgname-$pkgver.tar.gz::https://github.com/apache/thrift/archive/v$pkgver.tar.gz"
 
 # secfixes:
+#   0.23.0-r0:
+#     - CVE-2025-48431
+#     - CVE-2026-41602
+#     - CVE-2026-41603
+#     - CVE-2026-41604
+#     - CVE-2026-41605
+#     - CVE-2026-41606
+#     - CVE-2026-41607
+#     - CVE-2026-41636
 #   0.14.0-r0:
 #     - CVE-2020-13949
 
@@ -104,6 +111,5 @@ libz() {
 }
 
 sha512sums="
-6dedcf48a8900e3a1dabfa73a4577a4d2482527b45ad8b77fec3fa7fdd8ea21b9249b3602c1e3e54bcee98143a9bb325b59e345423dc6dd8c9365889095615e2  thrift-0.22.0.tar.gz
-678ad38455e315a6babc6a76b0338a7af2cca7d3168344a02aafcfe15758f21613879ab07e5e04185088334bc2d0ca88dc26c72a07a63bce880f744b54b14440  big-endian.patch
+4008c38b28dade88728cb98792a36f16f496e274a7c3e47c0c3cf61a5ee30916a1caf05115b8863c049d7435d7b5be21bd23591c1acd6c13a278059cdf4257af  thrift-0.23.0.tar.gz
 "
diff --git a/community/thrift/big-endian.patch b/community/thrift/big-endian.patch
deleted file mode 100644
index c1dab60142e..00000000000
--- a/community/thrift/big-endian.patch
+++ /dev/null
@@ -1,16 +0,0 @@
-FIX broken build on big endian platforms
-
-Upstream MR: https://github.com/apache/thrift/pull/3162
---- a/lib/cpp/src/thrift/protocol/TProtocol.h
-+++ b/lib/cpp/src/thrift/protocol/TProtocol.h
-@@ -170,8 +170,8 @@ static inline To bitwise_cast(From from) {
-       | (((n) & 0x0000ff00ul) << 8)  \
-       | (((n) & 0x000000fful) << 24) )
- #  define bswap_16(n) \
--      ( (((n) & (static_cast<unsigned short>(0xff00ul)) >> 8)  \
--      | (((n) & (static_cast<unsigned short>(0x00fful)) << 8)  )
-+      ( (((n) & static_cast<unsigned short>(0xff00ul)) >> 8)  \
-+      | (((n) & static_cast<unsigned short>(0x00fful)) << 8)  )
- #  define THRIFT_htolell(n) bswap_64(n)
- #  define THRIFT_letohll(n) bswap_64(n)
- #  define THRIFT_htolel(n) bswap_32(n)