commit 9213d0cfa54883311462b82938bf05fad0ff2465 · pyrox.dev/nixpkgs

pyrox.dev / nixpkgs

lol

fork atom

spark: mark versions <= 2.2.0 && <= 2.1.2 as insecure due to CVE-2017-12612

Details can be retrieve at [1].

[1] https://spark.apache.org/security.html

Andreas Rammhold 8 years ago 9213d0cf 788c5195

1 changed file

expand all

unified split

pkgs

applications

networking

cluster

spark

default.nix

pkgs/applications/networking/cluster/spark/default.nix

··· 67 license = stdenv.lib.licenses.asl20; 68 platforms = stdenv.lib.platforms.all; 69 maintainers = with maintainers; [ thoughtpolice offline ]; 70 repositories.git = git://git.apache.org/spark.git; 71 }; 72 }

··· 67 license = stdenv.lib.licenses.asl20; 68 platforms = stdenv.lib.platforms.all; 69 maintainers = with maintainers; [ thoughtpolice offline ]; 70 + knownVulnerabilities = optional (!((versionAtLeast version "2.2.0") || (versionOlder version "2.2.0" && versionAtLeast version "2.1.2"))) "CVE-2017-12612"; 71 repositories.git = git://git.apache.org/spark.git; 72 }; 73 }