diff options
author | Leonardo Arena <rnalrd@alpinelinux.org> | 2017-04-28 06:35:20 +0000 |
---|---|---|
committer | Leonardo Arena <rnalrd@alpinelinux.org> | 2017-04-28 06:35:54 +0000 |
commit | 08114de6e0da35db211984405c8d9043e426ea58 (patch) | |
tree | 7834304d45331f94f00f587d6b2c03957c772935 | |
parent | 7a34e8bf906cf5f01872c7bccd2a97074167467b (diff) |
main/gd: security upgrade to 2.2.4 - fixes #7200
-rw-r--r-- | main/gd/APKBUILD | 20 |
1 files changed, 14 insertions, 6 deletions
diff --git a/main/gd/APKBUILD b/main/gd/APKBUILD index 978e2ad50c9..9bb4e07c3c5 100644 --- a/main/gd/APKBUILD +++ b/main/gd/APKBUILD @@ -1,9 +1,9 @@ # Contributor: Carlo Landmeter <clandmeter@gmail.com> # Maintainer: Carlo Landmeter <clandmeter@gmail.com> pkgname=gd -pkgver=2.2.3 +pkgver=2.2.4 _myver=${pkgver/_rc/RC} -pkgrel=1 +pkgrel=0 pkgdesc="Library for the dynamic creation of images by programmers" url="http://libgd.github.io/" arch="all" @@ -14,9 +14,17 @@ subpackages="$pkgname-dev" source="https://github.com/libgd/libgd/releases/download/gd-$pkgver/libgd-$pkgver.tar.xz CVE-2016-7568.patch " - builddir="$srcdir"/lib$pkgname-$_myver +# secfixes: +# 2.2.4-r0: +# - CVE-2016-6906 +# - CVE-2016-9317 +# - CVE-2016-6912 +# - CVE-2016-10166 +# - CVE-2016-10167 +# - CVE-2016-10168 + build() { cd "$builddir" ./configure \ @@ -41,9 +49,9 @@ package() { make DESTDIR="$pkgdir" install || return 1 } -md5sums="14e4134c129b4c166c3a0549a32ef340 libgd-2.2.3.tar.xz +md5sums="a244855a323a3ea1975d708eb1e12b7a libgd-2.2.4.tar.xz fca9871b791d6ac88af7d6d5ce8c59d1 CVE-2016-7568.patch" -sha256sums="746b6cbd6769a22ff3ba6f5756f3512a769bd4cdf4695dff17f4867f25fa7d3c libgd-2.2.3.tar.xz +sha256sums="137f13a7eb93ce72e32ccd7cebdab6874f8cf7ddf31d3a455a68e016ecd9e4e6 libgd-2.2.4.tar.xz 0b7b7ddfc5200220763efb47cc6b56a6275fd5af70e85a8c91c667344f664012 CVE-2016-7568.patch" -sha512sums="bdc6d086bc054beda6574ec46baa4cd94048a5f2f357f875ba05983e92d247f1b731434b9e438c6aef09d46fa96f1a7e1f330a25a77ffd2dd78aa8a32d652557 libgd-2.2.3.tar.xz +sha512sums="07903f322c4f6ab392508b0f60c38ca133699111ea92995dc6cd9379210d598bcb24a46c19657884d9e252f8663d0ee8c89c600e3a382a5ae598198c190f39b5 libgd-2.2.4.tar.xz 8310d11a2398e8617c9defc4500b9ce3897ac1026002ffa36000f1d1f8df19336005e8c1f6587533f1d787a4a54d7a3a28ad25bddbc966a018aedf4d8704a716 CVE-2016-7568.patch" |