aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAndy Postnikov <apostnikov@gmail.com>2018-09-04 14:08:39 +0300
committerNatanael Copa <ncopa@alpinelinux.org>2018-09-20 10:28:26 +0200
commitdd646650fecf6b0d42ffc26eed4a6da53a6040e5 (patch)
treee2a36d71601dd0a35d785b5a004908373c59e45a
parent2e8a7481f51b779996e20514a1e3b950796e8fa8 (diff)
downloadaports-dd646650fecf6b0d42ffc26eed4a6da53a6040e5.tar.bz2
aports-dd646650fecf6b0d42ffc26eed4a6da53a6040e5.tar.xz
main/ghostscript: security upgrade to 9.24
-rw-r--r--main/ghostscript/APKBUILD25
1 files changed, 12 insertions, 13 deletions
diff --git a/main/ghostscript/APKBUILD b/main/ghostscript/APKBUILD
index 6e9363a017..29869e2a6e 100644
--- a/main/ghostscript/APKBUILD
+++ b/main/ghostscript/APKBUILD
@@ -1,7 +1,7 @@
# Contributor: Cameron Banta <cbanta@gmail.com>
# Maintainer: Cameron Banta <cbanta@gmail.com>
pkgname=ghostscript
-pkgver=9.22
+pkgver=9.24
pkgrel=0
pkgdesc="An interpreter for the PostScript language and for PDF"
url="http://ghostscript.com/"
@@ -18,6 +18,13 @@ source="https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/
builddir="$srcdir/$pkgname-$pkgver"
# secfixes:
+# 9.24-r0:
+# - CVE-2018-15908
+# - CVE-2018-15909
+# - CVE-2018-15910
+# - CVE-2018-15911
+# 9.23-r0:
+# - CVE-2018-10194
# 9.21-r0:
# - CVE-2017-8291
# - CVE-2017-7207
@@ -29,7 +36,7 @@ prepare() {
default_prepare || return 1 # apply patches
# force it to use system-libs
- rm -r jpeg libpng zlib tiff lcms2 cups/libs jbig2dec \
+ rm -r jpeg libpng zlib tiff lcms2mt cups/libs jbig2dec \
freetype || return 1
# fix parallel builds
@@ -95,14 +102,6 @@ package() {
"$pkgdir/usr/share/licenses/$pkgname/LICENSE"
install -m644 -D "$srcdir/$pkgname-$pkgver/doc/COPYING" \
"$pkgdir/usr/share/licenses/$pkgname/COPYING"
-
- # make the doc and examples more alpine like
- # (the --docdir above doesn't seem to work so good)
- mkdir -p "$pkgdir/usr/share/doc/$pkgname"
- mv "$pkgdir/usr/share/$pkgname/$pkgver/doc" \
- "$pkgdir/usr/share/doc/$pkgname" || return 1
- mv "$pkgdir/usr/share/$pkgname/$pkgver/examples" \
- "$pkgdir/usr/share/doc/$pkgname" || return 1
}
gtk() {
@@ -112,12 +111,12 @@ gtk() {
mv "$pkgdir"/usr/bin/gsx "$subpkgdir"/usr/bin/
}
-md5sums="eff6bc41b1d7e26e988d2a5c813889d1 ghostscript-9.22.tar.gz
+md5sums="c5c3fa8eb737a6540814314a9d9e4995 ghostscript-9.24.tar.gz
ae582371ec56fd8f73349773f23dcc94 ghostscript-system-zlib.patch
ee7da55d7a714db1de0fa78253cdacf3 fix-sprintf.patch"
-sha256sums="7f5f4487c0df9dce37481e4c8f192c0322e4c69f5a2ba900a7833c992331bcf4 ghostscript-9.22.tar.gz
+sha256sums="e613b2376f01882e82e0cf08f6caa3c5719793c4e31dd7d4a8e87d61d371005f ghostscript-9.24.tar.gz
56662fae7956e741059ef9c2b5a7e883ab04d78acf5dae4fddf4a661f47f8b67 ghostscript-system-zlib.patch
6e01bd26ade307414f86a5d8f00c97719830d8afd49ffe84224ae47498de7a54 fix-sprintf.patch"
-sha512sums="599ba003e168d302e327ea7c2b83a4247059a1b7222452cbea4966dac448a79e8d7f07a1f287fa0c14cfa5269bb623382ed02fb3ea3a0e526dae08aaa1cd8b89 ghostscript-9.22.tar.gz
+sha512sums="a85050c9604d7671d58e2415682482fb60852cb4de746cd07ee5a51585507f73f3ae61d6b52764230e333fb45d6a31666bf3cbad77215d997b6a5c3c64cf71cd ghostscript-9.24.tar.gz
70721e3a335afa5e21d4e6cf919119010bd4544a03ab8f53f5325c173902221ad9b88c118b4bfeee80b3e1956bcdbaf4c53f64ae7fb81f5ba57dbc956750c482 ghostscript-system-zlib.patch
beefcf395f7f828e1b81c088022c08a506e218f27535b9de01e0f0edf7979b435316c318fa676771630f6ad16ff1ab059cd68aa128ed97e5a9f2f3fa840200c4 fix-sprintf.patch"