aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAriadne Conill <ariadne@dereferenced.org>2021-04-28 06:10:42 -0600
committerAriadne Conill <ariadne@dereferenced.org>2021-04-28 06:11:17 -0600
commit22216120bd4a38fa6ba4b2443a69591c85744f2b (patch)
tree7192b5f13ddc8eea84d722e2a452f454b87f6696
parentae653326007249c125b21d4f3bd2361efe3271cc (diff)
downloadaports-22216120bd4a38fa6ba4b2443a69591c85744f2b.tar.gz
aports-22216120bd4a38fa6ba4b2443a69591c85744f2b.tar.bz2
aports-22216120bd4a38fa6ba4b2443a69591c85744f2b.tar.xz
community/mupdf: add mitigation for CVE-2021-3407
-rw-r--r--community/mupdf/APKBUILD8
1 files changed, 6 insertions, 2 deletions
diff --git a/community/mupdf/APKBUILD b/community/mupdf/APKBUILD
index 6477a7d861..9daad1dc89 100644
--- a/community/mupdf/APKBUILD
+++ b/community/mupdf/APKBUILD
@@ -3,7 +3,7 @@
# Maintainer: Daniel Sabogal <dsabogalcc@gmail.com>
pkgname=mupdf
pkgver=1.18.0
-pkgrel=0
+pkgrel=1
pkgdesc="Lightweight PDF and XPS viewer"
url="https://mupdf.com"
arch="all"
@@ -31,11 +31,14 @@ source="https://mupdf.com/downloads/archive/mupdf-$pkgver-source.tar.xz
shared-lib.patch
https://github.com/ArtifexSoftware/mupdf/commit/32e4e8b4bcbacbf92af7c.patch
https://github.com/ArtifexSoftware/mupdf/commit/b82e9b6d6b46877e5c376.patch
+ CVE-2021-3407.patch::https://github.com/ArtifexSoftware/mupdf/commit/cee7cefc610d42fd383b3c80c12cbc675443176a.patch
"
# FIXME: shared linking of /usr/lib/libmupdf.so.0
# secfixes:
+# 1.18.0-r1:
+# - CVE-2021-3407
# 1.17.0-r3:
# - CVE-2020-26519
# 1.13-r0:
@@ -111,4 +114,5 @@ _tools() {
sha512sums="7551f18b9bac6e2dc1cf073741cbc975ce3a16dc7e37c9d5a58254c67bf2c07bb36185d6585e435d4126f3ae351f67d7432d19a986c9b47b15105ca43db0edb8 mupdf-1.18.0-source.tar.xz
a87c52da91b0fe14c952dc1f83f4492cf1d31d135fc66bc6fb5dcce622af8c740248e10392d7cdba7409373b81e24744aafd46dc1fe5fdfcc54c77555e27420c shared-lib.patch
1d836c1a3f37c21ed349da799d5cb0c57d3fc275a632a42343cda81aae76394273c06230fc9c22a6d5366498b51a057d5a11797376a4b2af96b937618ba31e11 32e4e8b4bcbacbf92af7c.patch
-91620d0d429d2f4068e1834ec9466d9e9f9bfb363fba33247636e38651196580a89bd36785e42b31328070c42bd2210585ddabea8a0a970d72e7066e61804d6c b82e9b6d6b46877e5c376.patch"
+91620d0d429d2f4068e1834ec9466d9e9f9bfb363fba33247636e38651196580a89bd36785e42b31328070c42bd2210585ddabea8a0a970d72e7066e61804d6c b82e9b6d6b46877e5c376.patch
+67f5af701b2ea6a91346feaf6d12a91201af8d346a2cbc112503ada09f414dc13673a6b6f57e9ca03d20191e14f1e3fe46f484e2079b37a76e0be4249396f563 CVE-2021-3407.patch"