diff options
| author | Ariadne Conill <ariadne@dereferenced.org> | 2021-04-27 09:41:29 -0600 |
|---|---|---|
| committer | Ariadne Conill <ariadne@dereferenced.org> | 2021-04-27 09:41:53 -0600 |
| commit | 4f61aff08a3fab3bb7e59c2c453829a123db526f (patch) | |
| tree | d9196f3ccfba9040fb10a23d065b30248e385bba | |
| parent | 802b5c805cdde3b01500b61ed312093f2a112b53 (diff) | |
| download | aports-4f61aff08a3fab3bb7e59c2c453829a123db526f.tar.gz aports-4f61aff08a3fab3bb7e59c2c453829a123db526f.tar.bz2 aports-4f61aff08a3fab3bb7e59c2c453829a123db526f.tar.xz | |
main/openjpeg: add mitigation for CVE-2021-29338
| -rw-r--r-- | main/openjpeg/APKBUILD | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/main/openjpeg/APKBUILD b/main/openjpeg/APKBUILD index 7e70b64eedc..946407e58a8 100644 --- a/main/openjpeg/APKBUILD +++ b/main/openjpeg/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Francesco Colista <fcolista@alpinelinux.org> pkgname=openjpeg pkgver=2.4.0 -pkgrel=0 +pkgrel=1 pkgdesc="Open-source implementation of JPEG2000 image codec" url="https://www.openjpeg.org/" arch="all" @@ -11,6 +11,7 @@ makedepends="libpng-dev tiff-dev lcms2-dev doxygen cmake" subpackages="$pkgname-dev $pkgname-tools" source="$pkgname-$pkgver.tar.gz::https://github.com/uclouvain/openjpeg/archive/v$pkgver.tar.gz fix-cmakelists.patch + CVE-2021-29338.patch::https://github.com/uclouvain/openjpeg/commit/b4700bc09d55ac17ff6bef9b0a867f6de527be17.patch " build() { @@ -22,6 +23,8 @@ build() { } # secfixes: +# 2.4.0-r1: +# - CVE-2021-29338 # 2.4.0-r0: # - CVE-2020-27844 # 2.3.1-r6: @@ -67,4 +70,5 @@ tools() { } sha512sums="55daab47d33823af94e32e5d345b52c251a5410f0c8e0a13b693f17899eedc8b2bb107489ddcba9ab78ef17dfd7cd80d3c5ec80c1e429189cb041124b67e07a8 openjpeg-2.4.0.tar.gz -b50cd382d08647db18f202769aae7df87613a18143a30e360e8f00aba1ec1b7fd0a153685dbea3950bc5623b06c314326777c4fb7aff56adfc6b17bc74c933e5 fix-cmakelists.patch" +b50cd382d08647db18f202769aae7df87613a18143a30e360e8f00aba1ec1b7fd0a153685dbea3950bc5623b06c314326777c4fb7aff56adfc6b17bc74c933e5 fix-cmakelists.patch +94ca747f6655a9b927d50cceb82529c36e0d4ef3f883b76b7f1aacc0784dce5df3cc7ba21ff888077873e0c3029f0ac505f0c741cbe225edb3880790527f5d81 CVE-2021-29338.patch" |