aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLeo <thinkabit.ukim@gmail.com>2019-11-20 11:59:29 +0100
committerLeo <thinkabit.ukim@gmail.com>2019-11-20 11:59:45 +0100
commit7524badc16a4157691398a942c5a94069febe580 (patch)
treef6bbc4607eeec32c286422eaf61539be3305b9ce
parente744b4cb5b3ab1bdb7a54cbe834a92b5c12e6778 (diff)
downloadaports-7524badc16a4157691398a942c5a94069febe580.tar.gz
aports-7524badc16a4157691398a942c5a94069febe580.tar.bz2
aports-7524badc16a4157691398a942c5a94069febe580.tar.xz
main/sdl: fix CVE-2019-13616
ref #10877
-rw-r--r--main/sdl/APKBUILD11
1 files changed, 6 insertions, 5 deletions
diff --git a/main/sdl/APKBUILD b/main/sdl/APKBUILD
index 4bc36c1a83..df1bec315a 100644
--- a/main/sdl/APKBUILD
+++ b/main/sdl/APKBUILD
@@ -1,7 +1,7 @@
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=sdl
pkgver=1.2.15
-pkgrel=11
+pkgrel=12
pkgdesc="A library for portable low-level access to a video framebuffer, audio output, mouse, and keyboard"
url="http://www.libsdl.org"
arch="all"
@@ -27,10 +27,13 @@ source="https://www.libsdl.org/release/SDL-$pkgver.tar.gz
0001-CVE-2019-7636.patch
0001-CVE-2019-7637.patch
0002-CVE-2019-7637.patch
+ CVE-2019-13616.patch::https://hg.libsdl.org/SDL/raw-diff/ad1bbfbca760/src/video/SDL_bmp.c
"
builddir="$srcdir"/SDL-$pkgver
# secfixes:
+# 1.2.15-r12:
+# - CVE-2019-13616
# 1.2.15-r11:
# - CVE-2019-7572
# - CVE-2019-7573
@@ -46,13 +49,11 @@ builddir="$srcdir"/SDL-$pkgver
# - CVE-2019-7638
prepare() {
- cd "$builddir"
update_config_sub
default_prepare
}
build() {
- cd "$builddir"
./configure \
--build=$CBUILD \
--host=$CHOST \
@@ -69,7 +70,6 @@ build() {
}
package() {
- cd "$builddir"
make DESTDIR="$pkgdir" install
}
@@ -95,4 +95,5 @@ a31d5c685fafbca72fdc5336343b74b90b1bfd5af4b6f632b4d8271bb1a218ec6419a7994290f65e
8e2c04d8a8167c479f56aa2b363bd3b5ee302c473642717445385210871e0c7b6bfb3020c553c4b0ca849b8a290602b20e7e398d396fdbf47980c38b0969f230 0002-CVE-2019-7635.patch
8e9fa28015e64f08d7d8124398ee5b268546105b73313490cfffdd547e67e729455535407177827e485c4132badfc48a73cce18c0ff7ff8a1c8706613acf180c 0001-CVE-2019-7636.patch
0ad1e445a067afb726df48eac55d593075c945199bd718b4116af84c15df6f5c095f541a5c8a008aef4474dda874e68517236f2f37e1539e0e5684240b058231 0001-CVE-2019-7637.patch
-105378cf7609872198c83b8824a1c36463b01f5696cda6c184252b728cdd1054cdc2e68a338f5d728facd182628d2a8b29b961664e89d7f9022abc0268c9afc1 0002-CVE-2019-7637.patch"
+105378cf7609872198c83b8824a1c36463b01f5696cda6c184252b728cdd1054cdc2e68a338f5d728facd182628d2a8b29b961664e89d7f9022abc0268c9afc1 0002-CVE-2019-7637.patch
+1b97970d0bcb7c49a3edfab2dd8c622a591ee64543ebe9e03b1de29a5cfb87820100444ff5ba0ce319911d1020ad94f6a8678c31aa13e370d1c9aeed6e3fd669 CVE-2019-13616.patch"