aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorLeo <thinkabit.ukim@gmail.com>2019-05-06 03:00:32 -0300
committerNatanael Copa <ncopa@alpinelinux.org>2019-05-06 10:38:54 +0200
commitaca534846f09aee2bd3cbccdbbeb49277730af57 (patch)
treef2b2b3acbb8130357cc5330a89d7cda3eb2cf226
parent8c6a7436628b0bcb334251e7282ff057a37aec33 (diff)
downloadaports-aca534846f09aee2bd3cbccdbbeb49277730af57.tar.gz
aports-aca534846f09aee2bd3cbccdbbeb49277730af57.tar.bz2
aports-aca534846f09aee2bd3cbccdbbeb49277730af57.tar.xz
main/libpng: upgrade to 1.6.37
- Add secfixes CVE-2019-7317 CVE-2018-14048 CVE-2018-14550 - Remove pkg-config detected depends_dev fixes #10363
-rw-r--r--main/libpng/APKBUILD22
1 files changed, 13 insertions, 9 deletions
diff --git a/main/libpng/APKBUILD b/main/libpng/APKBUILD
index 22b7bcaf4d..77a2934b44 100644
--- a/main/libpng/APKBUILD
+++ b/main/libpng/APKBUILD
@@ -1,22 +1,26 @@
# Contributor: Carlo Landmeter <clandmeter@gmail.com>
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=libpng
-pkgver=1.6.34
-pkgrel=1
+pkgver=1.6.37
+pkgrel=0
pkgdesc="Portable Network Graphics library"
url="http://www.libpng.org"
arch="all"
license="Libpng"
-depends=""
-depends_dev="zlib-dev"
-makedepends="$depends_dev gawk autoconf automake libtool"
+makedepends="zlib-dev gawk autoconf automake libtool"
subpackages="$pkgname-doc $pkgname-dev $pkgname-utils"
-source="http://downloads.sourceforge.net/$pkgname/$pkgname-$pkgver.tar.gz
- http://downloads.sourceforge.net/sourceforge/$pkgname-apng/$pkgname-$pkgver-apng.patch.gz
+source="https://downloads.sourceforge.net/libpng/$pkgname-$pkgver.tar.gz
+ https://downloads.sourceforge.net/sourceforge/libpng-apng/$pkgname-$pkgver-apng.patch.gz
libpng-fix-arm-neon.patch
"
builddir="$srcdir/$pkgname-$pkgver"
+# secfixes:
+# 1.6.37-r0:
+# - CVE-2019-7317
+# - CVE-2018-14048
+# - CVE-2018-14550
+
prepare() {
cd "$builddir"
gunzip -c "$srcdir"/$pkgname-$pkgver-apng.patch.gz | patch -p1
@@ -54,6 +58,6 @@ utils() {
mv "$pkgdir"/usr/bin "$subpkgdir"/usr
}
-sha512sums="7ee14f3fcf68802b56ac006ae0188735f25adb0402422dc97f560e6d00ba0adac50b1014dbab83457cd33b360901771c962e6b7c0c6e3948cda13eb1188de825 libpng-1.6.34.tar.gz
-0777b8e55aeee207ee92479f2258ef1f60f16d7951fdbc6d89a80ef533b86dadecd1ef659d6fe7602d8ea3a8e711a096b0f77ee09b993799b73dfffddfe5dd3c libpng-1.6.34-apng.patch.gz
+sha512sums="2ce2b855af307ca92a6e053f521f5d262c36eb836b4810cb53c809aa3ea2dcc08f834aee0ffd66137768a54397e28e92804534a74abb6fc9f6f3127f14c9c338 libpng-1.6.37.tar.gz
+226adcb3a8c60f2267fe2976ab531329ae43c2603dab4d0cf8f16217d64069936b879f3d6516b75d259c47d6f5c5b1f24f887602206c8e46abde0fb7f5c7946b libpng-1.6.37-apng.patch.gz
e3fae918f14bc34e7c126892f69527c6e1b4d72593835ece839d9a28cff55a886b2030f877cf9e29b2c97abf2e47bbb5ba54584828edd2a841c2556f330b9c7e libpng-fix-arm-neon.patch"