main/tiff: security upgrade to 4.2.0

fixes:

- CVE-2020-35521
- CVE-2020-35522
- CVE-2020-35523
- CVE-2020-35524

See: #12527

1 files changed, 8 insertions, 3 deletions

diff --git a/main/tiff/APKBUILD b/main/tiff/APKBUILD
index 20f5d69cb7..588e773672 100644
--- a/main/tiff/APKBUILD
+++ b/main/tiff/APKBUILD
@@ -2,8 +2,8 @@
 # Contributor: Leonardo Arena <rnalrd@alpinelinux.org>
 # Maintainer: Michael Mason <ms13sp@gmail.com>
 pkgname=tiff
-pkgver=4.1.0
-pkgrel=2
+pkgver=4.2.0
+pkgrel=0
 pkgdesc="Provides support for the Tag Image File Format or TIFF"
 url="https://gitlab.com/libtiff/libtiff"
 arch="all"
@@ -18,6 +18,11 @@ source="https://gitlab.com/libtiff/libtiff/-/archive/v$pkgver/libtiff-v$pkgver.t
 builddir="$srcdir/libtiff-v$pkgver"
 
 # secfixes:
+#   4.2.0-r0:
+#     - CVE-2020-35521
+#     - CVE-2020-35522
+#     - CVE-2020-35523
+#     - CVE-2020-35524
 #   4.1.0-r0:
 #     - CVE-2019-6128
 #   4.0.10-r2:
@@ -100,5 +105,5 @@ tools() {
 	mv "$pkgdir"/usr/bin "$subpkgdir"/usr/
 }
 
-sha512sums="b8a278bc1b7c8ee73ceb2ac5c863c4beb52f765a99656e24aba093365ed3e6ac9c0fb4f635361690885d4372ec7978e2e410c05ec4ce29bbb83e0741aacbcad7  libtiff-v4.1.0.tar.gz
+sha512sums="d47578feffcc1ecdac2d188c1df4faf05865cd9075b4d01c708a0e71928cce3b60850738a6b7ace334ae00e96ccffc6189ed91b9be81840a1d2b040777010dd5  libtiff-v4.2.0.tar.gz
 c321f1d4e5d334cdb3b0800299e8165055c040c0c030220769ccfdadcc7fd35a0f3231115f44dc86fe5e34f32eafe1074aa85495a744717f8fc10c0cab2ab085  CVE-2018-12900.patch"