aboutsummaryrefslogtreecommitdiffstats
path: root/main/openjpeg/APKBUILD
diff options
context:
space:
mode:
Diffstat (limited to 'main/openjpeg/APKBUILD')
-rw-r--r--main/openjpeg/APKBUILD49
1 files changed, 36 insertions, 13 deletions
diff --git a/main/openjpeg/APKBUILD b/main/openjpeg/APKBUILD
index 7f8c248fb1..3c89a34529 100644
--- a/main/openjpeg/APKBUILD
+++ b/main/openjpeg/APKBUILD
@@ -1,8 +1,8 @@
# Contributor: William Pitcock <nenolod@dereferenced.org>
# Maintainer:
pkgname=openjpeg
-pkgver=2.1.2
-pkgrel=2
+pkgver=2.2.0
+pkgrel=0
pkgdesc="Open-source implementation of JPEG2000 image codec"
url="http://www.openjpeg.org/"
arch="all"
@@ -13,8 +13,13 @@ makedepends="$depends_dev libpng-dev tiff-dev lcms-dev doxygen cmake"
install=""
subpackages="$pkgname-dev $pkgname-tools"
source="$pkgname-$pkgver.tar.gz::https://github.com/uclouvain/openjpeg/archive/v$pkgver.tar.gz
- CVE-2016-9580-9581.patch
- CVE-2017-12982.patch"
+ CVE-2017-12982.patch
+ CVE-2017-14040.patch
+ CVE-2017-14041.patch
+ CVE-2017-14151.patch
+ CVE-2017-14152.patch
+ CVE-2017-14164.patch"
+
builddir="${srcdir}/$pkgname-$pkgver"
build() {
@@ -29,6 +34,12 @@ build() {
}
# secfixes:
+# 2.2.0-r0:
+# - CVE-2017-14040
+# - CVE-2017-14041
+# - CVE-2017-14151
+# - CVE-2017-14152
+# - CVE-2017-14164
# 2.1.2-r2:
# - CVE-2017-12982
# 2.1.2-r1:
@@ -46,12 +57,24 @@ tools() {
mv "$pkgdir"/usr/bin "$subpkgdir"/usr/
}
-md5sums="40a7bfdcc66280b3c1402a0eb1a27624 openjpeg-2.1.2.tar.gz
-a5971d486b670e76d5e473ff15e65405 CVE-2016-9580-9581.patch
-8dac6b8c8cb72f43e59ce785ea07eb32 CVE-2017-12982.patch"
-sha256sums="4ce77b6ef538ef090d9bde1d5eeff8b3069ab56c4906f083475517c2c023dfa7 openjpeg-2.1.2.tar.gz
-e352e9480925a31804d965c673545eeaa32d0a47605abaaa09b515ca956058ba CVE-2016-9580-9581.patch
-2693934f4e57a57ec28f9b4fa7664c79e8a200910ef7fbe41a72b8cf1e5b711f CVE-2017-12982.patch"
-sha512sums="411067e33c8e4da9921d0281e932a4ac2af592cf822bfad828daea9e2b9c414859455bcec6d912ce76460ea462fa4cbd94a401333bda5716ec017d18b8e5942c openjpeg-2.1.2.tar.gz
-bffe1126c18296fdc1e7f98437e2b468b8b16c4903d504dc9abf24a9b8e02f18e86200038c5a59c061c40d41b42f6b378776ed0040559bb362a3a592928941d7 CVE-2016-9580-9581.patch
-0e0ce7bdf53c4b6f1b2e9e5f855186763a1bea39b70bdc1fd5b60a5516036a04562cb43030e9946972009e3733d0efadb8ba4825939e32ba6b9419d6428ee9ad CVE-2017-12982.patch"
+md5sums="269bb0b175476f3addcc0d03bd9a97b6 openjpeg-2.2.0.tar.gz
+8dac6b8c8cb72f43e59ce785ea07eb32 CVE-2017-12982.patch
+2f16d123a34518bd2d89020f1d7b5bfe CVE-2017-14040.patch
+f9eb736858243cef1e93479c9cb035a6 CVE-2017-14041.patch
+d181ddab2dfc27b025a79b4b0de05fbb CVE-2017-14151.patch
+77cadc5bc2891ed79669b330bf22c41e CVE-2017-14152.patch
+2a145c081ee1f02c97d68f469e9bbf14 CVE-2017-14164.patch"
+sha256sums="6fddbce5a618e910e03ad00d66e7fcd09cc6ee307ce69932666d54c73b7c6e7b openjpeg-2.2.0.tar.gz
+2693934f4e57a57ec28f9b4fa7664c79e8a200910ef7fbe41a72b8cf1e5b711f CVE-2017-12982.patch
+d3edf997981dade53f44fb0659eff297db4fb44d197ef1d3ad0861a061221995 CVE-2017-14040.patch
+62acd64dfb0aa17135b9b2fa7bdf032ab77524e29f3a817a8309a2fe04828593 CVE-2017-14041.patch
+c07fee74428ce8ced1de20785e20f26974f57cd75bb64d30e9534ed156e0004b CVE-2017-14151.patch
+7b8d8ed43cbf85331b876eea10263c8fbbbcb5bacc38ce014d3d859d095d8090 CVE-2017-14152.patch
+a764be45f861650c56fccca7bf74ae40329e6cdf1fe59be84bb0250f9e1dee94 CVE-2017-14164.patch"
+sha512sums="20651c380bee582ab1950994c424cc00061ad852e9c5438fb32a9809e3f275571a4cc7e92589add0d91debf2394262e58f441c2dd918809fc1c602ed68396a3a openjpeg-2.2.0.tar.gz
+0e0ce7bdf53c4b6f1b2e9e5f855186763a1bea39b70bdc1fd5b60a5516036a04562cb43030e9946972009e3733d0efadb8ba4825939e32ba6b9419d6428ee9ad CVE-2017-12982.patch
+532c268346ad6993d7085652fbebe65ec0412a8d12771b86c325ef9f1cb6e0f7252ac95dfb976fa00ecfffd7b140ddc74b2964b04764e0803fb7e8c344a2b58a CVE-2017-14040.patch
+d22735e20c7b08bb292bfda03a659481466a152294c388854aed3623ff769aed6c6491a8e6286b4dfdc8212a465b1596232e51fe8e8ba3a608ebf27b32d33d56 CVE-2017-14041.patch
+66019c7a30a6b6303992d518b8184e57b58824f8b63bc8857436aa404257bf1f1d64ab6100a5f0ed18fa1b41c09501e77230207ca028bc16db35fc2d834a6506 CVE-2017-14151.patch
+c244e0e4db1473583ffac6b31808b70bd3554e6eba7b357891aca7f8ad0ab687d433aac3d3f210349507cc54981b0171eb9a72e4a890925beaa2c9d9ee877dfd CVE-2017-14152.patch
+640cd731f5ee3a5fecbc8ca7c78d626c383155dbefe3a240319bcea81b5bc9996e028055ff64df192b5ed02e3a9e18b681b2ab4f106c3d555b68c93115dc6d01 CVE-2017-14164.patch"