blob: 6cc76e7dd2f64f20568c32e736a451927e4886ac (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
|
# Contributor: Sergei Lukin <sergej.lukin@gmail.com>
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=libsndfile
pkgver=1.0.28
pkgrel=6
pkgdesc="A C library for reading and writing files containing sampled sound"
url="http://www.mega-nerd.com/libsndfile"
arch="all"
license="LGPL-2.0-or-later"
subpackages="$pkgname-dev $pkgname-doc"
depends=
depends_dev="flac-dev libvorbis-dev libogg-dev"
makedepends="linux-headers alsa-lib-dev $depends_dev"
source="http://www.mega-nerd.com/$pkgname/files/$pkgname-$pkgver.tar.gz
CVE-2017-8361_CVE-2017-8363_CVE-2017-8365.patch
CVE-2017-8362.patch
CVE-2017-12562.patch
CVE-2018-13139.patch
CVE-2017-17456_CVE-2017-17457_CVE-2018-19661_CVE-2018-19662.patch
"
# sporadic testsuite failures on armhf
[ "$CARCH" = "armhf" ] && options="!check"
# secfixes:
# 1.0.28-r6:
# - CVE-2018-19758
# - CVE-2019-3832
# 1.0.28-r5:
# - CVE-2017-17456
# - CVE-2017-17457
# - CVE-2018-19661
# - CVE-2018-19662
# 1.0.28-r4:
# - CVE-2018-13139
# 1.0.28-r2:
# - CVE-2017-12562
# 1.0.28-r0:
# - CVE-2017-7585
# - CVE-2017-7741
# - CVE-2017-7742
# 1.0.28-r1:
# - CVE-2017-8361
# - CVE-2017-8362
# - CVE-2017-8363
# - CVE-2017-8365
build() {
cd "$builddir"
ac_cv_sys_largefile_CFLAGS="-D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64" \
./configure \
--build=$CBUILD \
--host=$CHOST \
--prefix=/usr \
--disable-sqlite \
--enable-largefile
make
}
check() {
cd "$builddir"
make check
}
package() {
cd "$builddir"
make DESTDIR="$pkgdir" install
}
sha512sums="890731a6b8173f714155ce05eaf6d991b31632c8ab207fbae860968861a107552df26fcf85602df2e7f65502c7256c1b41735e1122485a3a07ddb580aa83b57f libsndfile-1.0.28.tar.gz
f98c40696fca3e7bca867df993de55bb4145c23428e65d1a669182eb2293046478ac727ae7f94bb77123ef0355c3c53be4f9d6a432665c90c74687d8d3afd9e3 CVE-2017-8361_CVE-2017-8363_CVE-2017-8365.patch
dfd4b5f1c7471fc416eed5c6040580a020543f145de9103751adaad6ce1c5c6a22abc1cf0ffd381aed3072644cd5ee03ba3598265aa7d202d63167da251cb595 CVE-2017-8362.patch
814139567d90fb07908014e858c341fe933e04dca69b88ad66078910888237bbeba94f85d9e1489883c424f35fca312eb98c21ae2b122d9289bb6418725cd02e CVE-2017-12562.patch
33817e7c85180635fa239e4ea38973b18312878522639f43071188a995f0e1a35dbca6d133555fb0875292b4b609950ae38e747a6b1949f8ae840db9dc3a2805 CVE-2018-13139.patch
ba3e5321713dbc118f45dac6f86049a15e6ba54fc788776eb267b1b165a0853bec278d8b066c71372cd243c852faa6781bef6a71d108e7cdbc64fb77fa3afc0a CVE-2017-17456_CVE-2017-17457_CVE-2018-19661_CVE-2018-19662.patch"
|
