blob: fb710b6029a1d3aae273fd60cc8579a35fc12165 (
plain) (
tree)
|
|
# Maintainer: A. Wilcox <awilfox@adelielinux.org>
pkgname=exiv2
pkgver=0.27.2
pkgrel=2
pkgdesc="Exif, IPTC and XMP metadata library and tools"
url="https://www.exiv2.org/"
arch="all"
license="GPL-2.0+"
depends=""
depends_dev="expat-dev zlib-dev"
checkdepends="python3 libxml2 cmd:which"
makedepends="$depends_dev bash cmake"
subpackages="$pkgname-dev $pkgname-doc"
source="http://www.exiv2.org/builds/exiv2-$pkgver-Source.tar.gz
https://dev.sick.bike/dist/exiv2-$pkgver-POC-file_issue_1019
https://dev.sick.bike/dist/exiv2-$pkgver-Jp2Image_readMetadata_loop.poc
CVE-2019-17402.patch
CVE-2019-20421.patch
"
builddir="$srcdir/$pkgname-$pkgver-Source"
# secfixes:
# 0.26-r2:
# - CVE-2018-19535
# 0.27.1-r0:
# - CVE-2017-9239
# - CVE-2017-9953
# - CVE-2017-11336
# - CVE-2017-11337
# - CVE-2017-11338
# - CVE-2017-11339
# - CVE-2017-11340
# - CVE-2017-11553
# - CVE-2017-11591
# - CVE-2017-11592
# - CVE-2017-11683
# - CVE-2017-12955
# - CVE-2017-12956
# - CVE-2017-12957
# - CVE-2017-14857
# - CVE-2017-14858
# - CVE-2017-14859
# - CVE-2017-14860
# - CVE-2017-14861
# - CVE-2017-14862
# - CVE-2017-14863
# - CVE-2017-14864
# - CVE-2017-14865
# - CVE-2017-14866
# - CVE-2017-17669
# - CVE-2017-17722
# - CVE-2017-17723
# - CVE-2017-17724
# - CVE-2017-17725
# - CVE-2017-18005
# - CVE-2017-1000126
# - CVE-2017-1000127
# - CVE-2017-1000128
# - CVE-2018-4868
# - CVE-2018-5772
# - CVE-2018-8976
# - CVE-2018-8977
# - CVE-2018-9145
# - CVE-2018-10772
# - CVE-2018-10780
# - CVE-2018-10958
# - CVE-2018-10998
# - CVE-2018-10999
# - CVE-2018-11037
# - CVE-2018-11531
# - CVE-2018-12264
# - CVE-2018-12265
# - CVE-2018-14046
# - CVE-2018-14338
# - CVE-2018-16336
# - CVE-2018-17229
# - CVE-2018-17230
# - CVE-2018-17282
# - CVE-2018-17581
# - CVE-2018-19107
# - CVE-2018-19108
# 0.27.2-r0:
# - CVE-2019-13108
# - CVE-2019-13109
# - CVE-2019-13110
# - CVE-2019-13111
# - CVE-2019-13112
# - CVE-2019-13113
# - CVE-2019-13114
# 0.27.2-r1:
# - CVE-2019-17402
# 0.27.2-r2:
# - CVE-2019-20421
prepare() {
default_prepare
# Remove #1019 POC after >= 0.27.2
mv "$srcdir/$pkgname-$pkgver-POC-file_issue_1019" \
test/data/POC-file_issue_1019
# Ditto
mv "$srcdir/$pkgname-$pkgver-Jp2Image_readMetadata_loop.poc" \
test/data/Jp2Image_readMetadata_loop.poc
}
build() {
cmake -DCMAKE_INSTALL_PREFIX=/usr \
-DCMAKE_INSTALL_LIBDIR=/usr/lib \
-DCMAKE_BUILD_TYPE=RelWithDebInfo -Bbuild
make -C build
}
check() {
make -C build tests
}
package() {
make DESTDIR="$pkgdir" -C build install
}
sha512sums="39eb7d920dce18b275ac66f4766c7c73f7c72ee10e3e1e43d84c611b24f48ce20a70eac6d53948914e93242a25b8b52cc4bc760ee611ddcd77481306c1f9e721 exiv2-0.27.2-Source.tar.gz
cfe0b534c29c37e7b6e5a00e8ec320cb57eb17187813fe30677a097e930655f1b097ce77806e0124affbdc423b48d9910560158eed9d2d03418a824244dafba9 exiv2-0.27.2-POC-file_issue_1019
d2c0f59e9e2daf00066b0ad73253bb7bb09b3319606813f16478ef5717751e4cbb93d12f5c9339dae2965dcf6a63138bdb4205b698aeab57a75f97ddf458d4f7 exiv2-0.27.2-Jp2Image_readMetadata_loop.poc
623232624f5382c7261a8b7e66063954c37555b7812e4f2e9af8433c4d8a1f141feafbfd2c5081395208cf1c65307ce1b39e5e34f689c558dce82f78030b29dd CVE-2019-17402.patch
c819f06a194b8465c66ccd91b8373cb2a359e59bab7583a8abb873c2001efe6188ac8fa4717c6382d2f2396d25e79e7b397c5ebf000d35c4a7dae547db7bc77b CVE-2019-20421.patch"
|
