summaryrefslogtreecommitdiff
path: root/user/libexif/APKBUILD
diff options
context:
space:
mode:
authorMax Rees <maxcrees@me.com>2020-03-02 18:18:03 -0600
committerMax Rees <maxcrees@me.com>2020-03-09 21:27:43 -0500
commit966502dcaa571ab5ff71343a4f297e2ab27693a4 (patch)
treed63b62e24ade23d82704cfc67918394b8c46ccaf /user/libexif/APKBUILD
parentce04e9e76552231fd2940d9e02536ebecda3d4a4 (diff)
downloadpackages-966502dcaa571ab5ff71343a4f297e2ab27693a4.tar.gz
packages-966502dcaa571ab5ff71343a4f297e2ab27693a4.tar.bz2
packages-966502dcaa571ab5ff71343a4f297e2ab27693a4.tar.xz
packages-966502dcaa571ab5ff71343a4f297e2ab27693a4.zip
user/libexif: patch CVE-2016-6328 and CVE-2019-9278
Diffstat (limited to 'user/libexif/APKBUILD')
-rw-r--r--user/libexif/APKBUILD11
1 files changed, 9 insertions, 2 deletions
diff --git a/user/libexif/APKBUILD b/user/libexif/APKBUILD
index de51ae7b0..06e1e832a 100644
--- a/user/libexif/APKBUILD
+++ b/user/libexif/APKBUILD
@@ -1,7 +1,7 @@
# Maintainer:
pkgname=libexif
pkgver=0.6.21
-pkgrel=3
+pkgrel=4
pkgdesc="Library to parse EXIF metadata"
url="https://sourceforge.net/projects/libexif"
arch="all"
@@ -10,14 +10,19 @@ subpackages="$pkgname-dev $pkgname-doc $pkgname-lang"
depends=""
makedepends=""
source="https://downloads.sourceforge.net/$pkgname/$pkgname-$pkgver.tar.bz2
+ CVE-2016-6328.patch
CVE-2017-7544.patch
CVE-2018-20030.patch
+ CVE-2019-9278.patch
"
# secfixes:
# 0.6.21-r3:
# - CVE-2017-7544
# - CVE-2018-20030
+# 0.6.21-r4:
+# - CVE-2016-6328
+# - CVE-2019-9278
prepare() {
default_prepare
@@ -41,5 +46,7 @@ package() {
}
sha512sums="4e0fe2abe85d1c95b41cb3abe1f6333dc3a9eb69dba106a674a78d74a4d5b9c5a19647118fa1cc2d72b98a29853394f1519eda9e2889eb28d3be26b21c7cfc35 libexif-0.6.21.tar.bz2
+c0d4c74207993efc373615ef2c797d720162a2ee6fd7ad026edf2ced4198d9b1165b88790c2af3194f6bb7c2de88d4672c041c2cff8a82c8914700633332b8c5 CVE-2016-6328.patch
d529c6c5bd26dc21c0946702574184e1f61c2bfd4fb95b41e314f486a0dd55571963ff2cad566d2fb0804de3c0799bcd956c15a3dc10a520ce207728edad4e2d CVE-2017-7544.patch
-0d6123bd275ace338ad9cebb31a2e714de0141b91860f07394b281686a5393566c3f4159679d4ba689ae7ea69ae2e412b158c3deb451c40c210b5817f6888bbc CVE-2018-20030.patch"
+0d6123bd275ace338ad9cebb31a2e714de0141b91860f07394b281686a5393566c3f4159679d4ba689ae7ea69ae2e412b158c3deb451c40c210b5817f6888bbc CVE-2018-20030.patch
+c30c03fefea94d175b94c9f0c4d60cbb3aa0ad78b0d29008975fbbb15c17f2907a16fd50970e5fa18d533d0ce291a5ee9b62934210cb40b0f463693460607738 CVE-2019-9278.patch"