summaryrefslogtreecommitdiff
path: root/user/wavpack/APKBUILD
diff options
context:
space:
mode:
authorKiyoshi Aman <kiyoshi.aman+apkfission@gmail.com>2018-12-06 08:27:52 -0600
committerKiyoshi Aman <kiyoshi.aman+apkfission@gmail.com>2018-12-06 10:35:16 -0600
commita9690f97d468433e5f61cf79f8ba94062aca94db (patch)
treecc005ff7df91f4abcef195b2e813df1cb70d4daf /user/wavpack/APKBUILD
parent20f6886b2f4338a78ea1409a8497982c9024509a (diff)
downloadpackages-a9690f97d468433e5f61cf79f8ba94062aca94db.tar.gz
packages-a9690f97d468433e5f61cf79f8ba94062aca94db.tar.bz2
packages-a9690f97d468433e5f61cf79f8ba94062aca94db.tar.xz
packages-a9690f97d468433e5f61cf79f8ba94062aca94db.zip
user/wavpack: patches for CVEs 2018-19840 & -19841
Diffstat (limited to 'user/wavpack/APKBUILD')
-rw-r--r--user/wavpack/APKBUILD14
1 files changed, 11 insertions, 3 deletions
diff --git a/user/wavpack/APKBUILD b/user/wavpack/APKBUILD
index a98666d6e..e59ef255e 100644
--- a/user/wavpack/APKBUILD
+++ b/user/wavpack/APKBUILD
@@ -3,7 +3,7 @@
# Maintainer:
pkgname=wavpack
pkgver=5.1.0
-pkgrel=3
+pkgrel=4
pkgdesc="Audio compression format with lossless, lossy, and hybrid compression modes"
url="http://www.wavpack.com/"
arch="all"
@@ -12,9 +12,15 @@ license="BSD-3-Clause"
depends=""
makedepends=""
subpackages="$pkgname-dev $pkgname-doc"
-source="http://www.wavpack.com/$pkgname-$pkgver.tar.bz2"
+source="http://www.wavpack.com/$pkgname-$pkgver.tar.bz2
+ cve2018-19840.patch
+ cve2018-19841.patch
+ "
# secfixes:
+# 5.1.0-r4:
+# - CVE-2018-19840
+# - CVE-2018-19840
# 5.1.0-r0:
# - CVE-2016-10169
# - CVE-2016-10170
@@ -46,4 +52,6 @@ package() {
make DESTDIR="$pkgdir" install
}
-sha512sums="4c31616ae63c3a875afa20f26ce935f7a8f9921e2892b4b8388eca3ccd83b2d686f43eed8b9ec1dead934a1148401b9dced3b05f509b7942c48d7af31cf80a54 wavpack-5.1.0.tar.bz2"
+sha512sums="4c31616ae63c3a875afa20f26ce935f7a8f9921e2892b4b8388eca3ccd83b2d686f43eed8b9ec1dead934a1148401b9dced3b05f509b7942c48d7af31cf80a54 wavpack-5.1.0.tar.bz2
+67d02dd744c638d126cf5a894d1ff2c39726bd4d3771ef7410ea782e5c9a0f9341909432bd4bea9b8959891c38699601c1aac2da6e0eaddaa5a4d679e7f58dd2 cve2018-19840.patch
+dba007fa8cb2537b6f6c8ee559a98e501e948260ce7e7af7d3fdc8c9145bbbbf85c8fed8030de354459c4b08d3015a0ea769a948636bdfd66e567c0a2d2493c6 cve2018-19841.patch"