# Maintainer: A. Wilcox <awilfox@adelielinux.org> pkgname=exiv2 pkgver=0.27.2 pkgrel=2 pkgdesc="Exif, IPTC and XMP metadata library and tools" url="https://www.exiv2.org/" arch="all" license="GPL-2.0+" depends="" depends_dev="expat-dev zlib-dev" checkdepends="python3 libxml2 cmd:which" makedepends="$depends_dev bash cmake" subpackages="$pkgname-dev $pkgname-doc" source="http://www.exiv2.org/builds/exiv2-$pkgver-Source.tar.gz https://dev.sick.bike/dist/exiv2-$pkgver-POC-file_issue_1019 https://dev.sick.bike/dist/exiv2-$pkgver-Jp2Image_readMetadata_loop.poc CVE-2019-17402.patch CVE-2019-20421.patch " builddir="$srcdir/$pkgname-$pkgver-Source" # secfixes: # 0.26-r2: # - CVE-2018-19535 # 0.27.1-r0: # - CVE-2017-9239 # - CVE-2017-9953 # - CVE-2017-11336 # - CVE-2017-11337 # - CVE-2017-11338 # - CVE-2017-11339 # - CVE-2017-11340 # - CVE-2017-11553 # - CVE-2017-11591 # - CVE-2017-11592 # - CVE-2017-11683 # - CVE-2017-12955 # - CVE-2017-12956 # - CVE-2017-12957 # - CVE-2017-14857 # - CVE-2017-14858 # - CVE-2017-14859 # - CVE-2017-14860 # - CVE-2017-14861 # - CVE-2017-14862 # - CVE-2017-14863 # - CVE-2017-14864 # - CVE-2017-14865 # - CVE-2017-14866 # - CVE-2017-17669 # - CVE-2017-17722 # - CVE-2017-17723 # - CVE-2017-17724 # - CVE-2017-17725 # - CVE-2017-18005 # - CVE-2017-1000126 # - CVE-2017-1000127 # - CVE-2017-1000128 # - CVE-2018-4868 # - CVE-2018-5772 # - CVE-2018-8976 # - CVE-2018-8977 # - CVE-2018-9145 # - CVE-2018-10772 # - CVE-2018-10780 # - CVE-2018-10958 # - CVE-2018-10998 # - CVE-2018-10999 # - CVE-2018-11037 # - CVE-2018-11531 # - CVE-2018-12264 # - CVE-2018-12265 # - CVE-2018-14046 # - CVE-2018-14338 # - CVE-2018-16336 # - CVE-2018-17229 # - CVE-2018-17230 # - CVE-2018-17282 # - CVE-2018-17581 # - CVE-2018-19107 # - CVE-2018-19108 # 0.27.2-r0: # - CVE-2019-13108 # - CVE-2019-13109 # - CVE-2019-13110 # - CVE-2019-13111 # - CVE-2019-13112 # - CVE-2019-13113 # - CVE-2019-13114 # 0.27.2-r1: # - CVE-2019-17402 # 0.27.2-r2: # - CVE-2019-20421 prepare() { default_prepare # Remove #1019 POC after >= 0.27.2 mv "$srcdir/$pkgname-$pkgver-POC-file_issue_1019" \ test/data/POC-file_issue_1019 # Ditto mv "$srcdir/$pkgname-$pkgver-Jp2Image_readMetadata_loop.poc" \ test/data/Jp2Image_readMetadata_loop.poc } build() { cmake -DCMAKE_INSTALL_PREFIX=/usr \ -DCMAKE_INSTALL_LIBDIR=/usr/lib \ -DCMAKE_BUILD_TYPE=RelWithDebInfo -Bbuild make -C build } check() { make -C build tests } package() { make DESTDIR="$pkgdir" -C build install } sha512sums="39eb7d920dce18b275ac66f4766c7c73f7c72ee10e3e1e43d84c611b24f48ce20a70eac6d53948914e93242a25b8b52cc4bc760ee611ddcd77481306c1f9e721 exiv2-0.27.2-Source.tar.gz cfe0b534c29c37e7b6e5a00e8ec320cb57eb17187813fe30677a097e930655f1b097ce77806e0124affbdc423b48d9910560158eed9d2d03418a824244dafba9 exiv2-0.27.2-POC-file_issue_1019 d2c0f59e9e2daf00066b0ad73253bb7bb09b3319606813f16478ef5717751e4cbb93d12f5c9339dae2965dcf6a63138bdb4205b698aeab57a75f97ddf458d4f7 exiv2-0.27.2-Jp2Image_readMetadata_loop.poc 623232624f5382c7261a8b7e66063954c37555b7812e4f2e9af8433c4d8a1f141feafbfd2c5081395208cf1c65307ce1b39e5e34f689c558dce82f78030b29dd CVE-2019-17402.patch c819f06a194b8465c66ccd91b8373cb2a359e59bab7583a8abb873c2001efe6188ac8fa4717c6382d2f2396d25e79e7b397c5ebf000d35c4a7dae547db7bc77b CVE-2019-20421.patch"