summaryrefslogtreecommitdiff
path: root/user/exiv2/APKBUILD
blob: f1ca3f81f97024c3cb687e173ea952a95b9608ef (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
# Maintainer: A. Wilcox <awilfox@adelielinux.org>
pkgname=exiv2
pkgver=0.27.2
pkgrel=1
pkgdesc="Exif, IPTC and XMP metadata library and tools"
url="https://www.exiv2.org/"
arch="all"
license="GPL-2.0+"
depends=""
depends_dev="expat-dev zlib-dev"
checkdepends="python3 libxml2 cmd:which"
makedepends="$depends_dev bash cmake"
subpackages="$pkgname-dev $pkgname-doc"
source="http://www.exiv2.org/builds/exiv2-$pkgver-Source.tar.gz
	https://dev.sick.bike/dist/exiv2-0.27.2-POC-file_issue_1019
	CVE-2019-17402.patch"
builddir="$srcdir/$pkgname-$pkgver-Source"

# secfixes:
#   0.26-r2:
#     - CVE-2018-19535
#   0.27.1-r0:
#     - CVE-2017-9239
#     - CVE-2017-9953
#     - CVE-2017-11336
#     - CVE-2017-11337
#     - CVE-2017-11338
#     - CVE-2017-11339
#     - CVE-2017-11340
#     - CVE-2017-11553
#     - CVE-2017-11591
#     - CVE-2017-11592
#     - CVE-2017-11683
#     - CVE-2017-12955
#     - CVE-2017-12956
#     - CVE-2017-12957
#     - CVE-2017-14857
#     - CVE-2017-14858
#     - CVE-2017-14859
#     - CVE-2017-14860
#     - CVE-2017-14861
#     - CVE-2017-14862
#     - CVE-2017-14863
#     - CVE-2017-14864
#     - CVE-2017-14865
#     - CVE-2017-14866
#     - CVE-2017-17669
#     - CVE-2017-17722
#     - CVE-2017-17723
#     - CVE-2017-17724
#     - CVE-2017-17725
#     - CVE-2017-18005
#     - CVE-2017-1000126
#     - CVE-2017-1000127
#     - CVE-2017-1000128
#     - CVE-2018-4868
#     - CVE-2018-5772
#     - CVE-2018-8976
#     - CVE-2018-8977
#     - CVE-2018-9145
#     - CVE-2018-10772
#     - CVE-2018-10780
#     - CVE-2018-10958
#     - CVE-2018-10998
#     - CVE-2018-10999
#     - CVE-2018-11037
#     - CVE-2018-11531
#     - CVE-2018-12264
#     - CVE-2018-12265
#     - CVE-2018-14046
#     - CVE-2018-14338
#     - CVE-2018-16336
#     - CVE-2018-17229
#     - CVE-2018-17230
#     - CVE-2018-17282
#     - CVE-2018-17581
#     - CVE-2018-19107
#     - CVE-2018-19108
#   0.27.2-r0:
#     - CVE-2019-13108
#     - CVE-2019-13109
#     - CVE-2019-13110
#     - CVE-2019-13111
#     - CVE-2019-13112
#     - CVE-2019-13113
#     - CVE-2019-13114
#   0.27.2-r1:
#     - CVE-2019-17402

prepare() {
	default_prepare

	# Remove #1019 POC after >= 0.27.2
	mv "$srcdir/$pkgname-$pkgver-POC-file_issue_1019" \
		test/data/POC-file_issue_1019
}

build() {
	cmake -DCMAKE_INSTALL_PREFIX=/usr \
		-DCMAKE_INSTALL_LIBDIR=/usr/lib \
		-DCMAKE_BUILD_TYPE=RelWithDebInfo -Bbuild
	make -C build
}

check() {
	make -C build tests
}

package() {
	make DESTDIR="$pkgdir" -C build install
}

sha512sums="39eb7d920dce18b275ac66f4766c7c73f7c72ee10e3e1e43d84c611b24f48ce20a70eac6d53948914e93242a25b8b52cc4bc760ee611ddcd77481306c1f9e721  exiv2-0.27.2-Source.tar.gz
cfe0b534c29c37e7b6e5a00e8ec320cb57eb17187813fe30677a097e930655f1b097ce77806e0124affbdc423b48d9910560158eed9d2d03418a824244dafba9  exiv2-0.27.2-POC-file_issue_1019
623232624f5382c7261a8b7e66063954c37555b7812e4f2e9af8433c4d8a1f141feafbfd2c5081395208cf1c65307ce1b39e5e34f689c558dce82f78030b29dd  CVE-2019-17402.patch"