summaryrefslogtreecommitdiff
path: root/var/spack/repos/builtin/packages/libpng/package.py
diff options
context:
space:
mode:
Diffstat (limited to 'var/spack/repos/builtin/packages/libpng/package.py')
-rw-r--r--var/spack/repos/builtin/packages/libpng/package.py34
1 files changed, 20 insertions, 14 deletions
diff --git a/var/spack/repos/builtin/packages/libpng/package.py b/var/spack/repos/builtin/packages/libpng/package.py
index 951b91eabd..46bbcebb89 100644
--- a/var/spack/repos/builtin/packages/libpng/package.py
+++ b/var/spack/repos/builtin/packages/libpng/package.py
@@ -24,21 +24,27 @@
##############################################################################
from spack import *
-class Libpng(Package):
- """libpng graphics file format"""
+
+class Libpng(AutotoolsPackage):
+ """libpng is the official PNG reference library."""
+
homepage = "http://www.libpng.org/pub/png/libpng.html"
- url = "http://download.sourceforge.net/libpng/libpng-1.6.16.tar.gz"
+ url = "http://download.sourceforge.net/libpng/libpng-1.6.27.tar.gz"
- version('1.6.16', '1a4ad377919ab15b54f6cb6a3ae2622d')
- version('1.6.15', '829a256f3de9307731d4f52dc071916d')
- version('1.6.14', '2101b3de1d5f348925990f9aa8405660')
- version('1.5.26', '3ca98347a5541a2dad55cd6d07ee60a9')
- version('1.4.19', '89bcbc4fc8b31f4a403906cf4f662330')
- version('1.2.56', '9508fc59d10a1ffadd9aae35116c19ee')
+ version('1.6.27', '58698519e9f6126c1caeefc28dbcbd5f')
+ # From http://www.libpng.org/pub/png/libpng.html (2017-01-04)
+ # Virtually all libpng versions through 1.6.26, 1.5.27,
+ # 1.4.19, 1.2.56, and 1.0.66, respectively, have a
+ # null-pointer-dereference bug in png_set_text_2() when an
+ # image-editing application adds, removes, and re-adds text
+ # chunks to a PNG image. (This bug does not affect pure
+ # viewers, nor are there any known editors that could trigger
+ # it without interactive user input. It has been assigned ID
+ # CVE-2016-10087.) The vulnerability is fixed in versions
+ # 1.6.27, 1.5.28, 1.4.20, 1.2.57, and 1.0.67, released on 29
+ # December 2016.
- depends_on('zlib')
+ # Required for qt@3
+ version('1.2.57', 'dfcda3603e29dcc11870c48f838ef75b')
- def install(self, spec, prefix):
- configure("--prefix=%s" % prefix)
- make()
- make("install")
+ depends_on('zlib@1.0.4:') # 1.2.5 or later recommended
generated by cgit v1.2.3-60-g2f50 (git 2.42.0) at 2024-06-30 22:16:01 +0000