diff options
| author | Francesco Colista <fcolista@alpinelinux.org> | 2017-08-09 09:43:55 +0000 |
|---|---|---|
| committer | Francesco Colista <fcolista@alpinelinux.org> | 2017-08-09 09:50:29 +0000 |
| commit | 88faf291b6b6819355f20b24462febaac8936737 (patch) | |
| tree | 2951ab548c2870db4e1bc7da9da13b9fe90d69c1 /main/libsndfile/APKBUILD | |
| parent | 887eaa1f505c054fcd518a7b0121ab2a14df6d64 (diff) | |
| download | aports-88faf291b6b6819355f20b24462febaac8936737.tar.bz2 aports-88faf291b6b6819355f20b24462febaac8936737.tar.xz | |
main/libsndfile: fix for CVE-2017-12562. Fixes #7646
Diffstat (limited to 'main/libsndfile/APKBUILD')
| -rw-r--r-- | main/libsndfile/APKBUILD | 16 |
1 files changed, 14 insertions, 2 deletions
diff --git a/main/libsndfile/APKBUILD b/main/libsndfile/APKBUILD index d894549ca8..522f427a8e 100644 --- a/main/libsndfile/APKBUILD +++ b/main/libsndfile/APKBUILD @@ -2,7 +2,7 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libsndfile pkgver=1.0.28 -pkgrel=1 +pkgrel=2 pkgdesc="A C library for reading and writing files containing sampled sound" url="http://www.mega-nerd.com/libsndfile" arch="all" @@ -14,9 +14,12 @@ makedepends="linux-headers alsa-lib-dev $depends_dev" source="http://www.mega-nerd.com/$pkgname/files/$pkgname-$pkgver.tar.gz CVE-2017-8361_CVE-2017-8363_CVE-2017-8365.patch CVE-2017-8362.patch + CVE-2017-12562.patch " # secfixes: +# 1.0.28-r2: +# - CVE-2017-12562 # 1.0.28-r0: # - CVE-2017-7585 # - CVE-2017-7741 @@ -45,6 +48,15 @@ package() { cd "$_builddir" make DESTDIR="$pkgdir" install || return 1 } +md5sums="646b5f98ce89ac60cdb060fcd398247c libsndfile-1.0.28.tar.gz +cdd75dee754a3f97a2b9852193858e8b CVE-2017-8361_CVE-2017-8363_CVE-2017-8365.patch +883e150165932d7dc89aee64795a5e5e CVE-2017-8362.patch +bcee757ad4ec56f92c0c2ad5c9c9bf96 CVE-2017-12562.patch" +sha256sums="1ff33929f042fa333aed1e8923aa628c3ee9e1eb85512686c55092d1e5a9dfa9 libsndfile-1.0.28.tar.gz +c2d2665744b32facab093540bd0b0c28e72496dd03f8fd51e0aef42fb76d9631 CVE-2017-8361_CVE-2017-8363_CVE-2017-8365.patch +3dc977a26f36a779874bda304685a221a9da08d3e6b8d239f19785a31e18dbf7 CVE-2017-8362.patch +5e13e843a247c5cc3e33e926183281003512bd34dbb32acab6c9360e06e6e3c9 CVE-2017-12562.patch" sha512sums="890731a6b8173f714155ce05eaf6d991b31632c8ab207fbae860968861a107552df26fcf85602df2e7f65502c7256c1b41735e1122485a3a07ddb580aa83b57f libsndfile-1.0.28.tar.gz f98c40696fca3e7bca867df993de55bb4145c23428e65d1a669182eb2293046478ac727ae7f94bb77123ef0355c3c53be4f9d6a432665c90c74687d8d3afd9e3 CVE-2017-8361_CVE-2017-8363_CVE-2017-8365.patch -dfd4b5f1c7471fc416eed5c6040580a020543f145de9103751adaad6ce1c5c6a22abc1cf0ffd381aed3072644cd5ee03ba3598265aa7d202d63167da251cb595 CVE-2017-8362.patch" +dfd4b5f1c7471fc416eed5c6040580a020543f145de9103751adaad6ce1c5c6a22abc1cf0ffd381aed3072644cd5ee03ba3598265aa7d202d63167da251cb595 CVE-2017-8362.patch +814139567d90fb07908014e858c341fe933e04dca69b88ad66078910888237bbeba94f85d9e1489883c424f35fca312eb98c21ae2b122d9289bb6418725cd02e CVE-2017-12562.patch" |