main/openjpeg: security fixes

- CVE-2017-14040 - CVE-2017-14041 - CVE-2017-14151 - CVE-2017-14152 - CVE-2017-14164 Fixes partially #7825. Not yet fixed CVE-2017-14039 since patch is not available for 2.2.0
author: Francesco Colista <fcolista@alpinelinux.org> 2017-09-21 08:18:29 +0000
committer: Francesco Colista <fcolista@alpinelinux.org> 2017-09-21 08:18:29 +0000
commit: 9513e587b007defbb6ef3590945ff49cbd73a270 (patch)
tree: f59e4e8fc09d834b5cf11006eab3fc6d7c8df40f /main/openjpeg/APKBUILD
parent: 31f54779460bab8576eb569250b8543dca14ba6f (diff)
download: aports-9513e587b007defbb6ef3590945ff49cbd73a270.tar.bz2
aports-9513e587b007defbb6ef3590945ff49cbd73a270.tar.xz
1 files changed, 20 insertions, 3 deletions
diff --git a/main/openjpeg/APKBUILD b/main/openjpeg/APKBUILD
index bc3a38e750..970f81666b 100644
--- a/main/openjpeg/APKBUILD
+++ b/main/openjpeg/APKBUILD
@@ -2,7 +2,7 @@
 # Maintainer: Francesco Colista <fcolista@alpinelinux.org>
 pkgname=openjpeg
 pkgver=2.2.0
-pkgrel=1
+pkgrel=2
 pkgdesc="Open-source implementation of JPEG2000 image codec"
 url="http://www.openjpeg.org/"
 arch="all"
@@ -13,7 +13,13 @@ makedepends="$depends_dev libpng-dev tiff-dev lcms-dev doxygen cmake"
 install=""
 subpackages="$pkgname-dev $pkgname-tools"
 source="$pkgname-$pkgver.tar.gz::https://github.com/uclouvain/openjpeg/archive/v$pkgver.tar.gz
-	CVE-2017-12982.patch"
+	CVE-2017-12982.patch
+	CVE-2017-14040.patch
+	CVE-2017-14041.patch
+	CVE-2017-14151.patch
+	CVE-2017-14152.patch
+	CVE-2017-14164.patch"
+
 builddir="${srcdir}/$pkgname-$pkgver"
 
 build() {
@@ -28,6 +34,12 @@ build() {
 }
 
 # secfixes:
+#   2.2.0-r2:
+#     - CVE-2017-14040
+#     - CVE-2017-14041
+#     - CVE-2017-14151
+#     - CVE-2017-14152
+#     - CVE-2017-14164
 #   2.2.0-r1:
 #     - CVE-2017-12982
 #   2.1.2-r1:
@@ -46,4 +58,9 @@ tools() {
 }
 
 sha512sums="20651c380bee582ab1950994c424cc00061ad852e9c5438fb32a9809e3f275571a4cc7e92589add0d91debf2394262e58f441c2dd918809fc1c602ed68396a3a  openjpeg-2.2.0.tar.gz
-0e0ce7bdf53c4b6f1b2e9e5f855186763a1bea39b70bdc1fd5b60a5516036a04562cb43030e9946972009e3733d0efadb8ba4825939e32ba6b9419d6428ee9ad  CVE-2017-12982.patch"
+0e0ce7bdf53c4b6f1b2e9e5f855186763a1bea39b70bdc1fd5b60a5516036a04562cb43030e9946972009e3733d0efadb8ba4825939e32ba6b9419d6428ee9ad  CVE-2017-12982.patch
+532c268346ad6993d7085652fbebe65ec0412a8d12771b86c325ef9f1cb6e0f7252ac95dfb976fa00ecfffd7b140ddc74b2964b04764e0803fb7e8c344a2b58a  CVE-2017-14040.patch
+d22735e20c7b08bb292bfda03a659481466a152294c388854aed3623ff769aed6c6491a8e6286b4dfdc8212a465b1596232e51fe8e8ba3a608ebf27b32d33d56  CVE-2017-14041.patch
+66019c7a30a6b6303992d518b8184e57b58824f8b63bc8857436aa404257bf1f1d64ab6100a5f0ed18fa1b41c09501e77230207ca028bc16db35fc2d834a6506  CVE-2017-14151.patch
+c244e0e4db1473583ffac6b31808b70bd3554e6eba7b357891aca7f8ad0ab687d433aac3d3f210349507cc54981b0171eb9a72e4a890925beaa2c9d9ee877dfd  CVE-2017-14152.patch
+640cd731f5ee3a5fecbc8ca7c78d626c383155dbefe3a240319bcea81b5bc9996e028055ff64df192b5ed02e3a9e18b681b2ab4f106c3d555b68c93115dc6d01  CVE-2017-14164.patch"
author	Francesco Colista <fcolista@alpinelinux.org>	2017-09-21 08:18:29 +0000
committer	Francesco Colista <fcolista@alpinelinux.org>	2017-09-21 08:18:29 +0000
commit	9513e587b007defbb6ef3590945ff49cbd73a270 (patch)
tree	f59e4e8fc09d834b5cf11006eab3fc6d7c8df40f /main/openjpeg/APKBUILD
parent	31f54779460bab8576eb569250b8543dca14ba6f (diff)
download	aports-9513e587b007defbb6ef3590945ff49cbd73a270.tar.bz2 aports-9513e587b007defbb6ef3590945ff49cbd73a270.tar.xz