main/tiff: security fixes. Fixes #5823

CVE-2015-8665 CVE-2015-8683 CVE-2015-8781 CVE-2015-8782 CVE-2015-8784
author: Leonardo Arena <rnalrd@alpinelinux.org> 2016-07-04 14:35:08 +0000
committer: Leonardo Arena <rnalrd@alpinelinux.org> 2016-07-04 14:36:07 +0000
commit: 7f2845dc97725af0dc4230433d9cb42a76c552db (patch)
tree: 6f3ae5c43b4765def2a8df9720fff412408ccf4b /main/tiff/APKBUILD
parent: 1d23785857140fd8affd228a88587c19baec6dd6 (diff)
download: aports-7f2845dc97725af0dc4230433d9cb42a76c552db.tar.bz2
aports-7f2845dc97725af0dc4230433d9cb42a76c552db.tar.xz
1 files changed, 18 insertions, 5 deletions
diff --git a/main/tiff/APKBUILD b/main/tiff/APKBUILD
index 001fb1fb5c..1938591794 100644
--- a/main/tiff/APKBUILD
+++ b/main/tiff/APKBUILD
@@ -2,7 +2,7 @@
 # Maintainer: Michael Mason <ms13sp@gmail.com>
 pkgname=tiff
 pkgver=4.0.6
-pkgrel=1
+pkgrel=2
 pkgdesc="Provides support for the Tag Image File Format or TIFF"
 url="http://www.libtiff.org/"
 arch="all"
@@ -11,7 +11,11 @@ depends=
 depends_dev="zlib-dev libjpeg-turbo-dev"
 makedepends="libtool autoconf automake $depends_dev"
 subpackages="$pkgname-doc $pkgname-dev $pkgname-tools"
-source="ftp://ftp.remotesensing.org/pub/libtiff/$pkgname-$pkgver.tar.gz"
+source="ftp://ftp.remotesensing.org/pub/libtiff/$pkgname-$pkgver.tar.gz
+	CVE-2015-8665.patch
+	CVE-2015-8781-8782-8783.patch
+	CVE-2015-8784.patch
+	"
 
 _builddir="$srcdir"/$pkgname-$pkgver
 
@@ -52,6 +56,15 @@ tools() {
 	mv "$pkgdir"/usr/bin "$subpkgdir"/usr/
 }
 
-md5sums="d1d2e940dea0b5ad435f21f03d96dd72  tiff-4.0.6.tar.gz"
-sha256sums="4d57a50907b510e3049a4bba0d7888930fdfc16ce49f1bf693e5b6247370d68c  tiff-4.0.6.tar.gz"
-sha512sums="2c8dbaaaab9f82a7722bfe8cb6fcfcf67472beb692f1b7dafaf322759e7016dad1bc58457c0f03db50aa5bd088fef2b37358fcbc1524e20e9e14a9620373fdf8  tiff-4.0.6.tar.gz"
+md5sums="d1d2e940dea0b5ad435f21f03d96dd72  tiff-4.0.6.tar.gz
+df8f798e758ab11e2c860c488d38d09d  CVE-2015-8665.patch
+a12f14861bfbd312617058f2a9def2f1  CVE-2015-8781-8782-8783.patch
+6d354e0113daeb5fefc1093171451e2e  CVE-2015-8784.patch"
+sha256sums="4d57a50907b510e3049a4bba0d7888930fdfc16ce49f1bf693e5b6247370d68c  tiff-4.0.6.tar.gz
+b510cbee8df5a7484a95490c39e5768359eab51a698f12bfb19d0c0c1f665940  CVE-2015-8665.patch
+1d248eeb9ebe50627b7358d80f3de6709ab423e360a3bcbbfb5fa5aa56227b25  CVE-2015-8781-8782-8783.patch
+99fb2babac2f54f8733ab4f8e6a4ba921a62a7dc9738fdc6e72aa2a68e53cb2d  CVE-2015-8784.patch"
+sha512sums="2c8dbaaaab9f82a7722bfe8cb6fcfcf67472beb692f1b7dafaf322759e7016dad1bc58457c0f03db50aa5bd088fef2b37358fcbc1524e20e9e14a9620373fdf8  tiff-4.0.6.tar.gz
+377a1b1d49dcbec2e54252e893365a76e411c0b21a42e1e77ae77fa3f93f56e1898b3261172f8d6d6156bc1275d5daab05feea34918dad3124ca0690ce7865b4  CVE-2015-8665.patch
+cb4917a4c2e1ea4bfe94e06b5972d0030ad47b4affc51e4ef6449aec0933dcadd0ac85386812db52214c778912f1537111fc17a0c378d53091cb18e460db36b3  CVE-2015-8781-8782-8783.patch
+980ca57984903a909ed8fc6068066c21242f599c570f37363f5a97a13ee0e59c3075478301c7af2516c0c6ef96e7a8cd7e743e9d5ec5eedb454220c984e2b439  CVE-2015-8784.patch"
author	Leonardo Arena <rnalrd@alpinelinux.org>	2016-07-04 14:35:08 +0000
committer	Leonardo Arena <rnalrd@alpinelinux.org>	2016-07-04 14:36:07 +0000
commit	7f2845dc97725af0dc4230433d9cb42a76c552db (patch)
tree	6f3ae5c43b4765def2a8df9720fff412408ccf4b /main/tiff/APKBUILD
parent	1d23785857140fd8affd228a88587c19baec6dd6 (diff)
download	aports-7f2845dc97725af0dc4230433d9cb42a76c552db.tar.bz2 aports-7f2845dc97725af0dc4230433d9cb42a76c552db.tar.xz