From 608f65b2f3cd384b624bf0e614b25d3ade8f1b3b Mon Sep 17 00:00:00 2001 From: Leonardo Arena Date: Tue, 8 Jan 2019 11:19:04 +0000 Subject: main/cairo: security fix (CVE-2018-19876) Fixes #9748 --- main/cairo/APKBUILD | 10 ++++++++-- 1 file changed, 8 insertions(+), 2 deletions(-) (limited to 'main/cairo/APKBUILD') diff --git a/main/cairo/APKBUILD b/main/cairo/APKBUILD index 5c789131cb..a081d8f580 100644 --- a/main/cairo/APKBUILD +++ b/main/cairo/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Natanael Copa pkgname=cairo pkgver=1.16.0 -pkgrel=0 +pkgrel=1 pkgdesc="A vector graphics library" url="https://cairographics.org/" arch="all" @@ -14,9 +14,14 @@ makedepends="$depends_dev zlib-dev expat-dev glib-dev libpng-dev autoconf automa subpackages="$pkgname-dev $pkgname-doc $pkgname-gobject $pkgname-tools $pkgname-dbg" source="https://cairographics.org/releases/cairo-$pkgver.tar.xz musl-stacksize.patch + CVE-2018-19876.patch " builddir="$srcdir/$pkgname-$pkgver" +# secfixes: +# 1.16.0-r1: +# - CVE-2018-19876 + build() { cd "$builddir" ./configure \ @@ -62,4 +67,5 @@ tools() { } sha512sums="9eb27c4cf01c0b8b56f2e15e651f6d4e52c99d0005875546405b64f1132aed12fbf84727273f493d84056a13105e065009d89e94a8bfaf2be2649e232b82377f cairo-1.16.0.tar.xz -86f26fe41deb5e14f553c999090d1ec1d92a534fa7984112c9a7f1d6c6a8f1b7bb735947e8ec3f26e817f56410efe8cc46c5e682f6a278d49b40a683513740e0 musl-stacksize.patch" +86f26fe41deb5e14f553c999090d1ec1d92a534fa7984112c9a7f1d6c6a8f1b7bb735947e8ec3f26e817f56410efe8cc46c5e682f6a278d49b40a683513740e0 musl-stacksize.patch +8f13cdcae0f134e04778cf5915f858fb8d5357a7e0a454791c93d1566935b985ec66dfe1683cd0b74a1cb44a130923d7a27cf006f3fc70b9bee93abd58a55aa3 CVE-2018-19876.patch" -- cgit v1.2.3