From c13758613f3110e14c2e9eda818406f235d996c1 Mon Sep 17 00:00:00 2001
From: Andy Postnikov <apostnikov@gmail.com>
Date: Tue, 4 Sep 2018 14:08:39 +0300
Subject: main/ghostscript: security upgrade to 9.24

CVE-2018-15908, CVE-2018-15909, CVE-2018-15910, CVE-2018-15911
CVE-2018-10194

fixes #9382
---
 main/ghostscript/APKBUILD | 21 ++++++++++-----------
 1 file changed, 10 insertions(+), 11 deletions(-)

diff --git a/main/ghostscript/APKBUILD b/main/ghostscript/APKBUILD
index 6053bf4d59..67ff59234c 100644
--- a/main/ghostscript/APKBUILD
+++ b/main/ghostscript/APKBUILD
@@ -1,7 +1,7 @@
 # Contributor: Cameron Banta <cbanta@gmail.com>
 # Maintainer: Cameron Banta <cbanta@gmail.com>
 pkgname=ghostscript
-pkgver=9.22
+pkgver=9.24
 pkgrel=0
 pkgdesc="An interpreter for the PostScript language and for PDF"
 url="https://ghostscript.com/"
@@ -18,6 +18,13 @@ source="https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/
 builddir="$srcdir/$pkgname-$pkgver"
 
 # secfixes:
+#   9.24-r0:
+#     - CVE-2018-15908
+#     - CVE-2018-15909
+#     - CVE-2018-15910
+#     - CVE-2018-15911
+#   9.23-r0:
+#     - CVE-2018-10194
 #   9.21-r2:
 #     - CVE-2017-8291
 #   9.21-r3:
@@ -30,7 +37,7 @@ prepare() {
 	default_prepare || return 1  # apply patches
 
 	# force it to use system-libs
-	rm -r jpeg libpng zlib tiff lcms2 cups/libs jbig2dec \
+	rm -r jpeg libpng zlib tiff lcms2mt cups/libs jbig2dec \
 		freetype || return 1
 
 	# fix parallel builds
@@ -96,14 +103,6 @@ package() {
 		"$pkgdir/usr/share/licenses/$pkgname/LICENSE"
 	install -m644 -D "$srcdir/$pkgname-$pkgver/doc/COPYING" \
 		"$pkgdir/usr/share/licenses/$pkgname/COPYING"
-
-	# make the doc and examples more alpine like
-	#	(the --docdir above doesn't seem to work so good)
-	mkdir -p "$pkgdir/usr/share/doc/$pkgname"
-	mv "$pkgdir/usr/share/$pkgname/$pkgver/doc" \
-		"$pkgdir/usr/share/doc/$pkgname" || return 1
-	mv "$pkgdir/usr/share/$pkgname/$pkgver/examples" \
-		"$pkgdir/usr/share/doc/$pkgname" || return 1
 }
 
 gtk() {
@@ -113,6 +112,6 @@ gtk() {
 	mv "$pkgdir"/usr/bin/gsx "$subpkgdir"/usr/bin/
 }
 
-sha512sums="599ba003e168d302e327ea7c2b83a4247059a1b7222452cbea4966dac448a79e8d7f07a1f287fa0c14cfa5269bb623382ed02fb3ea3a0e526dae08aaa1cd8b89  ghostscript-9.22.tar.gz
+sha512sums="a85050c9604d7671d58e2415682482fb60852cb4de746cd07ee5a51585507f73f3ae61d6b52764230e333fb45d6a31666bf3cbad77215d997b6a5c3c64cf71cd  ghostscript-9.24.tar.gz
 70721e3a335afa5e21d4e6cf919119010bd4544a03ab8f53f5325c173902221ad9b88c118b4bfeee80b3e1956bcdbaf4c53f64ae7fb81f5ba57dbc956750c482  ghostscript-system-zlib.patch
 beefcf395f7f828e1b81c088022c08a506e218f27535b9de01e0f0edf7979b435316c318fa676771630f6ad16ff1ab059cd68aa128ed97e5a9f2f3fa840200c4  fix-sprintf.patch"
-- 
cgit v1.2.3