From e75858307e07c46124b8f604df3a02f0f2c88dbf Mon Sep 17 00:00:00 2001 From: Natanael Copa Date: Fri, 21 Oct 2016 13:08:24 +0000 Subject: main/gd: security fix for CVE-2016-7568 fixes #6342 --- main/gd/APKBUILD | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) (limited to 'main/gd/APKBUILD') diff --git a/main/gd/APKBUILD b/main/gd/APKBUILD index fefd6de3ce..978e2ad50c 100644 --- a/main/gd/APKBUILD +++ b/main/gd/APKBUILD @@ -3,7 +3,7 @@ pkgname=gd pkgver=2.2.3 _myver=${pkgver/_rc/RC} -pkgrel=0 +pkgrel=1 pkgdesc="Library for the dynamic creation of images by programmers" url="http://libgd.github.io/" arch="all" @@ -11,7 +11,9 @@ license="custom" depends= makedepends="libpng-dev libjpeg-turbo-dev freetype-dev zlib-dev" subpackages="$pkgname-dev" -source="https://github.com/libgd/libgd/releases/download/gd-$pkgver/libgd-$pkgver.tar.xz" +source="https://github.com/libgd/libgd/releases/download/gd-$pkgver/libgd-$pkgver.tar.xz + CVE-2016-7568.patch + " builddir="$srcdir"/lib$pkgname-$_myver @@ -39,6 +41,9 @@ package() { make DESTDIR="$pkgdir" install || return 1 } -md5sums="14e4134c129b4c166c3a0549a32ef340 libgd-2.2.3.tar.xz" -sha256sums="746b6cbd6769a22ff3ba6f5756f3512a769bd4cdf4695dff17f4867f25fa7d3c libgd-2.2.3.tar.xz" -sha512sums="bdc6d086bc054beda6574ec46baa4cd94048a5f2f357f875ba05983e92d247f1b731434b9e438c6aef09d46fa96f1a7e1f330a25a77ffd2dd78aa8a32d652557 libgd-2.2.3.tar.xz" +md5sums="14e4134c129b4c166c3a0549a32ef340 libgd-2.2.3.tar.xz +fca9871b791d6ac88af7d6d5ce8c59d1 CVE-2016-7568.patch" +sha256sums="746b6cbd6769a22ff3ba6f5756f3512a769bd4cdf4695dff17f4867f25fa7d3c libgd-2.2.3.tar.xz +0b7b7ddfc5200220763efb47cc6b56a6275fd5af70e85a8c91c667344f664012 CVE-2016-7568.patch" +sha512sums="bdc6d086bc054beda6574ec46baa4cd94048a5f2f357f875ba05983e92d247f1b731434b9e438c6aef09d46fa96f1a7e1f330a25a77ffd2dd78aa8a32d652557 libgd-2.2.3.tar.xz +8310d11a2398e8617c9defc4500b9ce3897ac1026002ffa36000f1d1f8df19336005e8c1f6587533f1d787a4a54d7a3a28ad25bddbc966a018aedf4d8704a716 CVE-2016-7568.patch" -- cgit v1.2.3