Commit 32295035 authored by Leonardo Arena's avatar Leonardo Arena

main/gd: security upgrade to 2.2.4 - fixes #7201

CVE-2016-6906, CVE-2016-9317, CVE-2016-6912, CVE-2016-10166, CVE-2016-10167, CVE-2016-10168
parent abd894aa
# Contributor: Carlo Landmeter <clandmeter@gmail.com>
# Maintainer: Carlo Landmeter <clandmeter@gmail.com>
pkgname=gd
pkgver=2.2.3
pkgver=2.2.4
_myver=${pkgver/_rc/RC}
pkgrel=1
pkgrel=0
pkgdesc="Library for the dynamic creation of images by programmers"
url="http://www.libgd.org/"
arch="all"
......@@ -29,6 +29,13 @@ source="https://github.com/libgd/libgd/releases/download/gd-$pkgver/libgd-$pkgve
# - CVE-2016-6214
# 2.2.3-r1:
# - CVE-2016-7568
# 2.2.4-r0:
# - CVE-2016-6906
# - CVE-2016-9317
# - CVE-2016-6912
# - CVE-2016-10166
# - CVE-2016-10167
# - CVE-2016-10168
builddir="$srcdir"/lib$pkgname-$_myver
......@@ -58,9 +65,9 @@ package() {
rm -r "$pkgdir"/usr/lib/libgd.la
}
md5sums="14e4134c129b4c166c3a0549a32ef340 libgd-2.2.3.tar.xz
md5sums="a244855a323a3ea1975d708eb1e12b7a libgd-2.2.4.tar.xz
fca9871b791d6ac88af7d6d5ce8c59d1 CVE-2016-7568.patch"
sha256sums="746b6cbd6769a22ff3ba6f5756f3512a769bd4cdf4695dff17f4867f25fa7d3c libgd-2.2.3.tar.xz
sha256sums="137f13a7eb93ce72e32ccd7cebdab6874f8cf7ddf31d3a455a68e016ecd9e4e6 libgd-2.2.4.tar.xz
0b7b7ddfc5200220763efb47cc6b56a6275fd5af70e85a8c91c667344f664012 CVE-2016-7568.patch"
sha512sums="bdc6d086bc054beda6574ec46baa4cd94048a5f2f357f875ba05983e92d247f1b731434b9e438c6aef09d46fa96f1a7e1f330a25a77ffd2dd78aa8a32d652557 libgd-2.2.3.tar.xz
sha512sums="07903f322c4f6ab392508b0f60c38ca133699111ea92995dc6cd9379210d598bcb24a46c19657884d9e252f8663d0ee8c89c600e3a382a5ae598198c190f39b5 libgd-2.2.4.tar.xz
8310d11a2398e8617c9defc4500b9ce3897ac1026002ffa36000f1d1f8df19336005e8c1f6587533f1d787a4a54d7a3a28ad25bddbc966a018aedf4d8704a716 CVE-2016-7568.patch"
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment