Commit 1effb875 authored by Andy Postnikov's avatar Andy Postnikov Committed by Natanael Copa
Browse files

main/ghostscript: security upgrade to 9.26

- CVE-2018-19409
- CVE-2018-19475
- CVE-2018-19476
- CVE-2018-19477

fixes #9693
parent 26eef1d2
# Contributor: Cameron Banta <cbanta@gmail.com>
# Maintainer: Cameron Banta <cbanta@gmail.com>
pkgname=ghostscript
pkgver=9.25
pkgrel=1
pkgver=9.26
pkgrel=0
pkgdesc="An interpreter for the PostScript language and for PDF"
url="http://ghostscript.com/"
arch="all"
......@@ -14,11 +14,15 @@ subpackages="$pkgname-doc $pkgname-dev $pkgname-gtk"
source="https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs${pkgver/./}/ghostscript-$pkgver.tar.gz
ghostscript-system-zlib.patch
fix-sprintf.patch
ghostscript-9.25-security_fixes-2.patch
"
builddir="$srcdir/$pkgname-$pkgver"
# secfixes:
# 9.26-r0:
# - CVE-2018-19409
# - CVE-2018-19475
# - CVE-2018-19476
# - CVE-2018-19477
# 9.25-r1:
# - CVE-2018-17961
# - CVE-2018-18073
......@@ -118,13 +122,12 @@ gtk() {
mv "$pkgdir"/usr/bin/gsx "$subpkgdir"/usr/bin/
}
md5sums="eebd0fadbfa8e800094422ce65e94d5d ghostscript-9.25.tar.gz
md5sums="806bc2dedbc7f69b003f536658e08d4a ghostscript-9.26.tar.gz
ae582371ec56fd8f73349773f23dcc94 ghostscript-system-zlib.patch
ee7da55d7a714db1de0fa78253cdacf3 fix-sprintf.patch"
sha256sums="baafa64740b090bff50b220a6df3be95c46069b7e30f4b4effed28316e5b2389 ghostscript-9.25.tar.gz
sha256sums="831fc019bd477f7cc2d481dc5395ebfa4a593a95eb2fe1eb231a97e450d7540d ghostscript-9.26.tar.gz
56662fae7956e741059ef9c2b5a7e883ab04d78acf5dae4fddf4a661f47f8b67 ghostscript-system-zlib.patch
6e01bd26ade307414f86a5d8f00c97719830d8afd49ffe84224ae47498de7a54 fix-sprintf.patch"
sha512sums="6710bf00e6246bf07173d4012c7742dd2315b6888b883d63372c0dc2fef76e8be5672f10e4c529244ba153f4ae8ab713403209365a3f7a76c469d69d797761b1 ghostscript-9.25.tar.gz
sha512sums="670159c23618ffafa85c671642bf182a107a82c053a1fd8c3f45f73f203524077be1b212d2ddbabae7892c7713922877e03b020f78bd2aab1ae582c4fc7d820a ghostscript-9.26.tar.gz
70721e3a335afa5e21d4e6cf919119010bd4544a03ab8f53f5325c173902221ad9b88c118b4bfeee80b3e1956bcdbaf4c53f64ae7fb81f5ba57dbc956750c482 ghostscript-system-zlib.patch
beefcf395f7f828e1b81c088022c08a506e218f27535b9de01e0f0edf7979b435316c318fa676771630f6ad16ff1ab059cd68aa128ed97e5a9f2f3fa840200c4 fix-sprintf.patch
f3d225a913780364df04588ba08afb9a9547082a801ad23ff3429e117c6c9f511c4c0f35c464710c7d503fa8b80c3a2cbc77bf50bf0c2e846db2a6ec15f77e2e ghostscript-9.25-security_fixes-2.patch"
beefcf395f7f828e1b81c088022c08a506e218f27535b9de01e0f0edf7979b435316c318fa676771630f6ad16ff1ab059cd68aa128ed97e5a9f2f3fa840200c4 fix-sprintf.patch"
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment