Date: Saturday, December 10, 2016 @ 16:29:27 Author: andyrtr Revision: 283004
upgpkg: openjpeg2 2.1.2-2 CVE-2016-9580 + CVE-2016-9581; FS#52104 Modified: openjpeg2/trunk/PKGBUILD ----------+ PKGBUILD | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) Modified: PKGBUILD =================================================================== --- PKGBUILD 2016-12-10 15:15:47 UTC (rev 283003) +++ PKGBUILD 2016-12-10 16:29:27 UTC (rev 283004) @@ -4,7 +4,7 @@ pkgname=openjpeg2 pkgver=2.1.2 -pkgrel=1 +pkgrel=2 pkgdesc="An open source JPEG 2000 codec, version ${pkgver}" arch=(i686 x86_64) license=('custom: BSD') @@ -12,8 +12,10 @@ makedepends=('cmake' 'doxygen') #'fcgi' 'xerces2-java') depends=('zlib' 'libpng' 'libtiff' 'lcms2') -source=("$pkgname-$pkgver.tar.gz::https://github.com/uclouvain/openjpeg/archive/v$pkgver.tar.gz") -md5sums=('40a7bfdcc66280b3c1402a0eb1a27624') +source=("$pkgname-$pkgver.tar.gz::https://github.com/uclouvain/openjpeg/archive/v$pkgver.tar.gz" + repair_bugs_of_871_and_872.patch::https://github.com/szukw000/openjpeg/commit/cadff5fb.patch) +sha256sums=('4ce77b6ef538ef090d9bde1d5eeff8b3069ab56c4906f083475517c2c023dfa7' + 'e352e9480925a31804d965c673545eeaa32d0a47605abaaa09b515ca956058ba') prepare() { cd ${srcdir} @@ -20,6 +22,9 @@ mkdir build # Install doxygen docs to the right directory sed -i -e "s:DESTINATION\ share/doc:DESTINATION\ share/doc/${pkgname}:" openjpeg-${pkgver}/doc/CMakeLists.txt + # http://seclists.org/oss-sec/2016/q4/649 + cd ${srcdir}/openjpeg-$pkgver + patch -Np1 -i ../repair_bugs_of_871_and_872.patch } build() {