Efraim Flashner <efr...@flashner.co.il> skribis: > From 3ae1af75fe7304a05ca8ac0edd8582d581108d05 Mon Sep 17 00:00:00 2001 > From: Efraim Flashner <efr...@flashner.co.il> > Date: Thu, 30 Nov 2017 23:46:55 +0200 > Subject: [PATCH 2/2] gnu: t1lib: Change how patched CVEs are listed. > > * gnu/packages/fontutils.scm (t1lib)[source]: Change patch name. > [properties]: New field, register patched CVEs. > * gnu/packages/patches/CVE-2011-1552+CVE-2011-1553+CVE-2011-1554.patch: > Rename to CVE-2011-1552+.patch. > * gnu/local.mk (dist_patch_DATA): Change patch name.
[...] > (patches (search-patches > - "t1lib-CVE-2010-2642.patch" > + "t1lib-CVE-2010-2642.patch" ; 2011-0443, 2011-5244 > "t1lib-CVE-2011-0764.patch" > - > "t1lib-CVE-2011-1552+CVE-2011-1553+CVE-2011-1554.patch")))) > + "t1lib-CVE-2011-1552+.patch")))) ; 2011-1553, > 2011-1554 > (build-system gnu-build-system) > (arguments > ;; Making the documentation requires latex, but t1lib is also an input > @@ -323,6 +323,10 @@ describe character bitmaps. It contains the bitmap data > as well as some > metric information. But t1lib is in itself entirely independent of the > X11-system or any other graphical user interface.") > (license license:gpl2) > + (properties `((fixed-vulnerabilities . ("CVE-2011-0433" > + "CVE-2011-1553" > + "CVE-2011-1554" > + "CVE-2011-5244")))) Perhaps move ‘properties’ right below ‘patches’ for clarity. And s/fixed-vulnerabilities/lint-hidden-cve/. :-) OK with these changes, thank you! Ludo’.