summaryrefslogtreecommitdiff
path: root/gnu/packages/patches
AgeCommit message (Collapse)Author
2016-11-26gnu: cyrus-sasl: Fix CVE-2013-4122.Leo Famulari
* gnu/packages/patches/cyrus-sasl-CVE-2013-4122.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/cyrus-sasl.scm (cyrus-sasl)[replacement]: New field. (cyrus-sasl/fixed): New variable. [source]: Use patch.
2016-11-26gnu: gst-plugins-good: Fix CVE-2016-{9634,9635,9636} and other security issues.Leo Famulari
* gnu/packages/patches/gst-plugins-good-fix-crashes.patch, gnu/packages/patches/gst-plugins-good-fix-invalid-read.patch, gnu/packages/patches/gst-plugins-good-fix-signedness.patch, gnu/packages/patches/gst-plugins-good-flic-bounds-check.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/gstreamer.scm (gst-plugins-good): Use them.
2016-11-25gnu: ldc: Update to 0.17.2.Danny Milosavljevic
* gnu/packages/ldc.scm (ldc): Update to 0.17.2. * gnu/packages/patches/ldc-disable-tests.patch: Fix timezone file name. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2016-11-25Merge branch 'master' into python-build-systemLeo Famulari
2016-11-23gnu: libtiff: Update to 4.0.7.Leo Famulari
* gnu/packages/image.scm (libtiff): Update to 4.0.7. [source]: Update URL and remove obsolete patches. [home-page]: Update URL. [native-inputs]: Add gcc-5. (libtiff-4.0.7): Delete variable. * gnu/packages/patches/libtiff-CVE-2015-8665+CVE-2015-8683.patch, gnu/packages/patches/libtiff-CVE-2016-3623.patch, gnu/packages/patches/libtiff-CVE-2016-3945.patch, gnu/packages/patches/libtiff-CVE-2016-3990.patch, gnu/packages/patches/libtiff-CVE-2016-3991.patch, gnu/packages/patches/libtiff-CVE-2016-5314.patch, gnu/packages/patches/libtiff-CVE-2016-5321.patch, gnu/packages/patches/libtiff-CVE-2016-5323.patch, gnu/packages/patches/libtiff-oob-accesses-in-decode.patch, gnu/packages/patches/libtiff-oob-write-in-nextdecode.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.
2016-11-23Merge branch 'master' into stagingLeo Famulari
2016-11-22gnu: Add 'lvm2-static'.Ludovic Courtès
* gnu/packages/patches/lvm2-static-link.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/linux.scm (lvm2)[source](patches): New field. (lvm2-static): New variable.
2016-11-22gnu: libtiff: Update replacement to 4.0.7.Leo Famulari
* gnu/packages/image.scm (libtiff)[replacement]: Update to 4.0.7. (libtiff-4.0.7): New variable. Update home-page and source URLs. (libtiff/fixed): Delete variable. * gnu/packages/patches/libtiff-CVE-2016-5652.patch, gnu/packages/patches/libtiff-CVE-2016-9273.patch, gnu/packages/patches/libtiff-CVE-2016-9297.patch, gnu/packages/patches/libtiff-CVE-2016-9448.patch, gnu/packages/patches/libtiff-uint32-overflow.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.
2016-11-21gnu: libtiff: Fix URL in 'libtiff-uint32-overflow.patch'.Leo Famulari
* gnu/packages/patches/libtiff-uint32-overflow.patch: Fix URL.
2016-11-20gnu: Add php.Julien Lepiller
* gnu/packages/php.scm: New file. * gnu/packages/patches/gd-fix-chunk-size-on-boundaries.patch: New file. * gnu/packages/patches/gd-fix-truecolor-format-correction.patch: New file. * gnu/local.mk (GNU_SYSTEM_MODULES): Add php. (dist_patch_DATA): Add gd patches. Co-authored-by: Marius Bakke <mbakke@fastmail.com>
2016-11-20gnu: ruby: Update to 2.3.2.Ben J Woodcroft
* gnu/packages/ruby.scm (ruby): Update to 2.3.2. [replacement]: Remove field. [origin]: Remove patch. * gnu/packages/patches/ruby-symlinkfix.patch: Remove file. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-11-19gnu: libtiff: Fix CVE-2016-9448.Leo Famulari
* gnu/packages/patches/libtiff-CVE-2016-9448.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff/fixed)[source]: Use it.
2016-11-18gnu: guile@2.0.13: Fix non-determinism issue in REPL server test.Ludovic Courtès
* gnu/packages/patches/guile-repl-server-test.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/guile.scm (guile-2.0.13)[source]: Use it.
2016-11-16gnu: Add Handbrake.Eric Bavier
* gnu/packages/video.scm (handbrake): New variable. * gnu/packages/patches/handbrake-pkg-config-path.patch: New patch. * gnu/local.mk (dist_patch_DATA): Add it.
2016-11-16gnu: libtiff: Fix some buffer overflows.Leo Famulari
* gnu/packages/patches/libtiff-uint32-overflow.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff/fixed)[source]: Use it.
2016-11-16gnu: libtiff: Fix CVE-2016-9297.Leo Famulari
* gnu/packages/patches/libtiff-CVE-2016-9297.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff/fixed)[source]: Use it.
2016-11-16gnu: icecat: Add fixes from Firefox ESR 45.5.0.Mark H Weaver
Includes fixes for CVE-2016-5290, CVE-2016-5291, CVE-2016-5297, CVE-2016-9064, and CVE-2016-9066. * gnu/packages/gnuzilla.scm (icecat)[source][patches]: Add fixes for aforementioned CVEs and other selected fixes from Firefox ESR 45.5.0. Note that the first six patches of CVE-2016-5290 and the patch for CVE-2016-9066 were already present, but were labeled by mozilla bug number instead of CVE. * gnu/packages/patches/icecat-CVE-2016-9064.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-11-16gnu: pixman: Add fix for CVE-2016-5296.Mark H Weaver
* gnu/packages/patches/pixman-CVE-2016-5296.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/xdisorg.scm (pixman)[replacement]: New field. (pixman/fixed): New variable.
2016-11-15gnu: python-2.7: Add all guix prefixes in PYTHONPATH to site-prefixes.Hartmut Goebel
* gnu/packages/patches/python-2.7-site-prefixes.patch: New file. * gnu/packages/python.scm (python-2)[source]: Use it. * gnu/local.mk (dist_patch_DATA): Add patch.
2016-11-13gnu: readline-6.2: Fix CVE-2014-2524.Leo Famulari
* gnu/packages/patches/readline-6.2-CVE-2014-2524.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/readline.scm (readline-6.2): Use it.
2016-11-13gnu: mailutils: Update to 3.0.Ludovic Courtès
* gnu/packages/mail.scm (mailutils): Update to 3.0. [arguments]: Adjust 'pre-build' phase. * gnu/packages/patches/m4-gets-undeclared.patch: Remove. * gnu/local.mk (dist_patch_DATA): Adjust accordingly.
2016-11-13Merge branch 'core-updates'Ludovic Courtès
2016-11-12gnu: libtiff: Fix CVE-2016-9273.Leo Famulari
* gnu/packages/patches/libtiff-CVE-2016-9273.patch: New patch. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff/fixed): Use it.
2016-11-11gnu: ruby-yard: Update to 0.9.5-1.d816482a.Ben Woodcroft
* gnu/packages/ruby.scm (ruby-yard): Update to 0.9.5-1.d816482a. [source]: Update source URL. [arguments]: Remove unneeded substitutions. Change test target. * gnu/packages/patches/ruby-yard-fix-skip-of-markdown-tests.patch (New file) * gnu/local.mk (dist_patch_DATA): Add it.
2016-11-09gnu: gcc@5, gcc@6: Work around use of 'movabs' for /gnu/store strings.Ludovic Courtès
Partly addresses <http://bugs.gnu.org/24703>. Reported by Mark H Weaver <mhw@netris.org>. * gnu/packages/patches/gcc-strmov-store-file-names.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/gcc.scm (gcc-5)[sources](patches): Add it. (gcc-6)[sources](patches): Add it.
2016-11-09gnu: libxslt: Fix CVE-2016-4738.Leo Famulari
* gnu/packages/patches/libxslt-CVE-2016-4738.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/xml.scm (libxslt)[replacement]: New field. (libxslt/fixed): New variable.
2016-11-08gnu: mupdf: Fix CVE-2016-{7504,7505,7506,7563,7564,9017,9136} in bundled mujs.Leo Famulari
* gnu/packages/patches/mupdf-CVE-2016-7504.patch, gnu/packages/patches/mupdf-CVE-2016-7505.patch gnu/packages/patches/mupdf-CVE-2016-7506.patch gnu/packages/patches/mupdf-CVE-2016-7563.patch gnu/packages/patches/mupdf-CVE-2016-7564.patch gnu/packages/patches/mupdf-CVE-2016-9017.patch gnu/packages/patches/mupdf-CVE-2016-9136.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/pdf.scm (mupdf)[source]: Use them.
2016-11-07Merge branch 'master' into core-updatesMark H Weaver
2016-11-06gnu: jansson: Update to 2.9.Leo Famulari
* gnu/packages/web.scm (jansson): Update to 2.9. [source]: Remove 'jansson-CVE-2016-4425.patch'. * gnu/packages/patches/jansson-CVE-2016-4425.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-11-06gnu: lua: Update to 5.3.3.Marius Bakke
* gnu/packages/patches/lua52-liblua-so.patch: Rename to ... * gnu/packages/patches/lua-liblua-so.patch: ... this. Add version comment. * gnu/local.mk (dist_patch_DATA): Adjust patch name. * gnu/packages/lua.scm (lua): Update to 5.3.3. [source]: Use https URL. Use new patch name. [home-page]: Use https URL. (lua-5.2): New variable. (lua-5.1)[source]: Use https URL.
2016-11-06Merge branch 'master' into core-updatesMark H Weaver
2016-11-05gnu: weex: Update to 2.8.2 [fixes CVE-2005-3150].Leo Famulari
* gnu/packages/ftp.scm (weex): Update to 2.8.2. [source]: Use new URL. Remove obsolete 'weex-vacopy.patch'. [arguments]: Remove custom 'configure' phase and add 'bootstrap' phase. [native-inputs]: Add autoconf, automake, and gnu-gettext. * gnu/packages/patches/weex-vacopy.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-11-04gnu: w3m: Switch to Debian's actively maintained fork of w3m.Kei Kebreau
Fixes some security issues seen here: <http://www.openwall.com/lists/oss-security/2016/11/03/3> * gnu/packages/w3m.scm (w3m): Switch it. [source]: Use Debian's git tree. Remove obsolete patches. [arguments]: Remove an unneeded substitute* function. * gnu/packages/patches/w3m-disable-sslv2-and-sslv3.patch, gnu/packages/patches/w3m-disable-weak-ciphers.patch, gnu/packages/patches/w3m-force-ssl_verify_server-on.patch, gnu/packages/patches/w3m-libgc.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.
2016-11-04gnu: python-ipython: Update to 4.0.0.Ricardo Wurmus
* gnu/packages/python.scm (python-ipython): Update to 4.0.0. [inputs]: Keep only "readline" and "which"; move the remaining inputs to propagated-inputs, except for "python-requests" and "python-nose" which are moved to native-inputs. [propagated-inputs]: Add "python-pexpect", "python-pickleshare", "python-simplegeneric", "python-traitlets", "python-ipykernel". [native-inputs]: Add "python-testpath". [arguments]: Enable building of HTML documentation. [source]: Remove patch. * gnu/packages/patches/python-ipython-inputhook-ctype.patch: Remove patch. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-11-04gnu: ola: Fix build failure caused by use of deprecated function.Leo Famulari
* gnu/packages/patches/ola-readdir-r.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/lighting.scm (ola)[source]: Use it.
2016-11-03[PATCH] gnu: Add libjxr.Kei Kebreau
* gnu/packages/image.scm (libjxr): New variable. * gnu/packages/patches/libjxr-fix-function-signature.patch: New file. * gnu/packages/patches/libjxr-fix-typos.patch: New file. * gnu/local.mk (dist_patch_DATA): Register patches.
2016-11-02Merge branch 'master' into core-updatesLeo Famulari
2016-11-01gnu: python-django: Update to 1.10.3 [fixes CVE-2016-{9013,9014}].Marius Bakke
* gnu/packages/django.scm (python-django, python2-django): Update to 1.10.3. [source]: Remove patch. * gnu/packages/patches/python-django-fix-testcase.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-10-31gnu: icecat: Fix build with binutils >= 2.26.Leo Famulari
* gnu/packages/patches/icecat-binutils.patch: New patch. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/gnuzilla.scm (icecat)[source]: Use it.
2016-10-30Merge branch 'master' into core-updatesLeo Famulari
2016-10-30gnu: libtiff: Fix CVE-2016-5652.Leo Famulari
* gnu/packages/patches/libtiff-CVE-2016-5652.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff-fixed)[source]: Use it.
2016-10-29Merge branch 'master' into core-updatesLeo Famulari
2016-10-30gnu: Add openocd.Theodoros Foradis
* gnu/packages/embedded.scm (openocd): New variable. * gnu/packages/patches/openocd-nrf52.patch: New file. * gnu/local.mk (dist_patch_DATA): Add the patch.
2016-10-28Merge branch 'master' into core-updatesLeo Famulari
2016-10-28gnu: libwebp: Fix CVE-2016-9085.Leo Famulari
* gnu/packages/patches/libwebp-CVE-2016-9085.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libwebp)[source]: Use it.
2016-10-27gnu: python-parse: Fix failing test.Efraim Flashner
* gnu/packages/python.scm (python-parse)[origin]: Add patch. * gnu/packages/patches/python-parse-too-many-fields.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-10-26Merge branch 'master' into core-updatesLeo Famulari
2016-10-26gnu: perl-www-curl: Fix build failure.Leo Famulari
* gnu/packages/patches/perl-www-curl-remove-symbol.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/web.scm (perl-www-curl)[source]: Use it.
2016-10-26gnu: mupdf: Modify CVE-2016-8674 patch to apply to 1.9a.Marius Bakke
The fix from upstream did not apply cleanly due to many context changes. This was adapted by cloning mupdf 1.9a from git and fixing conflicts after applying our patches and cherry-picking upstream commit 1e03c06. This is a follow-up to 47a04fca999b91309d196afc9ebf4d8ac6f2083f. * gnu/packages/patches/mupdf-CVE-2016-8674.patch: Adapt to 1.9a.
2016-10-26gnu: notmuch: Update to 0.23.1.Marius Bakke
* gnu/packages/patches/notmuch-emacs-25-compatibility-fix.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it. * gnu/packages/mail.scm (notmuch): Update to 0.23.1. Remove patch.
generated by cgit v1.2.3 (git 2.45.2) at 2024-08-01 12:23:25 +0000