Date: Friday, February 17, 2023 @ 20:55:31 Author: eworm Revision: 469226
upgpkg: libtiff 4.5.0-2: apply fix for CVE-2022-48281 Modified: libtiff/trunk/PKGBUILD ----------+ PKGBUILD | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) Modified: PKGBUILD =================================================================== --- PKGBUILD 2023-02-17 20:35:47 UTC (rev 469225) +++ PKGBUILD 2023-02-17 20:55:31 UTC (rev 469226) @@ -3,7 +3,7 @@ pkgname=libtiff pkgver=4.5.0 -pkgrel=1 +pkgrel=2 pkgdesc='Library for manipulation of TIFF images' url='http://www.simplesystems.org/libtiff/' arch=('x86_64') @@ -12,11 +12,14 @@ makedepends=('freeglut' 'glu' 'mesa' 'jbigkit') optdepends=('freeglut: for using tiffgt') provides=('libtiff.so' 'libtiffxx.so') -source=(https://download.osgeo.org/libtiff/tiff-${pkgver}.tar.gz{,.sig}) +source=("https://download.osgeo.org/libtiff/tiff-${pkgver}.tar.gz"{,.sig} + 'libtiff-CVE-2022-48281.patch::https://gitlab.com/libtiff/libtiff/-/commit/97d65859b.patch') sha256sums=('c7a1d9296649233979fa3eacffef3fa024d73d05d589cb622727b5b08c423464' - 'SKIP') + 'SKIP' + 'a65cd779fc514b89a7747e6f849d8583410f8e97139da06ff41958620503aa3c') b2sums=('732556614886678435781bc91796eda17aae03dc8eb2b488d297e2700a51fd93d9cc8d2b895fd9b14dbed9a992d6a7f59d2f260ff60cf6344da1e1478f9bb4f0' - 'SKIP') + 'SKIP' + 'a2001b5fa5531c52dee71301ae43efc56d1f8a654b0f1e367560a5818d5449c1ff7b8aa327392475935d93fe3f7298af0c1abf5c3995f23fe25907d2b2350e8c') validpgpkeys=( 'EBDFDB21B020EE8FD151A88DE301047DE1198975' # Bob Friesenhahn <[email protected]> 'B1FA7D81EEB8E66399178B9733EBBFC47B3DD87D' # Even Rouault <[email protected]>
