Date: Friday, February 17, 2023 @ 20:57:32
Author: eworm
Revision: 1402291
upgpkg: lib32-libtiff 4.5.0-2: apply fix for CVE-2022-48281
Modified:
lib32-libtiff/trunk/PKGBUILD
----------+
PKGBUILD | 11 +++++++----
1 file changed, 7 insertions(+), 4 deletions(-)
Modified: PKGBUILD
===================================================================
--- PKGBUILD 2023-02-17 20:43:32 UTC (rev 1402290)
+++ PKGBUILD 2023-02-17 20:57:32 UTC (rev 1402291)
@@ -5,7 +5,7 @@
_pkgname=libtiff
pkgname=lib32-${_pkgname}
pkgver=4.5.0
-pkgrel=1
+pkgrel=2
pkgdesc='Library for manipulation of TIFF images (32-bit)'
url='http://www.simplesystems.org/libtiff/'
arch=('x86_64')
@@ -12,11 +12,14 @@
license=('custom')
depends=(libtiff=$pkgver 'lib32-glibc' 'lib32-gcc-libs' 'lib32-libjpeg-turbo'
'lib32-zlib' 'lib32-xz' 'lib32-zstd')
provides=('libtiff.so' 'libtiffxx.so')
-source=(https://download.osgeo.org/libtiff/tiff-${pkgver}.tar.gz{,.sig})
+source=("https://download.osgeo.org/libtiff/tiff-${pkgver}.tar.gz"{,.sig}
+
'libtiff-CVE-2022-48281.patch::https://gitlab.com/libtiff/libtiff/-/commit/97d65859b.patch')
sha512sums=('02b94e355ac96ac2ecce717aff2b1e04b1bfe95bcd0cfa72e09cbd580c45de0afe341170daad0cf560064b5a8910b3e56ef260484c69919bb0545df90abe7fa9'
- 'SKIP')
+ 'SKIP'
+
'b0444621e2e52ae80f893a88e43813e779839a869a2d4af3a83765ae5e9fce212e579797da52a3a7133cfb7c22a6d6b567e038ef56adb12b565ce31b7976dacd')
b2sums=('732556614886678435781bc91796eda17aae03dc8eb2b488d297e2700a51fd93d9cc8d2b895fd9b14dbed9a992d6a7f59d2f260ff60cf6344da1e1478f9bb4f0'
- 'SKIP')
+ 'SKIP'
+
'a2001b5fa5531c52dee71301ae43efc56d1f8a654b0f1e367560a5818d5449c1ff7b8aa327392475935d93fe3f7298af0c1abf5c3995f23fe25907d2b2350e8c')
validpgpkeys=(
'EBDFDB21B020EE8FD151A88DE301047DE1198975' # Bob Friesenhahn
<[email protected]>
'B1FA7D81EEB8E66399178B9733EBBFC47B3DD87D' # Even Rouault
<[email protected]>
