gnu: freeimage: Patch 2 CVEs.

* gnu/packages/image.scm (freeimage)[source]: Add patches. * gnu/packages/patches/freeimage-CVE-2020-21428.patch, gnu/packages/patches/freeimage-CVE-2020-22524.patch: New files. * gnu/local.mk (dist_patch_DATA): Register them. Change-Id: Iec114f2295cafbc8b55e81c0d8e4a361fd653152
author: Efraim Flashner <efraim@flashner.co.il> 2023-12-18 12:51:56 +0200
committer: Efraim Flashner <efraim@flashner.co.il> 2023-12-18 13:03:36 +0200
commit: 29c94dd522833b2603a651c14a5b06120bcf1829 (patch)
tree: 9883dabf6660104de35833747703ae39960231ef /gnu/packages/image.scm
parent: f410d49eb24db4eecae054dfe136464bc92ba8a3 (diff)
download: guix-29c94dd522833b2603a651c14a5b06120bcf1829.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index d237bf689c..8a8e1eacb7 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -1253,7 +1253,9 @@ supplies a generic doubly-linked list and some string functions.")
               (patches
                (append
                 (search-patches "freeimage-unbundle.patch"
-                                "freeimage-libtiff-compat.patch")
+                                "freeimage-libtiff-compat.patch"
+                                "freeimage-CVE-2020-21428.patch"
+                                "freeimage-CVE-2020-22524.patch")
                 ;; Take one patch from Arch Linux that adds LibRaw 0.20 compatibility.
                 (list (origin
                         (method url-fetch)
author	Efraim Flashner <efraim@flashner.co.il>	2023-12-18 12:51:56 +0200
committer	Efraim Flashner <efraim@flashner.co.il>	2023-12-18 13:03:36 +0200
commit	29c94dd522833b2603a651c14a5b06120bcf1829 (patch)
tree	9883dabf6660104de35833747703ae39960231ef /gnu/packages/image.scm
parent	f410d49eb24db4eecae054dfe136464bc92ba8a3 (diff)
download	guix-29c94dd522833b2603a651c14a5b06120bcf1829.tar.gz