summary refs log tree commit diff
path: root/gnu/packages/pdf.scm
diff options
context:
space:
mode:
authorLeo Famulari <leo@famulari.name>2018-02-07 03:01:11 -0500
committerLeo Famulari <leo@famulari.name>2018-02-07 21:17:57 -0500
commit0b18c0b0de9aabb12b4c1503303e4dde410f6470 (patch)
tree3ee03eddb60c424a60f8048e62d8e09b18c27de3 /gnu/packages/pdf.scm
parentb617a9fe239ea645c816d6afcb81d5476f760d84 (diff)
downloadguix-0b18c0b0de9aabb12b4c1503303e4dde410f6470.tar.gz
gnu: mupdf: Fix CVE-2017-17858.
* gnu/packages/patches/mupdf-CVE-2017-17858.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/pdf.scm (mupdf)[source]: Use it.
Diffstat (limited to 'gnu/packages/pdf.scm')
-rw-r--r--gnu/packages/pdf.scm3
1 files changed, 2 insertions, 1 deletions
diff --git a/gnu/packages/pdf.scm b/gnu/packages/pdf.scm
index 96773da717..9730e6150c 100644
--- a/gnu/packages/pdf.scm
+++ b/gnu/packages/pdf.scm
@@ -584,7 +584,8 @@ extracting content or merging files.")
         (method url-fetch)
         (uri (string-append "https://mupdf.com/downloads/archive/"
                             name "-" version "-source.tar.xz"))
-        (patches (search-patches "mupdf-build-with-latest-openjpeg.patch"))
+        (patches (search-patches "mupdf-build-with-latest-openjpeg.patch"
+                                 "mupdf-CVE-2017-17858.patch"))
         (sha256
          (base32
           "0b9j0gqbc3jhmx87r6idcsh8lnb30840c3hyx6dk2gdjqqh3hysp"))