summary refs log tree commit diff
path: root/gnu/packages/patches
AgeCommit message (Collapse)Author
2017-10-27gnu: exiv2: Add upstream security fixes.Marius Bakke
Fixes CVE-2017-14859, CVE-2017-14860, CVE-2017-14862 and CVE-2017-14864. * gnu/packages/patches/exiv2-CVE-2017-14859-14862-14864.patch, gnu/packages/patches/exiv2-CVE-2017-14860.patch: New files. * gnu/local.mk (dist_patch_DATA): Register them. * gnu/packages/image.scm (exiv2)[source]: Use them.
2017-10-26gnu: wget: Update to 1.19.2 [fixes CVE-2017-13089 and CVE-2017-13090].Marius Bakke
* gnu/packages/wget.scm (wget): Update to 1.19.2. [source](uri): Change to '.lz' tarball. [source](patches): Remove. [native-inputs]: Add LZIP. * gnu/packages/patches/wget-CVE-2017-6508.patch, gnu/packages/patches/wget-fix-504-test-timeout.patch, gnu/packages/patches/wget-perl-5.26.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.
2017-10-25gnu: Add crypto++.Pierre Langlois
* gnu/packages/crypto.scm (crypto++): New variable. * gnu/packages/patches/crypto++-fix-dos-in-asn.1-decoders.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. Co-authored-by: Ricardo Wurmus <rekado@elephly.net>
2017-10-24gnu: mupdf: Fix CVE-2017-{14685,14686,14687}.Leo Famulari
* gnu/packages/patches/mupdf-CVE-2017-14685.patch, gnu/packages/patches/mupdf-CVE-2017-14686.patch, gnu/packages/patches/mupdf-CVE-2017-14687.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/pdf.scm (mupdf)[source]: Use them.
2017-10-24gnu: icu4c: Fix CVE-2017-14952.Leo Famulari
* gnu/packages/patches/icu4c-CVE-2017-14952.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/icu4c.scm (icu4c)[replacement]: New field. (icu4c-fixed): New variable.
2017-10-22gnu: glibc: Fix CVE-2017-15670, CVE-2017-15671.Marius Bakke
* gnu/packages/patches/glibc-CVE-2017-15670-15671.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/base.scm (glibc/linux)[replacement]: New field. (glibc/fixed): New variable. (glibc-2.24, glibc-2.23, glibc-2.22)[source](patches): Add 'glibc-CVE-2017-15670-15671.patch'.
2017-10-20gnu: libvirt: Fix CVE-2017-1000256.Leo Famulari
* gnu/packages/patches/libvirt-CVE-2017-1000256.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/virtualization.scm (libvirt)[source]: Use it.
2017-10-19gnu: musl: Update to 1.1.17.Leo Famulari
* gnu/packages/musl.scm (musl): Update to 1.1.17. [source]: Remove patch. * gnu/packages/patches/musl-CVE-2016-8859.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-10-18gnu: mupdf: Fix CVE-2017-15587.Marius Bakke
* gnu/packages/patches/mupdf-CVE-2017-15587.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/pdf.scm (mupdf)[source](patches): Use it.
2017-10-17gnu: Add Axoloti.Ricardo Wurmus
* gnu/packages/axoloti.scm: New file. * gnu/packages/patches/libusb-for-axoloti.patch: New file. * gnu/local.mk (dist_patch_DATA): Add patch. (GNU_SYSTEM_MODULES): Add module.
2017-10-16gnu: wpa-supplicant: Fix "KRACK" key reinstallation attacks [security fixes].Leo Famulari
Fixes CVE-2017-{13078,13079,13080,13081,13082,13087,13088}. See these announcements for more information: https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt https://www.krackattacks.com/ * gnu/packages/patches/wpa-supplicant-CVE-2017-13082.patch, gnu/packages/patches/wpa-supplicant-fix-key-reuse.patch, gnu/packages/patches/wpa-supplicant-fix-nonce-reuse.patch gnu/packages/patches/wpa-supplicant-fix-zeroed-keys.patch, gnu/packages/patches/wpa-supplicant-krack-followups.patch: New files. * gnu/packages/admin.scm (wpa-supplicant-minimal)[source]: Use them. * gnu/local.mk (dist_patch_DATA): Add them.
2017-10-11gnu: totem: Update to 3.26.0.Ludovic Courtès
* gnu/packages/gnome.scm (totem): Update to 3.26.0. [source]: Add 'patches' field. [build-system]: Switch to MESON-BUILD-SYSTEM. [native-inputs]: Add GTK+:bin and GLIB:bin. [arguments]: Pass #:glib-or-gtk?. Adjust #:configure-flags to new syntax. * gnu/packages/patches/totem-meson-easy-codec.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2017-10-10Merge branch 'staging'Marius Bakke
2017-10-10gnu: libxfont: Fix CVE-2017-13720, CVE-2017-13722.Marius Bakke
* gnu/packages/patches/libxfont-CVE-2017-13720.patch, gnu/packages/patches/libxfont-CVE-2017-13722.patch: New files. * gnu/local.mk (dist_patch_DATA): Register them. * gnu/packages/xorg.scm (libxfont, libxfont2)[source]: Use them.
2017-10-10gnu: libmwaw: Update to 0.3.12.Marius Bakke
* gnu/packages/libreoffice.scm (libmwaw): Update to 0.3.12. [source](patches): Remove. [arguments]: Remove. * gnu/packages/patches/libmwaw-CVE-2017-9433.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-10-10gnu: libvisio: Update to 0.1.5.Marius Bakke
* gnu/packages/patches/libvisio-fix-tests.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/libreoffice.scm (libvisio): Update to 0.1.5. [source]: Add 'libvisio-fix-tests.patch'. [arguments]: Remove.
2017-10-10gnu: python2-unittest2: Update to 1.1.0.Cyril Roelandt
* gnu/packages/python.scm (python2-unittest2): Update to 1.1.0. * gnu/packages/patches/python2-unittest2-remove-argparse.patch: New file. * gnu/local.mk: Add it.
2017-10-07Merge branch 'master' into stagingMarius Bakke
2017-10-06gnu: Add mongodb.Christopher Baines
* gnu/packages/databases.scm (mongodb): New variable.
2017-10-06Merge branch 'master' into stagingMarius Bakke
2017-10-05gnu: openjpeg: Update to 2.3.0.Marius Bakke
* gnu/packages/patches/openjpeg-CVE-2017-12982.patch, gnu/packages/patches/openjpeg-CVE-2017-14040.patch, gnu/packages/patches/openjpeg-CVE-2017-14041.patch, gnu/packages/patches/openjpeg-CVE-2017-14151.patch, gnu/packages/patches/openjpeg-CVE-2017-14152.patch, gnu/packages/patches/openjpeg-CVE-2017-14164.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them. * gnu/packages/image.scm (openjpeg): Update to 2.3.0. [source](patches): Remove. * gnu/packages/gstreamer.scm (gst-plugins-bad)[arguments]: Adjust openjpeg substitution.
2017-10-04gnu: curl: Update replacement to 7.56.0 [security fixes].Kei Kebreau
Fixes CVE-2017-1000254. See <https://curl.haxx.se/docs/adv_20171004.html> for details. * gnu/packages/curl.scm (curl)[replacement]: Update to 7.56.0. (curl-7.55.0): Rename to ... (curl-7.56.0): ... this. [arguments]: Remove 'fix-Makefile' phase. [source]: Remove patch. * gnu/packages/patches/curl-bounds-check.patch: Delete it. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-10-05Merge branch 'master' into stagingMarius Bakke
2017-10-05gnu: xorg-server: Update to 1.19.4 [fixes CVE-2017-13721, CVE-2017-13723].Marius Bakke
The GPG signature for the bz2 tarball is bad, but the checksum matches the signed release announcement, and contents are identical to the good .gz. * gnu/packages/xorg.scm (xorg-server): Update to 1.19.4. [source]: Remove obsolete patches. * gnu/packages/patches/xorg-server-CVE-2017-10971.patch, gnu/packages/patches/xorg-server-CVE-2017-10972.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Adjust accordingly.
2017-10-04gnu: clisp: Update to 2.49-60.Efraim Flashner
* gnu/packages/lisp.scm (clisp): Update to 2.49-60. [source]: Download mercurial repository, apply patch. [inputs]: Replace readline@6.2 with readline, add ncurses. [arguments]: Add multiple configure flags. Remove build phase to build in "src" directory. Remove more uses of a timestamp.
2017-10-03gnu: qemu: Update to 2.10.1.Marius Bakke
* gnu/packages/patches/qemu-CVE-2017-13711.patch, gnu/packages/patches/qemu-CVE-2017-14167.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them. * gnu/packages/virtualization.scm (qemu): Update to 2.10.1. [source](patches): Remove.
2017-10-03gnu: python-nose-timer: Add missing patch.Cyril Roelandt
* gnu/packages/patches/python-nose-timer-drop-ordereddict.patch: New file. * gnu/local.mk: Add it.
2017-10-03gnu: graphicsmagick: Fix CVE-2017-14649.Kei Kebreau
* gnu/packages/imagemagick.scm (graphicsmagick)[source]: Add patch. * gnu/packages/patches/graphicsmagick-CVE-2017-14649.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it.
2017-10-03gnu: Add cube.Dave Love
* gnu/packages/profiling.scm(cube): New variable. * gnu/packages/patches/cube-nocheck.patch: New file. * gnu/local.mk: Add it. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-09-28gnu: openocd: Update to 0.10.0Theodoros Foradis
* gnu/packages/embedded.scm (openocd): Update to 0.10.0. [arguments] <configure-flags>: Add "--enable-sysfsgpio" flag. Remove "--enable-oocd_trace" flag. [arguments] <phases>: Add phase "change-udev-group". Add phase "install-udev-rules". * gnu/packages/patches/openocd-nrf52.patch: Modify to apply on 0.10.0. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-09-27gnu: Add ocaml-graph.Julien Lepiller
* gnu/packages/ocaml.scm (ocaml-graph): New variable. * gnu/packages/patches/ocaml-graph-honor-source-date-epoch.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2017-09-27Merge branch 'master' into stagingMarius Bakke
2017-09-27gnu: e2fsprogs: Update to 1.43.6.Marius Bakke
* gnu/packages/linux.scm (e2fsprogs): Update to 1.43.6.
2017-09-26gnu: libunwind: Update to 1.2.1.Leo Famulari
* gnu/packages/libunwind.scm (libunwind): Upate to 1.2.1. [source]: Remove 'libunwind-CVE-2015-3239.patch'. * gnu/packages/patches/libunwind-CVE-2015-3239.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-25gnu: certbot, python-acme: Update to 0.18.2.Leo Famulari
* gnu/packages/tls.scm (certbot, python-acme): Update to 0.18.2. * gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-24gnu: fontforge: Update to 20170731.Efraim Flashner
* gnu/packages/fontutils.scm (fontforge): Update to 20170731. [source]: Remove patch, remove snippet. [arguments]: Enable tests. Remove phase to build showttf. [inputs]: Use python-wrapper instead of python. [home-page]: Update to new home page. * gnu/packages/patches/fontforge-svg-modtime.patch: Remove file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-21gnu: curl: Update to 7.55.1.Marius Bakke
* gnu/packages/patches/curl-bounds-check.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it. * gnu/packages/curl.scm (curl): Update to 7.55.1. [replacement]: Remove field. [source]: Use '.xz' tarball. (curl-7.55.0): Remove variable.
2017-09-21Merge branch 'master' into stagingMarius Bakke
2017-09-21gnu: emacs: Update to 25.3.Ricardo Wurmus
* gnu/packages/patches/emacs-unsafe-enriched-mode-translations.patch: Remove file. * gnu/local.mk (dist_patch_DATA): Remove patch. * gnu/packages/emacs.scm (emacs): Update to 25.3. [source]: Remove obsolete patch.
2017-09-20gnu: bluez: Remove leftover patch.Marius Bakke
This is a follow-up to commit 164fccea7eead86c6ebe389bc0255c72b161d109. * gnu/packages/patches/bluez-CVE-2017-1000250.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-20gnu: mesa: Update to 17.2.1.Marius Bakke
* gnu/packages/gl.scm (mesa): Update to 17.2.1. [inputs]: Add WAYLAND-PROTOCOLS. * gnu/packages/patches/mesa-skip-disk-cache-test.patch: Adjust context.
2017-09-20gnu: gd: Remove graft for 2.2.5.Marius Bakke
* gnu/packages/gd.scm (gd): Update to 2.2.5. [source]: Remove obsolete patches. [replacement]: Remove field. (gd-2.2.5): Remove variable. * gnu/packages/patches/gd-fix-gd2-read-test.patch, gnu/packages/patches/gd-php-73968-Fix-109-XBM-reading.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove patches. * gnu/packages/php.scm (php)[inputs]: Replace GD-2.2.5 with GD.
2017-09-20Merge branch 'master' into stagingMarius Bakke
2017-09-18gnu: newsbeuter: Fix CVE-2017-14500.Efraim Flashner
* gnu/packages/syndication.scm (newsbeuter)[source]: Add patch. * gnu/packages/patches/newsbeuter-CVE-2017-14500.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it.
2017-09-18gnu: httpd: Patch "options bleed" [fixes CVE-2017-9798].Ludovic Courtès
* gnu/packages/patches/httpd-CVE-2017-9798.patch: New file. * gnu/packages/web.scm (httpd)[source]: Use it. * gnu/local.mk (dist_patch_DATA): Add it.
2017-09-17gnu: certbot: Fix build with python-pyopenssl >= 17.3.0.Marius Bakke
* gnu/packages/patches/python-acme-dont-use-openssl-rand.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it. * gnu/packages/tls.scm (python-acme)[source]: Use it.
2017-09-17gnu: ruby-2.2: Update to 2.2.8. Fix CVE-2017-{0898,10784,14033,14064}.Ben Woodcroft
* gnu/packages/ruby.scm (ruby-2.2): Update to 2.2.8. [source]: Remove patch. * gnu/packages/patches/ruby-2.2.7-rubygems-2613-ruby22.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-17gnu: ruby-2.3: Update to 2.3.5. Fix CVE-2017-{0898,10784,14033,14064}.Ben Woodcroft
* gnu/packages/ruby.scm (ruby-2.3): Update to 2.3.5. [source]: Remove patch. * gnu/packages/patches/ruby-2.3.4-rubygems-2613-ruby23.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.
2017-09-17ruby: Update replacement to 2.4.2. Fix CVE-2017-{0898,10784,14033,14064}.Ben Woodcroft
* gnu/packages/ruby.scm (ruby): Update replacement to 2.4.2. (ruby-2.4.1): Rename to ... (ruby-2.4.2): ... this. [source]: Remove patches. * gnu/packages/patches/ruby-rubygems-2612-ruby24.patch, gnu/packages/patches/ruby-rubygems-2613-ruby24.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.
2017-09-16gnu: Add meson-for-build.Peter Mikkelsen
* gnu/packages/build-tools.scm (meson-for-build): New variable. * gnu/packages/patches/meson-for-build-rpath.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it. Signed-off-by: Ludovic Courtès <ludo@gnu.org>