summary refs log tree commit diff
path: root/gnu/packages/patches
AgeCommit message (Collapse)Author
2016-07-16gnu: gd: Fix CVE-2016-{5766,6128,6132,6214}.Leo Famulari
* gnu/packages/patches/gd-CVE-2016-5766.patch, gnu/packages/patches/gd-CVE-2016-6128.patch, gnu/packages/patches/gd-CVE-2016-6132.patch, gnu/packages/patches/gd-CVE-2016-6214.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/gd.scm (gd): Use patches.
2016-07-10gnu: libmtp: Update to 1.1.11.Ricardo Wurmus
* gnu/packages/patches/libmtp-devices.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove patch. * gnu/packages/libusb.scm (libmtp): Update to 1.1.11.
2016-07-09gnu: Add python-dendropy.Ben Woodcroft
* gnu/packages/bioinformatics.scm (python-dendropy, python2-dendropy): New variables. * gnu/packages/patches/python-dendropy-exclude-failing-tests.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-07-06gnu: sudo: Update to 1.8.17p1.Efraim Flashner
* gnu/packages/admin.scm (sudo): Update to 1.8.17p1. [source]: Remove patch. * gnu/packages/patches/sudo-CVE-2015-5602.patch: Remove file. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-07-03gnu: ninja: Update to 1.7.1.Efraim Flashner
* gnu/packages/ninja.scm (ninja): Update to 1.7.1. * gnu/packages/patches/ninja-tests.patch: Update patch.
2016-07-03gnu: openimageio: Update to 1.6.15.Efraim Flashner
* gnu/packages/graphics.scm (openimageio): Update to 1.6.15. [source]: Remove patch. * gnu/packages/patches/openimageio-boost-1.60.patch: Remove file. * gnu/local.mk (dist_patch_DATA): Remove it.
2016-07-02gnu: gimp: Fix CVE-2016-4994.Leo Famulari
* gnu/packages/patches/gimp-CVE-2016-4994.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/gimp.scm (gimp): Use it.
2016-06-29gnu: avrdude: Use libusb-compat.Ricardo Wurmus
* gnu/packages/patches/avrdude-fix-libusb.patch: Remove file. * gnu/local.mk (dist_patch_DATA): Remove it. * gnu/packages/flashing-tools.scm (avrdude)[source]: Remove patch. [inputs]: Replace "libusb" with "libusb-compat".
2016-06-27gnu: Add khmer.Ben Woodcroft
* gnu/packages/bioinformatics.scm (khmer): New variable. * gnu/packages/patches/khmer-use-libraries.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-06-26daemon: Rename 'NIX_CONF_DIR' to 'GUIX_CONFIGURATION_DIRECTORY'.David Craven
Partly fixes <http://bugs.gnu.org/22459>. Reported by Jeff Mickey <j@codemac.net> and David Craven <david@craven.ch>. * nix/libstore/globals.cc (Settings::processEnvironment()): Change 'NIX_CONF_DIR' to 'GUIX_CONFIGURATION_DIRECTORY'. * nix/local.mk (libstore_a_CPPFLAGS): Likewise. * guix/config.scm.in (%config-directory): Likewise. * build-aux/test-env.in: Likewise. * gnu/packages/patches/hydra-automake-1.15.patch: Likewise. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2016-06-22gnu: beets: Update to 1.3.18.Leo Famulari
* gnu/packages/patches/beets-image-test-failure.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/music.scm (beets): Update to 1.3.18. [source]: Use patch.
2016-06-21gnu: nasm: Make build bit-reproducible.Jan Nieuwenhuizen
* gnu/packages/patches/nasm-no-ps-pdf.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/assembly.scm (nasm): Use it. Remove ghostscript, do not build PS or PDF docs. Makes build bit-reproducible. Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2016-06-21gnu: Add ruby-puma.Ben Woodcroft
gnu/packages/ruby.scm (ruby-puma): New variable. gnu/packages/patches/ruby-puma-ignore-broken-test.patch: New file. gnu/local.mk (dist_patch_DATA): Add it.
2016-06-16gnu: Add awesome.Carlo Zancanaro
* gnu/packages/wm.scm (awesome): New variable. * gnu/packages/patches/awesome-reproducible-png.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. Co-authored-by: Ludovic Courtès <ludo@gnu.org>
2016-06-15gnu: openssl: Fix CVE-2016-2177 and CVE-2016-2178.Leo Famulari
* gnu/packages/patches/openssl-CVE-2016-2177.patch, gnu/packages/patches/openssl-CVE-2016-2178.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/tls.scm (openssl/fixed): Use them.
2016-06-15gnu: Add teensy-loader-cli.Hartmut Goebel
* gnu/packages/flashing-tools.scm (teensy-loader-cli): New variable. * gnu/packages/patches/teensy-loader-cli-help.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. Co-authored-by: Ludovic Courtès <ludo@gnu.org>
2016-06-10gnu: expat: Fix CVE-2012-6702 and CVE-2016-5300.Leo Famulari
* gnu/packages/patches/expat-CVE-2012-6702-and-CVE-2016-5300.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/xml.scm (expat/fixed): Use it.
2016-06-10gnu: higan: Various improvements.Taylan Ulrich Bayırlı/Kammer
* gnu/packages/games.scm (higan): Use semi-official repository at GitLab (using hotfix tag 098b which is equivalent to official release 098). Add a patch to remove the build flag -march=native. Set profile to balanced. * gnu/packages/patches/higan-remove-march-native-flag.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-06-08Revert "gnu: libxml2: Add fix for CVE-2016-1762."Mark H Weaver
This reverts commit 6e4f18cfdd1bf747e77f81b64497f1c05f57a057.
2016-06-08gnu: libxml2: Add fix for CVE-2016-1762.Mark H Weaver
* gnu/packages/patches/libxml2-CVE-2016-1762.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/xml.scm (libxml2/fixed)[source]: Add patch.
2016-06-08gnu: icecat: Add fixes for CVE-2016-{2818,2819,2821,2824,2828,2831}.Mark H Weaver
* gnu/packages/patches/icecat-CVE-2016-2818-pt1.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt2.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt3.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt4.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt5.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt6.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt7.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt8.patch, gnu/packages/patches/icecat-CVE-2016-2818-pt9.patch, gnu/packages/patches/icecat-CVE-2016-2819.patch, gnu/packages/patches/icecat-CVE-2016-2821.patch, gnu/packages/patches/icecat-CVE-2016-2824.patch, gnu/packages/patches/icecat-CVE-2016-2828.patch, gnu/packages/patches/icecat-CVE-2016-2831.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/gnuzilla.scm (icecat)[source]: Add patches.
2016-06-08gnu: libvpx: Add fix for CVE-2016-2818.Mark H Weaver
* gnu/packages/patches/libvpx-CVE-2016-2818.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/video.scm (libvpx)[source]: Add patch.
2016-06-08gnu: Add ruby-concurrent.Ben Woodcroft
* gnu/packages/ruby.scm (ruby-concurrent): New variable. * gnu/packages/patches/ruby-concurrent-ignore-broken-test.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-06-08gnu: Add ruby-tzinfo-data.Ben Woodcroft
* gnu/packages/ruby.scm (ruby-tzinfo-data): New variable. * gnu/packages/patches/ruby-tzinfo-data-ignore-broken-test.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-06-03gnu: imagemagick: Update to 6.9.4-7.Leo Famulari
* gnu/packages/patches/imagemagick-CVE-2016-5118.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it. * gnu/packages/imagemagick.scm (imagemagick): Update to 6.9.4-7. [source]: Remove patch.
2016-06-01gnu: icedtea: Update to 1.13.11.Leo Famulari
Fixes CVE-2016-{0686, 0687, 0695, 3425, 3427}. * gnu/packages/patches/icedtea-remove-overrides.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/java.scm (icedtea): Update to 1.13.11. [source]: Use the patch. [inputs]: Add libxcomposite.
2016-05-31gnu: imagemagick: Fix CVE-2016-5118.Leo Famulari
* gnu/packages/patches/imagemagick-CVE-2016-5118.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/imagemagick.scm (imagemagick): Use it.
2016-05-31gnu: graphicsmagick: Update to 1.3.24 [security update].Leo Famulari
Fixes CVE-2016-{2317, 2318, 5118} and many other security issues described in 'NEWS.txt'. * gnu/packages/patches/graphicsmagick-CVE-2016-5118.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it. * gnu/packages/imagemagick.scm (graphicsmagick): Update to 1.3.24. [source]: Remove patch.
2016-05-30gnu: libxml2: Update replacement to 2.9.4 [security fixes].Leo Famulari
This fixes CVE-2016-{1762, 1833, 1834, 1835, 1836, 1837, 1838, 1839, 1840, 3627, 3705, 4483}. * gnu/packages/patches/libxml2-CVE-2016-3627.patch, gnu/packages/patches/libxml2-CVE-2016-3705.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them. * gnu/packages/xml.scm (libxml2/fixed): Update to 2.9.4. [source]: Remove patches.
2016-05-30gnu: mcrypt: Fix CVE-2012-4409, CVE-2012-4426, CVE-2012-4527.Efraim Flashner
* gnu/packages/mcrypt.scm (mcrypt)[source]: Add patches. * gnu/packages/patches/mcrypt-CVE-2012-4409.patch, gnu/packages/patches/mcrypt-CVE-2012-4426.patch, gnu/packages/patches/mcrypt-CVE-2012-4527.patch: New variables. * gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30gnu: wordnet: Fix CVE-2008-2149, CVE-2008-3908.Efraim Flashner
* gnu/packages/wordnet.scm (wordnet)[source]: Add patches. * gnu/packages/patches/wordnet-CVE-2008-2149.patch, gnu/packages/patches/wordnet-CVE-2008-3908-pt1.patch, gnu/packages/patches/wordnet-CVE-2008-3908-pt2.patch: New variables. * gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30gnu: id3lib: Fix CVE-2007-4460.Efraim Flashner
* gnu/packages/mp3.scm (id3lib)[source]: Add patch. * gnu/packages/patches/id3lib-CVE-2007-4460.patch: New variable. * gnu/local.mk (dist_patch_DATA): Add it.
2016-05-30gnu: devil: Fix CVE-2009-3994.Leo Famulari
* gnu/packages/patches/devil-CVE-2009-3994.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (devil): Use it.
2016-05-30gnu: emacs: Fix indentation of scheme keyword lists.Alex Kost
* gnu/packages/patches/emacs-fix-scheme-indent-function.patch: New patch. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/emacs.scm (emacs)[source]: Use it.
2016-05-30gnu: gegl: Fix CVE-2012-4433.Efraim Flashner
* gnu/packages/gimp.scm (gegl)[source]: Add patch. * gnu/packages/patches/gegl-CVE-2012-4433.patch: New variable. * gnu/local.mk (dist_patch_DATA): Add it.
2016-05-30gnu: vte-0.28: Fix CVE-2012-2738.Efraim Flashner
* gnu/packages/gnome.scm (vte-0.28)[source]: Add patches. * gnu/packages/patches/vte-CVE-2012-2738-pt1.patch, gnu/packages/patches/vte-CVE-2012-2738-pt2.patch: New variables. * gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30gnu: t1lib: Fix CVE-2010-2642, CVE-2011-{0764, 1552, 1553, 1554}.Efraim Flashner
* gnu/packages/fontutils.scm (t1lib)[source]: Add patches. * gnu/packages/patches/t1lib-CVE-2010-2642.patch, gnu/packages/patches/t1lib-CVE-2011-0764.patch, gnu/packages/patches/t1lib-CVE-2011-1552+CVE-2011-1553+CVE-2011-1554.patch: New variables. * gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30gnu: jansson: Fix CVE-2016-4425.Efraim Flashner
* gnu/packages/web.scm (jansson)[source]: Add patch. * gnu/packages/patches/jansson-CVE-2016-4425.patch: New variable. * gnu/local.mk (dist_patch_DATA): Add it.
2016-05-30gnu: antiword: Fix CVE-2014-8123.Efraim Flashner
* gnu/packages/textutils.scm (antiword)[source]: Add patch. * gnu/packages/patches/antiword-CVE-2014-8123: New variable. * gnu/local.mk (dist_patch_DATA): Add it.
2016-05-30gnu: a2ps: Fix CVE-2001-1593, CVE-2014-0466.Efraim Flashner
* gnu/packages/pretty-print.scm (a2ps)[source]: Add patches. * gnu/packages/patches/a2ps-CVE-2001-1593.patch, gnu/packages/patches/a2ps-CVE-2014-0466.patch: New variables. * gnu/local.mk (dist_patch_DATA): Add them.
2016-05-29gnu: pcre2: Fix CVE-2016-3191.Leo Famulari
* gnu/packages/patches/pcre2-CVE-2016-3191.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/pcre.scm (pcre2): Use it.
2016-05-29gnu: libyaml: Fix CVE-2014-9130.Leo Famulari
* gnu/packages/patches/libyaml-CVE-2014-9130.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/web.scm (libyaml): Use it.
2016-05-29gnu: graphicsmagick: Fix CVE-2016-5118.Leo Famulari
* gnu/packages/patches/graphicsmagick-CVE-2016-5118.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/imagemagick.scm (graphicsmagick): Use it.
2016-05-30gnu: vorbis-tools: Fix CVE-2014-9638, CVE-2014-9639, CVE-2014-9640.Efraim Flashner
* gnu/packages/xiph.scm (vorbis-tools)[source]: Add patches. * gnu/packages/patches/vorbis-tools-CVE-2014-9638+CVE-2014-9639.patch, gnu/packages/patches/vorbis-tools-CVE-2014-9640.patch: New variables. * gnu/local.mk (dist_patch_DATA): Add them.
2016-05-30gnu: libtar: Fix CVE-2013-4420.Efraim Flashner
* gnu/packages/compression.scm (libtar)[source]: Add patch. * gnu/packages/patches/libtar-CVE-2013-4420.patch: New variable. * gnu/local.mk (dist_patch_DATA): Add it. This is a follow-up to 89d80159b1da81c4017b46a575c3ec5dd9a96c90.
2016-05-29gnu: rpm: Fix CVE-2014-8118.Leo Famulari
* gnu/packages/patches/rpm-CVE-2014-8118.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/package-management.scm (rpm): Use it.
2016-05-29gnu: procmail: Fix CVE-2014-3618.Leo Famulari
* gnu/packages/patches/procmail-CVE-2014-3618.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/mail.scm (procmail): Use it.
2016-05-29gnu: lua-5.1: Fix CVE-2014-5461.Efraim Flashner
* gnu/packages/lua.scm (lua-5.1)[source]: Add patch. * gnu/packages/patches/lua-CVE-2014-5461: New file. * gnu/local.mk (dist_patch_DATA): Add it.
2016-05-27gnu: gd: Update to 2.2.1 [fixes CVE-2015-{8874, 8877}].Leo Famulari
* gnu/packages/patches/gd-CVE-2016-3074.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it. * gnu/packages/gd.scm (gd): Update to 2.2.1. [source]: Remove patch. Update source URL.
2016-05-26gnu: rush: Fix CVE-2013-6889.Ludovic Courtès
* gnu/packages/patches/rush-CVE-2013-6889.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/rush.scm (rush): Use it.