Age | Commit message (Expand) | Author |
2017-07-07 | gnu: libtiff: Fix CVE-2017-{9936,10688}....* gnu/packages/patches/libtiff-CVE-2017-9936.patch,
gnu/packages/patches/libtiff-CVE-2017-10688.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff-4.0.8)[source]: Use them.
Signed-off-by: Leo Famulari <leo@famulari.name>
| Alex Vong |
2017-07-03 | packages: Mark 'replacement' as an "innate" field....Suggested by Mark H Weaver
at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>.
* guix/packages.scm (<package>)[replacement]: Mark as "innate".
* gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24)
(glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove
'replacement' field, which was set to #f.
* gnu/packages/commencement.scm (perl-boot0): Likewise.
* gnu/packages/fontutils.scm (graphite2/fixed): Likewise.
* gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise.
* gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise.
* gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise.
* gnu/packages/icu4c.scm (icu4c/fixed): Likewise.
* gnu/packages/image.scm (libpng-apng): Likewise.
* gnu/packages/make-bootstrap.scm (%guile-static): Likewise.
* gnu/packages/pcre.scm (pcre/fixed): Likewise.
* gnu/packages/perl.scm (perl/fixed): Likewise.
* gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1)
(ruby-1.8): Likewise.
* gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise.
* gnu/packages/xml.scm (expat-2.2.1): Likewise.
| Ludovic Courtès |
2017-06-24 | gnu: Remove libwmf....This package contains many security vulnerabilities and is no longer maintained
upstream. See this discussion for more information:
https://lists.gnu.org/archive/html/guix-devel/2017-05/msg00478.html
* gnu/packages/image.scm (libwmf): Remove variable.
* gnu/packages/wv.scm (wv)[inputs]: Remove libwmf.
[arguments]: Remove field.
* gnu/packages/abiword.scm (abiword)[inputs]: Remove libwmf.
[source]: Remove patch 'abiword-wmf-version-lookup-fix.patch'.
* gnu/packages/patches/abiword-wmf-version-lookup-fix.patch,
gnu/packages/patches/libwmf-CAN-2004-0941.patch,
gnu/packages/patches/libwmf-CVE-2006-3376.patch,
gnu/packages/patches/libwmf-CVE-2007-0455.patch,
gnu/packages/patches/libwmf-CVE-2007-2756.patch,
gnu/packages/patches/libwmf-CVE-2007-3472.patch,
gnu/packages/patches/libwmf-CVE-2007-3473.patch,
gnu/packages/patches/libwmf-CVE-2007-3477.patch,
gnu/packages/patches/libwmf-CVE-2009-1364.patch,
gnu/packages/patches/libwmf-CVE-2009-3546.patch,
gnu/packages/patches/libwmf-CVE-2015-0848+CVE-2015-4588.patch,
gnu/packages/patches/libwmf-CVE-2015-4695.patch,
gnu/packages/patches/libwmf-CVE-2015-4696.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
| Leo Famulari |
2017-06-20 | gnu: Move contents of zip module into compression module....* gnu/packages/zip.scm (zip, unzip, zziplib, perl-zip): Move to...
* gnu/packages/compression.scm: ...here.
* gnu/packages/zip.scm: Delete file.
* gnu/local.mk (GNU_SYSTEM_MODULES): Unregister deleted file.
* po/packages/POTFILES.in: Unregister deleted file.
* gnu/packages/{audio, avr, bioinformatics, busybox, cdrom, ci, compression,
docbook, documentation, fonts, fpga, game-development, games, gl, gnome,
gnuzilla, graphics, guile, haskell, image, java, kodi, ldc, libreoffice,
markup, maths, mc, monitoring, music, php, pretty-print, python, scheme,
smalltalk, statistics, synergy, tex, textutils, video, web-browsers, xml,
zip}.scm, guix/build-system/{ant, font}.scm, guix/{download, packages}.scm:
Adapt module import.
| Arun Isaac |
2017-06-16 | gnu: leptonica: Update to 1.74.4....* gnu/packages/image.scm (leptonica): Update to 1.74.4.
| Tobias Geerinckx-Rice |
2017-06-15 | gnu: libtiff: Fix several bugs related to improper codec usage [security fixes]....Fixes CVE-2014-8128, CVE-2015-7554, CVE-2016-5318, CVE-2016-10095, and
the other bugs listed in 'libtiff-tiffgetfield-bugs.patch'.
* gnu/packages/patches/libtiff-tiffgetfield-bugs.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libtiff-4.0.8)[source]: Use it.
| Leo Famulari |
2017-06-11 | gnu: exiv2: Update to 0.26....* gnu/packages/image.scm (exiv2): Update to 0.26.
[source]: Add new download location.
| Marius Bakke |
2017-05-29 | gnu: jasper: Update to 2.0.13....* gnu/packages/image.scm (jasper): Update to 2.0.13.
[source]: Use GitHub URL and set the file-name. Remove
'jasper-CVE-2017-6850.patch'.
* gnu/packages/patches/jasper-CVE-2017-6850.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
| Leo Famulari |
2017-05-29 | gnu: libtiff@4.0.8: Fix source URL....* gnu/packages/image.scm (libtiff-4.0.8)[origin]: Use 'ftp://' not
'http://'.
| Ludovic Courtès |
2017-05-28 | gnu: libtiff: Update replacement to 4.0.8 [security fixes]....See 'ChangeLog' in the source distribution for more information about
the bugs and security issues fixed in this release.
* gnu/packages/image.scm (libtiff)[replacement]: Replace with libtiff-4.0.8.
(libtiff/fixed): Replace with ...
(libtiff-4.0.8): New variable.
* gnu/packages/patches/libtiff-CVE-2017-7593.patch,
gnu/packages/patches/libtiff-CVE-2017-7594.patch,
gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
| Leo Famulari |
2017-05-20 | gnu: jbig2dec: Fix CVE-2017-{7885,7975,7976}....* gnu/packages/patches/jbig2dec-CVE-2017-7885.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7975.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7976.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (jbig2dec)[source]: Use them.
| Leo Famulari |
2017-05-09 | gnu: Add pngcrunch....* gnu/packages/image.scm (pngcrunch): New variable.
| Hartmut Goebel |
2017-05-07 | gnu: libtiff: Add fixes several security flaws....Fixes CVE-2017-{7593, 7594, 7595, 7596, 7597, 7598, 7599, 7600, 7601, 7602}.
* gnu/packages/patches/libtiff-CVE-2017-7593.patch,
gnu/packages/patches/libtiff-CVE-2017-7594.patch,
gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff)[replacement]: New field.
(libtiff/fixed): New variable.
| Kei Kebreau |
2017-04-21 | gnu: imlib2: Update to 1.4.10....* gnu/packages/image.scm (imlib2): Update to 1.4.10.
| Marius Bakke |
2017-04-12 | gnu: jasper: Fixx CVE-2017-6850....* gnu/packages/image.scm (jasper)[source]: Add patch.
* gnu/packages/patches/jasper-CVE-2017-6850.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
| Efraim Flashner |
2017-04-02 | gnu: jbig2dec: Fix CVE-2016-9601....* gnu/packages/patches/jbig2dec-CVE-2016-9601.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (jbig2dec)[source]: Use it.
| Leo Famulari |
2017-03-24 | gnu: devil: Update to 1.8.0....* gnu/packages/patches/devil-CVE-2009-3994.patch,
gnu/packages/patches/devil-fix-libpng.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (devil): Update to 1.8.0.
[source]: Remove patches and snippet.
[build-system]: Change to CMAKE-BUILD-SYSTEM.
[arguments]: Disable tests. Remove #:configure-flags and add a
'change-directory' phase. Remove 'fix-tests' phase.
[inputs]: Change LIBJPEG to LIBJPEG-TURBO.
| Marius Bakke |
2017-03-22 | gnu: freeimage: Fix build with GCC 5....* gnu/packages/patches/freeimage-fix-build-with-gcc-5.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (freeimage)[source]: Add patch.
| Ricardo Wurmus |
2017-03-22 | Merge remote-tracking branch 'origin/master' into core-updates | Efraim Flashner |
2017-03-21 | gnu: zimg: Update to 2.5....* gnu/packages/image.scm (zimg): Update to 2.5.
| Efraim Flashner |
2017-03-20 | gnu: openjpeg: Remove obsolete patches....* gnu/packages/patches/openjpeg-CVE-2016-5157.patch,
gnu/packages/patches/openjpeg-CVE-2016-7163.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (openjpeg)[source]: Remove them.
| Leo Famulari |
2017-03-19 | Merge branch 'master' into core-updates | Mark H Weaver |
2017-03-19 | gnu: niftilib: Simplify build phases....* gnu/packages/image.scm (niftilib)[arguments]: Use make-flags instead of
replacing "configure" phase; simplify "install" phase.
| Ricardo Wurmus |
2017-03-18 | gnu: Add niftilib....* gnu/packages/image.scm (niftilib): New variable.
| John Darrington |
2017-03-17 | gnu: libwebp: Update to 0.6.0....* gnu/packages/image.scm (libwebp): Update to 0.6.0.
[source]: Remove patch.
* gnu/packages/patches/libwebp-CVE-2016-9085.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
| Marius Bakke |
2017-03-17 | gnu: libpng-apng: Remove unnecessary call to libtool....* gnu/packages/image.scm (libpng-apng)[phases]: Remove it.
| Kei Kebreau |
2017-03-17 | gnu: Add libpng-apng....* gnu/packages/image.scm (libpng-apng): New variable.
Co-authored-by: Kei Kebreau <kei@openmailbox.org>
| ng0 |
2017-03-09 | Merge branch 'master' into core-updates | Ludovic Courtès |
2017-03-03 | gnu: jasper: Update to 2.0.12....* gnu/packages/image.scm (jasper): Update to 2.0.12.
| Marius Bakke |
2017-02-20 | gnu: libpng: Update to 1.6.28....* gnu/packages/image.scm (libpng): Update to 1.6.28.
[source]: Remove patch.
* gnu/packages/patches/libpng-CVE-2016-10087.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove it.
| Efraim Flashner |
2017-02-20 | gnu: libpng: Update source urls....* gnu/packages/image.scm (libpng)[source]: Add 'history' location for
older versions.
| Efraim Flashner |
2017-01-25 | gnu: openjpeg: Incorporate grafted changes....* gnu/packages/image.scm (openjpeg)[replacement]: Remove field.
[source]: Update to 2.1.2. Add patches
'openjpeg-CVE-2016-9850-CVE-2016-9851.patch' and
'openjpeg-CVE-2016-9572-CVE-2016-9573.patch'.
(openjpeg-1)[replacement]: Remove field.
(openjpeg-2.1.2): Remove variable.
| Leo Famulari |
2017-01-25 | gnu: libtiff: Incorporate grafted patches....* gnu/packages/image.scm (libtiff)[replacement]: Remove field.
[source]: Add patches from libtiff/fixed.
(libtiff/fixed): Remove variable.
| Leo Famulari |
2017-01-25 | gnu: libpng: Incorporate grafted patch....* gnu/packages/image.scm (libpng)[replacement]: Remove field.
[source]: Add patch 'libpng-CVE-2016-10087.patch'.
(libpng-1.2)[replacement]: Remove field.
(libpng/fixed): Remove variable.
| Leo Famulari |
2017-01-24 | gnu: openjpeg: Fix CVE-2016-{9572,9573}....* gnu/packages/patches/openjpeg-CVE-2016-9572-CVE-2016-9573.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (openjpeg-2.1.2)[source]: Use it.
| Leo Famulari |
2017-01-23 | gnu: libtiff: Fix CVE-2017-5225....* gnu/packages/patches/libtiff-CVE-2017-5225.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libtiff/fixed)[source]: Use it.
| Leo Famulari |
2017-01-10 | gnu: libtiff: Fix CVE-2016-{10092,10093,10094} and others....* gnu/packages/patches/libtiff-CVE-2016-10092.patch,
gnu/packages/patches/libtiff-CVE-2016-10093.patch,
gnu/packages/patches/libtiff-CVE-2016-10094.patch,
gnu/packages/patches/libtiff-assertion-failure.patch,
gnu/packages/patches/libtiff-divide-by-zero-ojpeg.patch,
gnu/packages/patches/libtiff-divide-by-zero-tiffcp.patch,
gnu/packages/patches/libtiff-divide-by-zero-tiffcrop.patch,
gnu/packages/patches/libtiff-divide-by-zero.patch,
gnu/packages/patches/libtiff-heap-overflow-pixarlog-luv.patch,
gnu/packages/patches/libtiff-heap-overflow-tif-dirread.patch,
gnu/packages/patches/libtiff-heap-overflow-tiffcp.patch,
gnu/packages/patches/libtiff-heap-overflow-tiffcrop.patch,
gnu/packages/patches/libtiff-invalid-read.patch,
gnu/packages/patches/libtiff-null-dereference.patch,
gnu/packages/patches/libtiff-tiffcp-underflow.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff)[replacement]: New field.
(libtiff/fixed): New variable.
| Leo Famulari |
2017-01-04 | gnu: Use HTTPS for all sourceforge.net home pages....* gnu/packages/admin.scm (mingetty, clusterssh)[home-page]: Use HTTPS.
* gnu/packages/audio.scm (libbs2b, soxr)[home-page]: Likewise.
* gnu/packages/bioinformatics.scm (bless)[home-page]: Likewise.
* gnu/packages/display-managers.scm (slim)[home-page]: Likewise.
* gnu/packages/games.scm (extremetuxracer)[home-page]: Likewise.
* gnu/packages/ghostscript.scm (gs-fonts)[home-page]: Likewise.
* gnu/packages/haskell.scm (ghc-regex-base, ghc-regex-posix,
ghc-regex-compat)[home-page]: Likewise.
* gnu/packages/image.scm (imlib2)[home-page]: Likewise.
* gnu/packages/libreoffice.scm (librevenge, libcmis, libodfgen, libmwaw)
[home-page]: Likewise.
* gnu/packages/linux.scm (hdparm, acpid, libavc1394, rng-tools)
[home-page]: Likewise.
* gnu/packages/mail.scm (esmtp)[home-page]: Likewise.
* gnu/packages/mp3.scm (ripperx)[home-page]: Likewise.
* gnu/packages/onc-rpc.scm (libtirpc)[home-page]: Likewise.
* gnu/packages/perl.scm (perl-czplib)[home-page]: Likewise.
* gnu/packages/python.scm (python-pyasn1-modules)[home-page]: Likewise.
* gnu/packages/xdisorg.scm (xosd)[home-page]: Likewise.
| Tobias Geerinckx-Rice |
2017-01-02 | gnu: jasper: Update to 2.0.10....* gnu/packages/image.scm (jasper): Update to 2.0.10.
| Efraim Flashner |
2016-12-30 | gnu: libpng: Mention CVE-2016-10087....* gnu/packages/patches/libpng-fix-null-ptr-dereference.patch: Rename to ...
* gnu/packages/patches/libpng-CVE-2016-10087.patch: ... this.
* gnu/local.mk (dist_patch_DATA): Adjust.
* gnu/packages/image.scm (libpng/fixed)[source]: Use renamed patch.
| Leo Famulari |
2016-12-29 | gnu: libpng-1.2: Update to 1.2.57 [security update]....* gnu/packages/image.scm (libpng-1.2): Update to 1.2.57.
[replacement]: New field.
| Leo Famulari |
2016-12-29 | gnu: libpng: Fix a null pointer dereference [fixes security issue]....* gnu/packages/patches/libpng-fix-null-ptr-dereference.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libpng)[replacement]: New field.
(libpng/fixed): New variable.
| Leo Famulari |
2016-12-25 | gnu: leptonica: Update to 1.74.0....* gnu/packages/image.scm (leptonica): Update to 1.74.0.
Signed-off-by: Marius Bakke <mbakke@fastmail.com>
| Taylan Ulrich Bayırlı/Kammer |
2016-12-13 | gnu: libjpeg-turbo: Fix typo....This is a followup to commit e90a706e1686aaf3a1004683be8a3f3a4cbaf22e.
* gnu/packages/image.scm (libjpeg-turbo): Remove extra "\".
| Alex Kost |
2016-12-13 | gnu: libjpeg-turbo: Fix build on mips....* gnu/packages/image.scm (libjpeg-turbo)[arguments]: Add substitution to
set variable type before use.
| Efraim Flashner |
2016-12-11 | Merge branch 'staging' | Leo Famulari |
2016-12-11 | gnu: openjpeg-2.1.2: Use a meaningful file-name for the source code....This is a followup to commit 0e8b7b1c351a2307bfc33211b4d76dbe7dfa01ef.
* gnu/packages/image.scm (openjpeg-2.1.2)[source]: Give a meaningful
file-name.
| Leo Famulari |
2016-12-11 | gnu: openjpeg: Update replacement to 2.1.2 [fixes CVE-2016-{7445,8332}]....* gnu/packages/image.scm (openjpeg/fixed): Replace variable with ...
(openjpeg-2.1.2): ... this.
[patches]: Remove patches inherited from openjpeg.
(openjpeg)[replacement]: Replace with openjpeg-2.1.2.
| Leo Famulari |
2016-12-10 | Merge branch 'master' into staging | Mark H Weaver |
2016-12-10 | gnu: openjpeg: Add fixes for CVE-2016-{9850,9851}....* gnu/packages/image.scm (openjpeg)[replacement]: New field.
(openjpeg/fixed): New variable, patch against CVE-2016-9850,
CVE-2016-9851.
* gnu/packages/patches/openjpeg-CVE-2016-9850-CVE-2016-9851.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
| Efraim Flashner |