From 8e28d22c914122aa7bfb70847370d8ae0f070688 Mon Sep 17 00:00:00 2001 From: Mark H Weaver Date: Tue, 16 Jun 2015 00:59:15 -0400 Subject: gnu: libtiff: Add fixes for several CVEs. * gnu/packages/patches/libtiff-CVE-2012-4564.patch, gnu/packages/patches/libtiff-CVE-2013-1960.patch, gnu/packages/patches/libtiff-CVE-2013-1961.patch, gnu/packages/patches/libtiff-CVE-2013-4231.patch, gnu/packages/patches/libtiff-CVE-2013-4232.patch, gnu/packages/patches/libtiff-CVE-2013-4243.patch, gnu/packages/patches/libtiff-CVE-2013-4244.patch, gnu/packages/patches/libtiff-CVE-2014-8127-pt1.patch, gnu/packages/patches/libtiff-CVE-2014-8127-pt2.patch, gnu/packages/patches/libtiff-CVE-2014-8127-pt3.patch, gnu/packages/patches/libtiff-CVE-2014-8127-pt4.patch, gnu/packages/patches/libtiff-CVE-2014-8128-pt1.patch, gnu/packages/patches/libtiff-CVE-2014-8128-pt2.patch, gnu/packages/patches/libtiff-CVE-2014-8128-pt3.patch, gnu/packages/patches/libtiff-CVE-2014-8128-pt4.patch, gnu/packages/patches/libtiff-CVE-2014-8128-pt5.patch, gnu/packages/patches/libtiff-CVE-2014-8129.patch, gnu/packages/patches/libtiff-CVE-2014-9330.patch, gnu/packages/patches/libtiff-CVE-2014-9655.patch: New files. * gnu-system.am (dist_patch_DATA): Add them. * gnu/packages/image.scm (libtiff)[source]: Add patches. --- gnu-system.am | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) (limited to 'gnu-system.am') diff --git a/gnu-system.am b/gnu-system.am index 9aa4bd1fb6..81d87aeec9 100644 --- a/gnu-system.am +++ b/gnu-system.am @@ -472,6 +472,25 @@ dist_patch_DATA = \ gnu/packages/patches/liboop-mips64-deplibs-fix.patch \ gnu/packages/patches/libmad-mips-newgcc.patch \ gnu/packages/patches/libtheora-config-guess.patch \ + gnu/packages/patches/libtiff-CVE-2012-4564.patch \ + gnu/packages/patches/libtiff-CVE-2013-1960.patch \ + gnu/packages/patches/libtiff-CVE-2013-1961.patch \ + gnu/packages/patches/libtiff-CVE-2013-4231.patch \ + gnu/packages/patches/libtiff-CVE-2013-4232.patch \ + gnu/packages/patches/libtiff-CVE-2013-4243.patch \ + gnu/packages/patches/libtiff-CVE-2013-4244.patch \ + gnu/packages/patches/libtiff-CVE-2014-8127-pt1.patch \ + gnu/packages/patches/libtiff-CVE-2014-8127-pt2.patch \ + gnu/packages/patches/libtiff-CVE-2014-8127-pt3.patch \ + gnu/packages/patches/libtiff-CVE-2014-8127-pt4.patch \ + gnu/packages/patches/libtiff-CVE-2014-8128-pt1.patch \ + gnu/packages/patches/libtiff-CVE-2014-8128-pt2.patch \ + gnu/packages/patches/libtiff-CVE-2014-8128-pt3.patch \ + gnu/packages/patches/libtiff-CVE-2014-8128-pt4.patch \ + gnu/packages/patches/libtiff-CVE-2014-8128-pt5.patch \ + gnu/packages/patches/libtiff-CVE-2014-8129.patch \ + gnu/packages/patches/libtiff-CVE-2014-9330.patch \ + gnu/packages/patches/libtiff-CVE-2014-9655.patch \ gnu/packages/patches/libtool-skip-tests2.patch \ gnu/packages/patches/libssh-CVE-2014-0017.patch \ gnu/packages/patches/libvpx-fix-armhf-link.patch \ -- cgit v1.2.3