Commit Graph

284 Commits

Author SHA1 Message Date
Hartmut Goebel 7ac43c44e8
gnu: giflib: Make "reallocarray" private, solve glibc@2.26 conflict.
Rename the function and move the declaration from gif_lib.h to
gif_lib_private.h to solve conflicts when some .c-file #includes
both stdlib.h and gif_lib.h.
See also https://sourceforge.net/p/giflib/bugs/110/

* gnu/packages/patches/giflib-make-reallocarray-private.patch: New
  file
* gnu/local.mk (dist_patch_DATA): Register it.
* gnu/packages/image.scm(giflib)[source](patches): New field.
2018-03-08 09:05:52 +01:00
Leo Famulari bc806b0c12
gnu: Add libiptcdata.
* gnu/packages/image.scm (libiptcdata): New variable.
2018-02-26 17:05:46 -05:00
Efraim Flashner cd5e084342
gnu: imlib2: Update to 1.5.0.
* gnu/packages/image.scm (imlib2): Update to 1.5.0.
2018-02-24 22:00:17 +02:00
Tobias Geerinckx-Rice bbf8832f16
gnu: optipng: Update to 0.7.7 [security fixes].
This release claims to fix 2 vulnerabilities:
- ‘an integer overflow vulnerability in the TIFF decoder’
  (CVE-2017-1000229, previously patched in Guix), and
- ‘a buffer overflow vulnerability in the GIF decoder’.

* gnu/packages/image.scm (optipng): Update to 0.7.7.
[source]: Remove patch.
[arguments]: Substitute INVOKE for SYSTEM* and end phase with #t.
* gnu/packages/patches/optipng-CVE-2017-1000229.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2018-02-23 16:00:04 +01:00
Mark H Weaver a7fb298665
Merge branch 'master' into core-updates 2018-02-11 04:05:07 -05:00
Leo Famulari 79cf105304
gnu: libtiff: Fix CVE-2017-{9935,11335,18013}.
* gnu/packages/patches/libtiff-CVE-2017-9935.patch,
gnu/packages/patches/libtiff-CVE-2017-11335.patch,
gnu/packages/patches/libtiff-CVE-2017-18013.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff)[replacement]: New field.
(libtiff/fixed): New variable.
2018-02-10 22:58:19 -05:00
Leo Famulari 9d7d8e7181
gnu: libtiff: Download over HTTP.
* gnu/packages/image.scm (libtiff)[source]: Use HTTP URL.
2018-01-03 13:32:30 -05:00
Marius Bakke 32cd878be0
Merge branch 'master' into core-updates 2017-12-19 01:42:40 +01:00
Marius Bakke 2ea3333504
gnu: libjpeg-turbo: Update to 1.5.3.
* gnu/packages/image.scm (libjpeg-turbo): Update to 1.5.3.
2017-12-18 23:25:20 +01:00
Marius Bakke 77181815ae
Merge branch 'master' into core-updates 2017-12-05 23:41:30 +01:00
Marius Bakke d0d666f97b
gnu: libwebp: Update to 0.6.1.
* gnu/packages/image.scm (libwebp): Update to 0.6.1.
2017-12-03 15:39:00 +01:00
Leo Famulari 2fc4709368
gnu: libtiff: Update to 4.0.9.
* gnu/packages/image.scm (libtiff): Update to 4.0.9.
[source]: Remove obsolete patches.
* gnu/packages/patches/libtiff-CVE-2016-10688.patch,
gnu/packages/patches/libtiff-CVE-2017-9936.patch,
gnu/packages/patches/libtiff-tiffgetfield-bugs.patch,
gnu/packages/patches/libtiff-tiffycbcrtorgb-integer-overflow.patch,
gnu/packages/patches/libtiff-tiffycbcrtorgbinit-integer-overflow.patch: Delete
files.
* gnu/local.mk (dist_patch_DATA): Remove them.
2017-11-30 16:35:44 -05:00
Arun Isaac 2235abb2a2
gnu: gpick: Use scons-build-system.
* gnu/packages/image.scm (gpick): Switch to scons-build-system.
2017-11-30 18:19:31 +05:30
Marius Bakke 0e7fb0cd9b
gnu: optipng: Fix CVE-2017-1000229.
* gnu/packages/image.scm (optipng)[source](patches): New field.
* gnu/packages/patches/optipng-CVE-2017-1000229.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-11-29 12:53:08 +01:00
Tobias Geerinckx-Rice 7832785def
gnu: steghide: Fix description.
* gnu/packages/image.scm (steghide)[description]: Remove typos and improve
grammar.
2017-11-27 17:07:12 +01:00
nee 1ee13e01c8
gnu: image: Rename pngcrunch to pngcrush and update it.
* gnu/packages/image.scm (pngcrush): Renamed from pngcrunch.
[version]: update to 1.8.13.
[arguments]: Use the nolib Makefile.
[origin]: Use the no-lib tar.
[home-page]: update to the new website.
(pngcrunch): New deprecation variable.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>
2017-11-26 17:36:26 +01:00
Leo Famulari ef56fdc18d
gnu: jbig2dec: Update to 0.14.
* gnu/packages/image.scm (jbi2dec): Update to 0.14.
[source]: Remove obsolete patches.
* gnu/packages/patches/jbig2dec-CVE-2016-9601.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7885.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7975.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7976.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/patches/jbig2dec-ignore-testtest.patch: Update for new release.
2017-11-25 10:23:38 -05:00
Marius Bakke 2dd12924cf
Merge branch 'master' into core-updates 2017-11-19 15:01:00 +01:00
Ricardo Wurmus ac257f127a
gnu: Move testing packages from python.scm to check.scm.
* gnu/packages/python.scm (python-behave-web-api, python2-behave-web-api,
python-mock, python2-mock, python-mock-2, python-nose, python2-nose,
python-nose2, python2-nose2, python-unittest2, python2-unittest2,
python-pytest, python2-pytest, python-pytest-3.0, python2-pytest-3.0,
python-pytest-cov, python2-pytest-cov, python-pytest-runner,
python2-pytest-runner, python-pytest-mock, python2-pytest-mock,
python-pytest-xdist, python2-pytest-xdist, python-scripttest,
python2-scripttest, python-testtools, python2-testtools, python-testscenarios,
python2-testscenarios, python-testresources, python2-testresources,
python-subunit, python2-subunit, python-fixtures, python2-fixtures,
python-testrepository, python2-testrepository, python-coverage,
python2-coverage, python-cov-core, python2-cov-core, python-testpath,
python2-testpath, python-testlib, python2-testlib, python-pytest-cache,
python2-pytest-cache, python-pytest-localserver, python-pytest-xprocess,
python-pytest-subtesthack, python2-pytest-subtesthack, python-hypothesis,
python2-hypothesis, python-lit, python2-lit, python-pytest-pep8,
python2-pytest-pep8, python-pytest-flakes, python2-pytest-flakes,
python2-coverage-test-runner, python-pylint, python2-pylint,
python-paramunittest, python2-python-paramunittest, python-pytest-warnings,
python2-pytest-warnings, python-pytest-capturelog, python2-pytest-capturelog,
python-pytest-catchlog, python2-pytest-catchlog, python-nosexcover,
python2-nosexcover, python-discover, python2-discover, behave, python-rednose,
python2-rednose, python-nose-randomly, python2-nose-randomly,
python-nose-timer, python2-nose-timer): Move from here...
* gnu/packages/check.scm: ...to here.
* gnu/packages/admin.scm,
gnu/packages/android.scm,
gnu/packages/backup.scm,
gnu/packages/bioinformatics.scm,
gnu/packages/calendar.scm,
gnu/packages/dav.scm,
gnu/packages/django.scm,
gnu/packages/freedesktop.scm,
gnu/packages/haskell.scm,
gnu/packages/image.scm,
gnu/packages/irc.scm,
gnu/packages/jrnl.scm,
gnu/packages/ldc.scm,
gnu/packages/libffi.scm,
gnu/packages/mail.scm,
gnu/packages/mpd.scm,
gnu/packages/openstack.scm,
gnu/packages/package-management.scm,
gnu/packages/password-utils.scm,
gnu/packages/python-crypto.scm,
gnu/packages/python-web.scm,
gnu/packages/rdf.scm,
gnu/packages/statistics.scm,
gnu/packages/storage.scm,
gnu/packages/time.scm,
gnu/packages/tls.scm,
gnu/packages/tor.scm,
gnu/packages/tryton.scm: Adjust accordingly.
2017-11-17 22:36:26 +01:00
Efraim Flashner 19b7bba1b5
Merge remote-tracking branch 'origin/master' into core-updates 2017-11-01 10:29:59 +02:00
Marius Bakke 4119376d66
gnu: exiv2: Add upstream security fixes.
Fixes CVE-2017-14859, CVE-2017-14860, CVE-2017-14862 and CVE-2017-14864.

* gnu/packages/patches/exiv2-CVE-2017-14859-14862-14864.patch,
gnu/packages/patches/exiv2-CVE-2017-14860.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
* gnu/packages/image.scm (exiv2)[source]: Use them.
2017-10-27 00:50:09 +02:00
Leo Famulari f19d9db538
gnu: libpng: Update to 1.6.34.
* gnu/packages/image.scm (libpng): Update to 1.6.34.
2017-10-24 15:56:33 -04:00
Marius Bakke 832735965d
gnu: vigra: Update to 1.11.1.
* gnu/packages/image.scm (vigra): Update 1.11.1.
[source]<uri>: Don't hard-code version.
[home-page]: Change to <https://ukoethe.github.io/vigra/>.
2017-10-10 18:38:01 +02:00
Marius Bakke 3f697ff2e8
gnu: openjpeg: Update to 2.3.0.
* gnu/packages/patches/openjpeg-CVE-2017-12982.patch,
gnu/packages/patches/openjpeg-CVE-2017-14040.patch,
gnu/packages/patches/openjpeg-CVE-2017-14041.patch,
gnu/packages/patches/openjpeg-CVE-2017-14151.patch,
gnu/packages/patches/openjpeg-CVE-2017-14152.patch,
gnu/packages/patches/openjpeg-CVE-2017-14164.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (openjpeg): Update to 2.3.0.
[source](patches): Remove.
* gnu/packages/gstreamer.scm (gst-plugins-bad)[arguments]: Adjust openjpeg
substitution.
2017-10-05 20:28:32 +02:00
Leo Famulari 6cdd8c97b7
gnu: libpng@1.2: Update to 1.2.59.
* gnu/packages/image.scm (libpng-1.2): Update to 1.2.59.
2017-10-05 10:42:36 -04:00
Marius Bakke 4c7ad0bc6c
gnu: jasper: Update to 2.0.14.
* gnu/packages/image.scm (jasper): Update to 2.0.14.
2017-09-17 17:14:12 +02:00
Efraim Flashner 338b58e0ea
gnu: openjpeg: Fix CVE-2017-14164.
* gnu/packages/image.scm (openjpeg)[source]: Add patch.
* gnu/packages/patches/openjpeg-CVE-2017-14164.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-09-10 22:00:35 +03:00
Efraim Flashner 3b7c606965
gnu: openjpeg: Fix CVE-2017-14151, CVE-2017-14152.
* gnu/packages/image.scm (openjpeg)[source]: Add patches.
* gnu/packages/patches/openjpeg-CVE-2017-14151.patch,
gnu/packages/patches/openjpeg-CVE-2017-14152.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
2017-09-06 14:20:40 +03:00
Kei Kebreau d536113df0
gnu: openjpeg: Fix CVE-2017-{14040,14041}.
* gnu/packages/image.scm (openjpeg)[source]: Add patches.
* gnu/packages/patches/openjpeg-CVE-2017-14040.patch,
gnu/packages/patches/openjpeg-CVE-2017-14041.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.
2017-09-02 10:21:03 -04:00
Maxim Cournoyer f306825da8
gnu: exiv2: Update source checksum.
The source archive was updated in place; only a cleanup of non functional
files was done (see: https://debbugs.gnu.org/cgi/bugreport.cgi?bug=28326).

* gnu/packages/image.scm (exiv2)[source]: Update hash.

Signed-off-by: Marius Bakke <mbakke@fastmail.com>
2017-09-02 10:40:42 +02:00
Kei Kebreau 3c8ba11a97
Update e-mail for Kei Kebreau.
* .mailmap: Map kei@openmailbox.org to current address.
* gnu/local.mk: Replace kei@openmailbox.org to current address.
* gnu/packages/backup.scm: Likewise.
* gnu/packages/calendar.scm: Likewise.
* gnu/packages/check.scm: Likewise.
* gnu/packages/compression.scm: Likewise.
* gnu/packages/documentation.scm: Likewise.
* gnu/packages/emacs.scm: Likewise.
* gnu/packages/fltk.scm: Likewise.
* gnu/packages/freedesktop.scm: Likewise.
* gnu/packages/game-development.scm: Likewise.
* gnu/packages/games.scm: Likewise.
* gnu/packages/gnome.scm: Likewise.
* gnu/packages/gnustep.scm: Likewise.
* gnu/packages/gtk.scm: Likewise.
* gnu/packages/hexedit.scm: Likewise.
* gnu/packages/image.scm: Likewise.
* gnu/packages/maths.scm: Likewise.
* gnu/packages/music.scm: Likewise.
* gnu/packages/xfce.scm: Likewise.
* gnu/packages/python.scm: Likewise.
* gnu/packages/tcl.scm: Likewise.
* gnu/packages/textutils.scm: Likewise.
* gnu/packages/video.scm: Likewise.
* gnu/packages/w3m.scm: Likewise.
* gnu/packages/web.scm: Likewise.
* gnu/packages/web-browsers.scm: Likewise.
* gnu/packages/patches/wmfire-update-for-new-gdk-versions.patch: Likewise.
2017-08-29 20:13:24 -04:00
Marius Bakke 72e2815d18
Merge branch 'core-updates' 2017-08-26 15:15:49 +02:00
Efraim Flashner f00e328fd3
gnu: openjpeg: Fix CVE-2017-12982.
* gnu/packages/image.scm (openjepg)[source]: Add patch.
* gnu/packages/patches/openjpeg-CVE-2017-12982.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-08-23 21:07:07 +03:00
Ludovic Courtès c15374e03d
gnu: libjpeg-turbo: Build reproducibly.
* gnu/packages/image.scm (libjpeg-turbo)[arguments]: Add #:configure-flags.

Co-authored-by: Z. Ren <zren@dlut.edu.cn>
2017-08-22 15:19:49 +02:00
Marius Bakke 2718a9cd09
Merge branch 'master' into core-updates 2017-08-21 02:40:37 +02:00
Ricardo Wurmus eb60149eee
gnu: Add r-png.
* gnu/packages/image.scm (r-png): New variable.
2017-08-17 17:26:08 +02:00
Julien Lepiller f207984985
gnu: Add gpick.
* gnu/packages/image.scm (gpick): New variable.
2017-08-16 21:37:33 +03:00
Mark H Weaver 3785e42e52
Merge branch 'master' into core-updates 2017-08-11 03:49:24 -04:00
Marius Bakke c2f93e9c07
gnu: openjpeg: Update to 2.2.0 [security fixes].
In addition to the patches we already had (which are not mentioned in the
ChangeLog, but verified by following their respective GitHub issues) this
release also fixes CVE-2016-9112, CVE-2016-5139, CVE-2016-5152, CVE-2016-5158,
CVE-2016-5159, CVE-2016-1626 and CVE-2016-1628.

See <https://github.com/uclouvain/openjpeg/blob/v2.2.0/CHANGELOG.md> for details.

* gnu/packages/patches/openjpeg-CVE-2016-9572-CVE-2016-9573.patch,
  gnu/packages/patches/openjpeg-CVE-2016-9850-CVE-2016-9851.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (openjpeg): Update to 2.2.0.
[source](patches): Remove.
* gnu/packages/gstreamer.scm (gst-plugins-bad)[arguments]: Add phase to patch
hard-coded openjpeg-2.1 path.
2017-08-10 22:23:31 +02:00
Mark H Weaver f167595ba1
Merge branch 'master' into core-updates 2017-08-06 00:23:20 -04:00
Ludovic Courtès a56bf101c6
gnu: perl: Work around more "dotless @INC" build issues.
* gnu/packages/web.scm (perl-www-curl)[arguments]: Add 'set-search-path'
phase.
* gnu/packages/bioinformatics.scm (ngs-sdk)[arguments]: Augment
'configure' phase to set PERL5LIB.
* gnu/packages/image.scm (steghide)[arguments]: Add #:phases argument.
2017-08-05 00:31:26 +02:00
Leo Famulari 696f1d0fb1
gnu: libpng-apng: Be sure to apply the APNG patch.
* gnu/packages/image.scm (libpng-apng)[arguments]: Check the return status of
the patching procedures.
2017-08-02 11:17:57 -04:00
ng0 e0958c2df8
gnu: libpng-apng: Update to 1.6.28.
Fixes <https://bugs.gnu.org/27556>.

* gnu/packages/image.scm (libpng-apng): Update to 1.6.28.
Remove inherit of 'libpng'.
[version]: Use own version, remove 'package-version libpng'.
[source]: Don't inherit the source of libpng.
[arguments]: Update hash of libpng-apng source.

Signed-off-by: Leo Famulari <leo@famulari.name>
2017-08-02 11:10:31 -04:00
Leo Famulari c8eb2b8c60
Merge branch 'master' into core-updates 2017-07-10 14:37:53 -04:00
Leo Famulari 61adfb00b1
gnu: libtiff: Fix two integer overflows.
* gnu/packages/patches/libtiff-tiffycbcrtorgb-integer-overflow.patch,
gnu/packages/patches/libtiff-tiffycbcrtorgbinit-integer-overflow.patch:
New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff-4.0.8)[source]: Use them.
2017-07-10 13:31:58 -04:00
Marius Bakke ed40e7c5eb
gnu: libjpeg-turbo: Update to 1.5.2.
* gnu/packages/image.scm (libjpeg-turbo): Update to 1.5.2.
[arguments]<#:phases>: Remove.
2017-07-09 15:12:53 +02:00
Alex Vong dab536fe1a
gnu: libtiff: Fix CVE-2017-{9936,10688}.
* gnu/packages/patches/libtiff-CVE-2017-9936.patch,
gnu/packages/patches/libtiff-CVE-2017-10688.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff-4.0.8)[source]: Use them.

Signed-off-by: Leo Famulari <leo@famulari.name>
2017-07-07 00:06:37 -04:00
Ludovic Courtès d5ec5ed719
packages: Mark 'replacement' as an "innate" field.
Suggested by Mark H Weaver
at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>.

* guix/packages.scm (<package>)[replacement]: Mark as "innate".
* gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24)
(glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove
'replacement' field, which was set to #f.
* gnu/packages/commencement.scm (perl-boot0): Likewise.
* gnu/packages/fontutils.scm (graphite2/fixed): Likewise.
* gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise.
* gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise.
* gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise.
* gnu/packages/icu4c.scm (icu4c/fixed): Likewise.
* gnu/packages/image.scm (libpng-apng): Likewise.
* gnu/packages/make-bootstrap.scm (%guile-static): Likewise.
* gnu/packages/pcre.scm (pcre/fixed): Likewise.
* gnu/packages/perl.scm (perl/fixed): Likewise.
* gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1)
(ruby-1.8): Likewise.
* gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise.
* gnu/packages/xml.scm (expat-2.2.1): Likewise.
2017-07-03 23:51:22 +02:00
Mark H Weaver ed068b960e
Merge branch 'master' into core-updates 2017-06-26 00:00:58 -04:00
Leo Famulari d17e085a59
gnu: Remove libwmf.
This package contains many security vulnerabilities and is no longer maintained
upstream. See this discussion for more information:

https://lists.gnu.org/archive/html/guix-devel/2017-05/msg00478.html

* gnu/packages/image.scm (libwmf): Remove variable.
* gnu/packages/wv.scm (wv)[inputs]: Remove libwmf.
[arguments]: Remove field.
* gnu/packages/abiword.scm (abiword)[inputs]: Remove libwmf.
[source]: Remove patch 'abiword-wmf-version-lookup-fix.patch'.
* gnu/packages/patches/abiword-wmf-version-lookup-fix.patch,
gnu/packages/patches/libwmf-CAN-2004-0941.patch,
gnu/packages/patches/libwmf-CVE-2006-3376.patch,
gnu/packages/patches/libwmf-CVE-2007-0455.patch,
gnu/packages/patches/libwmf-CVE-2007-2756.patch,
gnu/packages/patches/libwmf-CVE-2007-3472.patch,
gnu/packages/patches/libwmf-CVE-2007-3473.patch,
gnu/packages/patches/libwmf-CVE-2007-3477.patch,
gnu/packages/patches/libwmf-CVE-2009-1364.patch,
gnu/packages/patches/libwmf-CVE-2009-3546.patch,
gnu/packages/patches/libwmf-CVE-2015-0848+CVE-2015-4588.patch,
gnu/packages/patches/libwmf-CVE-2015-4695.patch,
gnu/packages/patches/libwmf-CVE-2015-4696.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
2017-06-24 23:10:28 -04:00
Arun Isaac 148585c240
gnu: Move contents of zip module into compression module.
* gnu/packages/zip.scm (zip, unzip, zziplib, perl-zip): Move to...
* gnu/packages/compression.scm: ...here.
* gnu/packages/zip.scm: Delete file.
* gnu/local.mk (GNU_SYSTEM_MODULES): Unregister deleted file.
* po/packages/POTFILES.in: Unregister deleted file.
* gnu/packages/{audio, avr, bioinformatics, busybox, cdrom, ci, compression,
docbook, documentation, fonts, fpga, game-development, games, gl, gnome,
gnuzilla, graphics, guile, haskell, image, java, kodi, ldc, libreoffice,
markup, maths, mc, monitoring, music, php, pretty-print, python, scheme,
smalltalk, statistics, synergy, tex, textutils, video, web-browsers, xml,
zip}.scm, guix/build-system/{ant, font}.scm, guix/{download, packages}.scm:
Adapt module import.
2017-06-20 18:10:35 +05:30
Mark H Weaver 9d4385634d
Merge branch 'master' into core-updates 2017-06-18 02:36:51 -04:00
Tobias Geerinckx-Rice 340502ba80
gnu: leptonica: Update to 1.74.4.
* gnu/packages/image.scm (leptonica): Update to 1.74.4.
2017-06-16 17:57:02 +02:00
Leo Famulari a6aff3528c
gnu: libtiff: Build with the default compiler.
The relevant bug has been fixed and this special-case workaround is no longer
necessary.

* gnu/packages/image.scm (libtiff)[native-inputs]: Remove field.
2017-06-15 11:51:59 -04:00
Leo Famulari 14c7790f1a
gnu: libtiff: Fix several bugs related to improper codec usage [security fixes].
This commit applies the patch to the libtiff package, not the grafting
replacement.

* gnu/packages/patches/libtiff-tiffgetfield-bugs.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libtiff)[source]: Use it.
2017-06-15 11:51:59 -04:00
Leo Famulari 8d138ea087
gnu: libtiff: Fix several bugs related to improper codec usage [security fixes].
Fixes CVE-2014-8128, CVE-2015-7554, CVE-2016-5318, CVE-2016-10095, and
the other bugs listed in 'libtiff-tiffgetfield-bugs.patch'.

* gnu/packages/patches/libtiff-tiffgetfield-bugs.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libtiff-4.0.8)[source]: Use it.
2017-06-15 11:28:21 -04:00
Marius Bakke f66ea7b8de
gnu: exiv2: Update to 0.26.
* gnu/packages/image.scm (exiv2): Update to 0.26.
[source]: Add new download location.
2017-06-11 15:42:52 +02:00
Marius Bakke d0c45d2d82
Merge branch 'master' into core-updates
Conflicts:
	gnu/packages/image.scm
        (incorporated libtiff graft)
2017-06-03 17:51:21 +02:00
Leo Famulari 4a897c4990
gnu: jasper: Update to 2.0.13.
* gnu/packages/image.scm (jasper): Update to 2.0.13.
[source]: Use GitHub URL and set the file-name. Remove
'jasper-CVE-2017-6850.patch'.
* gnu/packages/patches/jasper-CVE-2017-6850.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-05-29 12:52:30 -04:00
Ludovic Courtès 0b8e89f6bb
gnu: libtiff@4.0.8: Fix source URL.
* gnu/packages/image.scm (libtiff-4.0.8)[origin]: Use 'ftp://' not
'http://'.
2017-05-29 11:52:19 +02:00
Leo Famulari 22e6656d25
gnu: libtiff: Update replacement to 4.0.8 [security fixes].
See 'ChangeLog' in the source distribution for more information about
the bugs and security issues fixed in this release.

* gnu/packages/image.scm (libtiff)[replacement]: Replace with libtiff-4.0.8.
(libtiff/fixed): Replace with ...
(libtiff-4.0.8): New variable.
* gnu/packages/patches/libtiff-CVE-2017-7593.patch,
gnu/packages/patches/libtiff-CVE-2017-7594.patch,
gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
2017-05-28 14:34:43 -04:00
Ricardo Wurmus d1a914082b
Merge branch 'master' into core-updates 2017-05-24 12:05:47 +02:00
Leo Famulari 10cb88f85c
gnu: jbig2dec: Fix CVE-2017-{7885,7975,7976}.
* gnu/packages/patches/jbig2dec-CVE-2017-7885.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7975.patch,
gnu/packages/patches/jbig2dec-CVE-2017-7976.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (jbig2dec)[source]: Use them.
2017-05-20 16:26:29 -04:00
Hartmut Goebel 2f8b9c4648
gnu: Add pngcrunch.
* gnu/packages/image.scm (pngcrunch): New variable.
2017-05-09 20:08:30 +02:00
Kei Kebreau 484f7a8862
gnu: libtiff: Add fixes several security flaws.
Fixes CVE-2017-{7593, 7594, 7595, 7596, 7597, 7598, 7599, 7600, 7601, 7602}.

* gnu/packages/patches/libtiff-CVE-2017-7593.patch,
gnu/packages/patches/libtiff-CVE-2017-7594.patch,
gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff)[replacement]: New field.
(libtiff/fixed): New variable.
2017-05-07 06:57:53 -04:00
Marius Bakke 1aa78816f9
gnu: imlib2: Update to 1.4.10.
* gnu/packages/image.scm (imlib2): Update to 1.4.10.
2017-04-21 15:36:37 +02:00
Efraim Flashner 0eb0fe2d30
gnu: jasper: Fixx CVE-2017-6850.
* gnu/packages/image.scm (jasper)[source]: Add patch.
* gnu/packages/patches/jasper-CVE-2017-6850.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.
2017-04-12 06:19:56 +03:00
Leo Famulari 8fda37bca1
gnu: libpng: Update to 1.6.29.
* gnu/packages/image.scm (libpng): Update to 1.6.29.
2017-04-06 23:23:46 -04:00
Leo Famulari 9167488490
gnu: jbig2dec: Fix CVE-2016-9601.
* gnu/packages/patches/jbig2dec-CVE-2016-9601.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (jbig2dec)[source]: Use it.
2017-04-02 19:38:56 -04:00
Marius Bakke 77ab6983a1
gnu: devil: Update to 1.8.0.
* gnu/packages/patches/devil-CVE-2009-3994.patch,
gnu/packages/patches/devil-fix-libpng.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (devil): Update to 1.8.0.
[source]: Remove patches and snippet.
[build-system]: Change to CMAKE-BUILD-SYSTEM.
[arguments]: Disable tests. Remove #:configure-flags and add a
'change-directory' phase. Remove 'fix-tests' phase.
[inputs]: Change LIBJPEG to LIBJPEG-TURBO.
2017-03-24 00:12:00 +01:00
Ricardo Wurmus dc8a34ed46
gnu: freeimage: Fix build with GCC 5.
* gnu/packages/patches/freeimage-fix-build-with-gcc-5.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (freeimage)[source]: Add patch.
2017-03-22 14:45:44 +01:00
Efraim Flashner 378de69c59
Merge remote-tracking branch 'origin/master' into core-updates 2017-03-22 12:57:37 +02:00
Efraim Flashner 60092c181c
gnu: zimg: Update to 2.5.
* gnu/packages/image.scm (zimg): Update to 2.5.
2017-03-21 22:35:32 +02:00
Leo Famulari 957699ee92
gnu: openjpeg: Remove obsolete patches.
* gnu/packages/patches/openjpeg-CVE-2016-5157.patch,
gnu/packages/patches/openjpeg-CVE-2016-7163.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (openjpeg)[source]: Remove them.
2017-03-20 18:24:58 -04:00
Mark H Weaver f67337e23e
Merge branch 'master' into core-updates 2017-03-19 18:52:12 -04:00
Ricardo Wurmus f729a4d8b2
gnu: niftilib: Simplify build phases.
* gnu/packages/image.scm (niftilib)[arguments]: Use make-flags instead of
replacing "configure" phase; simplify "install" phase.
2017-03-19 14:26:33 +01:00
John Darrington 21122bd79e
gnu: Add niftilib.
* gnu/packages/image.scm (niftilib): New variable.
2017-03-18 15:25:59 +01:00
Marius Bakke 2a047d59e0
gnu: libwebp: Update to 0.6.0.
* gnu/packages/image.scm (libwebp): Update to 0.6.0.
[source]: Remove patch.
* gnu/packages/patches/libwebp-CVE-2016-9085.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-03-17 20:41:15 +01:00
Kei Kebreau 8f98581613
gnu: libpng-apng: Remove unnecessary call to libtool.
* gnu/packages/image.scm (libpng-apng)[phases]: Remove it.
2017-03-17 11:36:27 -04:00
ng0 114a325e8f
gnu: Add libpng-apng.
* gnu/packages/image.scm (libpng-apng): New variable.

Co-authored-by: Kei Kebreau <kei@openmailbox.org>
2017-03-17 11:25:15 -04:00
Ludovic Courtès e90e0fad1b
Merge branch 'master' into core-updates 2017-03-09 16:35:41 +01:00
Marius Bakke aa6738ddb6
gnu: jasper: Update to 2.0.12.
* gnu/packages/image.scm (jasper): Update to 2.0.12.
2017-03-03 17:11:02 +01:00
Efraim Flashner 864738baaa
gnu: libpng: Update to 1.6.28.
* gnu/packages/image.scm (libpng): Update to 1.6.28.
[source]: Remove patch.
* gnu/packages/patches/libpng-CVE-2016-10087.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove it.
2017-02-20 10:54:25 +02:00
Efraim Flashner 913059a120
gnu: libpng: Update source urls.
* gnu/packages/image.scm (libpng)[source]: Add 'history' location for
older versions.
2017-02-20 09:35:06 +02:00
Leo Famulari 66707558b6
gnu: openjpeg: Incorporate grafted changes.
* gnu/packages/image.scm (openjpeg)[replacement]: Remove field.
[source]: Update to 2.1.2. Add patches
'openjpeg-CVE-2016-9850-CVE-2016-9851.patch' and
'openjpeg-CVE-2016-9572-CVE-2016-9573.patch'.
(openjpeg-1)[replacement]: Remove field.
(openjpeg-2.1.2): Remove variable.
2017-01-25 13:23:26 -05:00
Leo Famulari 29705bc29f
gnu: libtiff: Incorporate grafted patches.
* gnu/packages/image.scm (libtiff)[replacement]: Remove field.
[source]: Add patches from libtiff/fixed.
(libtiff/fixed): Remove variable.
2017-01-25 13:23:26 -05:00
Leo Famulari 9b1bb70904
gnu: libpng: Incorporate grafted patch.
* gnu/packages/image.scm (libpng)[replacement]: Remove field.
[source]: Add patch 'libpng-CVE-2016-10087.patch'.
(libpng-1.2)[replacement]: Remove field.
(libpng/fixed): Remove variable.
2017-01-25 13:23:25 -05:00
Leo Famulari 0769cea697
gnu: openjpeg: Fix CVE-2016-{9572,9573}.
* gnu/packages/patches/openjpeg-CVE-2016-9572-CVE-2016-9573.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (openjpeg-2.1.2)[source]: Use it.
2017-01-24 16:19:03 -05:00
Leo Famulari 62cf8fa7cd
gnu: libtiff: Fix CVE-2017-5225.
* gnu/packages/patches/libtiff-CVE-2017-5225.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libtiff/fixed)[source]: Use it.
2017-01-23 02:13:38 -05:00
Leo Famulari 4b96149d8b
gnu: libtiff: Fix CVE-2016-{10092,10093,10094} and others.
* gnu/packages/patches/libtiff-CVE-2016-10092.patch,
gnu/packages/patches/libtiff-CVE-2016-10093.patch,
gnu/packages/patches/libtiff-CVE-2016-10094.patch,
gnu/packages/patches/libtiff-assertion-failure.patch,
gnu/packages/patches/libtiff-divide-by-zero-ojpeg.patch,
gnu/packages/patches/libtiff-divide-by-zero-tiffcp.patch,
gnu/packages/patches/libtiff-divide-by-zero-tiffcrop.patch,
gnu/packages/patches/libtiff-divide-by-zero.patch,
gnu/packages/patches/libtiff-heap-overflow-pixarlog-luv.patch,
gnu/packages/patches/libtiff-heap-overflow-tif-dirread.patch,
gnu/packages/patches/libtiff-heap-overflow-tiffcp.patch,
gnu/packages/patches/libtiff-heap-overflow-tiffcrop.patch,
gnu/packages/patches/libtiff-invalid-read.patch,
gnu/packages/patches/libtiff-null-dereference.patch,
gnu/packages/patches/libtiff-tiffcp-underflow.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff)[replacement]: New field.
(libtiff/fixed): New variable.
2017-01-10 17:52:42 -05:00
Tobias Geerinckx-Rice 3b3b60d037
gnu: Use HTTPS for all sourceforge.net home pages.
* gnu/packages/admin.scm (mingetty, clusterssh)[home-page]: Use HTTPS.
* gnu/packages/audio.scm (libbs2b, soxr)[home-page]: Likewise.
* gnu/packages/bioinformatics.scm (bless)[home-page]: Likewise.
* gnu/packages/display-managers.scm (slim)[home-page]: Likewise.
* gnu/packages/games.scm (extremetuxracer)[home-page]: Likewise.
* gnu/packages/ghostscript.scm (gs-fonts)[home-page]: Likewise.
* gnu/packages/haskell.scm (ghc-regex-base, ghc-regex-posix,
ghc-regex-compat)[home-page]: Likewise.
* gnu/packages/image.scm (imlib2)[home-page]: Likewise.
* gnu/packages/libreoffice.scm (librevenge, libcmis, libodfgen, libmwaw)
[home-page]: Likewise.
* gnu/packages/linux.scm (hdparm, acpid, libavc1394, rng-tools)
[home-page]: Likewise.
* gnu/packages/mail.scm (esmtp)[home-page]: Likewise.
* gnu/packages/mp3.scm (ripperx)[home-page]: Likewise.
* gnu/packages/onc-rpc.scm (libtirpc)[home-page]: Likewise.
* gnu/packages/perl.scm (perl-czplib)[home-page]: Likewise.
* gnu/packages/python.scm (python-pyasn1-modules)[home-page]: Likewise.
* gnu/packages/xdisorg.scm (xosd)[home-page]: Likewise.
2017-01-04 05:14:22 +01:00
Efraim Flashner 4b50daab00
gnu: jasper: Update to 2.0.10.
* gnu/packages/image.scm (jasper): Update to 2.0.10.
2017-01-02 21:48:38 +02:00
Leo Famulari 858b9afeaf
gnu: libpng: Mention CVE-2016-10087.
* gnu/packages/patches/libpng-fix-null-ptr-dereference.patch: Rename to ...
* gnu/packages/patches/libpng-CVE-2016-10087.patch: ... this.
* gnu/local.mk (dist_patch_DATA): Adjust.
* gnu/packages/image.scm (libpng/fixed)[source]: Use renamed patch.
2016-12-30 14:33:21 -05:00
Leo Famulari fc604eda3d
gnu: libpng-1.2: Update to 1.2.57 [security update].
* gnu/packages/image.scm (libpng-1.2): Update to 1.2.57.
[replacement]: New field.
2016-12-29 13:41:43 -05:00
Leo Famulari 322e724bfa
gnu: libpng: Fix a null pointer dereference [fixes security issue].
* gnu/packages/patches/libpng-fix-null-ptr-dereference.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/image.scm (libpng)[replacement]: New field.
(libpng/fixed): New variable.
2016-12-29 13:36:00 -05:00
Taylan Ulrich Bayırlı/Kammer d02fb7cec6
gnu: leptonica: Update to 1.74.0.
* gnu/packages/image.scm (leptonica): Update to 1.74.0.

Signed-off-by: Marius Bakke <mbakke@fastmail.com>
2016-12-25 13:48:57 +01:00
Alex Kost bee075e706
gnu: libjpeg-turbo: Fix typo.
This is a followup to commit e90a706e16.

* gnu/packages/image.scm (libjpeg-turbo): Remove extra "\".
2016-12-13 19:56:07 +03:00
Efraim Flashner e90a706e16
gnu: libjpeg-turbo: Fix build on mips.
* gnu/packages/image.scm (libjpeg-turbo)[arguments]: Add substitution to
set variable type before use.
2016-12-13 11:15:32 +02:00
Leo Famulari 4a990395d7
Merge branch 'staging' 2016-12-11 15:03:52 -05:00
Leo Famulari 5ce09ef18f
gnu: openjpeg-2.1.2: Use a meaningful file-name for the source code.
This is a followup to commit 0e8b7b1c35.

* gnu/packages/image.scm (openjpeg-2.1.2)[source]: Give a meaningful
file-name.
2016-12-11 02:25:16 -05:00