guix-devel

Commit Graph

Author	SHA1	Message	Date
Marius Bakke	72e2815d18	Merge branch 'core-updates'	2017-08-26 15:15:49 +02:00
Efraim Flashner	f00e328fd3	gnu: openjpeg: Fix CVE-2017-12982. * gnu/packages/image.scm (openjepg)[source]: Add patch. * gnu/packages/patches/openjpeg-CVE-2017-12982.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it.	2017-08-23 21:07:07 +03:00
Ludovic Courtès	c15374e03d	gnu: libjpeg-turbo: Build reproducibly. * gnu/packages/image.scm (libjpeg-turbo)[arguments]: Add #:configure-flags. Co-authored-by: Z. Ren <zren@dlut.edu.cn>	2017-08-22 15:19:49 +02:00
Marius Bakke	2718a9cd09	Merge branch 'master' into core-updates	2017-08-21 02:40:37 +02:00
Ricardo Wurmus	eb60149eee	gnu: Add r-png. * gnu/packages/image.scm (r-png): New variable.	2017-08-17 17:26:08 +02:00
Julien Lepiller	f207984985	gnu: Add gpick. * gnu/packages/image.scm (gpick): New variable.	2017-08-16 21:37:33 +03:00
Mark H Weaver	3785e42e52	Merge branch 'master' into core-updates	2017-08-11 03:49:24 -04:00
Marius Bakke	c2f93e9c07	gnu: openjpeg: Update to 2.2.0 [security fixes]. In addition to the patches we already had (which are not mentioned in the ChangeLog, but verified by following their respective GitHub issues) this release also fixes CVE-2016-9112, CVE-2016-5139, CVE-2016-5152, CVE-2016-5158, CVE-2016-5159, CVE-2016-1626 and CVE-2016-1628. See <https://github.com/uclouvain/openjpeg/blob/v2.2.0/CHANGELOG.md> for details. * gnu/packages/patches/openjpeg-CVE-2016-9572-CVE-2016-9573.patch, gnu/packages/patches/openjpeg-CVE-2016-9850-CVE-2016-9851.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them. * gnu/packages/image.scm (openjpeg): Update to 2.2.0. [source](patches): Remove. * gnu/packages/gstreamer.scm (gst-plugins-bad)[arguments]: Add phase to patch hard-coded openjpeg-2.1 path.	2017-08-10 22:23:31 +02:00
Mark H Weaver	f167595ba1	Merge branch 'master' into core-updates	2017-08-06 00:23:20 -04:00
Ludovic Courtès	a56bf101c6	gnu: perl: Work around more "dotless @INC" build issues. * gnu/packages/web.scm (perl-www-curl)[arguments]: Add 'set-search-path' phase. * gnu/packages/bioinformatics.scm (ngs-sdk)[arguments]: Augment 'configure' phase to set PERL5LIB. * gnu/packages/image.scm (steghide)[arguments]: Add #:phases argument.	2017-08-05 00:31:26 +02:00
Leo Famulari	696f1d0fb1	gnu: libpng-apng: Be sure to apply the APNG patch. * gnu/packages/image.scm (libpng-apng)[arguments]: Check the return status of the patching procedures.	2017-08-02 11:17:57 -04:00
ng0	e0958c2df8	gnu: libpng-apng: Update to 1.6.28. Fixes <https://bugs.gnu.org/27556>. * gnu/packages/image.scm (libpng-apng): Update to 1.6.28. Remove inherit of 'libpng'. [version]: Use own version, remove 'package-version libpng'. [source]: Don't inherit the source of libpng. [arguments]: Update hash of libpng-apng source. Signed-off-by: Leo Famulari <leo@famulari.name>	2017-08-02 11:10:31 -04:00
Leo Famulari	c8eb2b8c60	Merge branch 'master' into core-updates	2017-07-10 14:37:53 -04:00
Leo Famulari	61adfb00b1	gnu: libtiff: Fix two integer overflows. * gnu/packages/patches/libtiff-tiffycbcrtorgb-integer-overflow.patch, gnu/packages/patches/libtiff-tiffycbcrtorgbinit-integer-overflow.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/image.scm (libtiff-4.0.8)[source]: Use them.	2017-07-10 13:31:58 -04:00
Marius Bakke	ed40e7c5eb	gnu: libjpeg-turbo: Update to 1.5.2. * gnu/packages/image.scm (libjpeg-turbo): Update to 1.5.2. [arguments]<#:phases>: Remove.	2017-07-09 15:12:53 +02:00
Alex Vong	dab536fe1a	gnu: libtiff: Fix CVE-2017-{9936,10688}. * gnu/packages/patches/libtiff-CVE-2017-9936.patch, gnu/packages/patches/libtiff-CVE-2017-10688.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/image.scm (libtiff-4.0.8)[source]: Use them. Signed-off-by: Leo Famulari <leo@famulari.name>	2017-07-07 00:06:37 -04:00
Ludovic Courtès	d5ec5ed719	packages: Mark 'replacement' as an "innate" field. Suggested by Mark H Weaver at <https://lists.gnu.org/archive/html/guix-devel/2017-06/msg00355.html>. * guix/packages.scm (<package>)[replacement]: Mark as "innate". * gnu/packages/base.scm (glibc-2.25-patched, glibc-2.24) (glibc-2.23, glibc-2.22, glibc-2.21, glibc-locales): Remove 'replacement' field, which was set to #f. * gnu/packages/commencement.scm (perl-boot0): Likewise. * gnu/packages/fontutils.scm (graphite2/fixed): Likewise. * gnu/packages/ghostscript.scm (ghostscript/fixed): Likewise. * gnu/packages/gnupg.scm (libgcrypt-1.7.8): Likewise. * gnu/packages/guile.scm (guile-2.0/fixed, guile-2.2): Likewise. * gnu/packages/icu4c.scm (icu4c/fixed): Likewise. * gnu/packages/image.scm (libpng-apng): Likewise. * gnu/packages/make-bootstrap.scm (%guile-static): Likewise. * gnu/packages/pcre.scm (pcre/fixed): Likewise. * gnu/packages/perl.scm (perl/fixed): Likewise. * gnu/packages/ruby.scm (ruby-2.3, ruby-2.2, ruby-2.1) (ruby-1.8): Likewise. * gnu/packages/tls.scm (gnutls-3.5.13, gnutls/guile-2.2): Likewise. * gnu/packages/xml.scm (expat-2.2.1): Likewise.	2017-07-03 23:51:22 +02:00
Mark H Weaver	ed068b960e	Merge branch 'master' into core-updates	2017-06-26 00:00:58 -04:00
Leo Famulari	d17e085a59	gnu: Remove libwmf. This package contains many security vulnerabilities and is no longer maintained upstream. See this discussion for more information: https://lists.gnu.org/archive/html/guix-devel/2017-05/msg00478.html * gnu/packages/image.scm (libwmf): Remove variable. * gnu/packages/wv.scm (wv)[inputs]: Remove libwmf. [arguments]: Remove field. * gnu/packages/abiword.scm (abiword)[inputs]: Remove libwmf. [source]: Remove patch 'abiword-wmf-version-lookup-fix.patch'. * gnu/packages/patches/abiword-wmf-version-lookup-fix.patch, gnu/packages/patches/libwmf-CAN-2004-0941.patch, gnu/packages/patches/libwmf-CVE-2006-3376.patch, gnu/packages/patches/libwmf-CVE-2007-0455.patch, gnu/packages/patches/libwmf-CVE-2007-2756.patch, gnu/packages/patches/libwmf-CVE-2007-3472.patch, gnu/packages/patches/libwmf-CVE-2007-3473.patch, gnu/packages/patches/libwmf-CVE-2007-3477.patch, gnu/packages/patches/libwmf-CVE-2009-1364.patch, gnu/packages/patches/libwmf-CVE-2009-3546.patch, gnu/packages/patches/libwmf-CVE-2015-0848+CVE-2015-4588.patch, gnu/packages/patches/libwmf-CVE-2015-4695.patch, gnu/packages/patches/libwmf-CVE-2015-4696.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.	2017-06-24 23:10:28 -04:00
Arun Isaac	148585c240	gnu: Move contents of zip module into compression module. * gnu/packages/zip.scm (zip, unzip, zziplib, perl-zip): Move to... * gnu/packages/compression.scm: ...here. * gnu/packages/zip.scm: Delete file. * gnu/local.mk (GNU_SYSTEM_MODULES): Unregister deleted file. * po/packages/POTFILES.in: Unregister deleted file. * gnu/packages/{audio, avr, bioinformatics, busybox, cdrom, ci, compression, docbook, documentation, fonts, fpga, game-development, games, gl, gnome, gnuzilla, graphics, guile, haskell, image, java, kodi, ldc, libreoffice, markup, maths, mc, monitoring, music, php, pretty-print, python, scheme, smalltalk, statistics, synergy, tex, textutils, video, web-browsers, xml, zip}.scm, guix/build-system/{ant, font}.scm, guix/{download, packages}.scm: Adapt module import.	2017-06-20 18:10:35 +05:30
Mark H Weaver	9d4385634d	Merge branch 'master' into core-updates	2017-06-18 02:36:51 -04:00
Tobias Geerinckx-Rice	340502ba80	gnu: leptonica: Update to 1.74.4. * gnu/packages/image.scm (leptonica): Update to 1.74.4.	2017-06-16 17:57:02 +02:00
Leo Famulari	a6aff3528c	gnu: libtiff: Build with the default compiler. The relevant bug has been fixed and this special-case workaround is no longer necessary. * gnu/packages/image.scm (libtiff)[native-inputs]: Remove field.	2017-06-15 11:51:59 -04:00
Leo Famulari	14c7790f1a	gnu: libtiff: Fix several bugs related to improper codec usage [security fixes]. This commit applies the patch to the libtiff package, not the grafting replacement. * gnu/packages/patches/libtiff-tiffgetfield-bugs.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff)[source]: Use it.	2017-06-15 11:51:59 -04:00
Leo Famulari	8d138ea087	gnu: libtiff: Fix several bugs related to improper codec usage [security fixes]. Fixes CVE-2014-8128, CVE-2015-7554, CVE-2016-5318, CVE-2016-10095, and the other bugs listed in 'libtiff-tiffgetfield-bugs.patch'. * gnu/packages/patches/libtiff-tiffgetfield-bugs.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (libtiff-4.0.8)[source]: Use it.	2017-06-15 11:28:21 -04:00
Marius Bakke	f66ea7b8de	gnu: exiv2: Update to 0.26. * gnu/packages/image.scm (exiv2): Update to 0.26. [source]: Add new download location.	2017-06-11 15:42:52 +02:00
Marius Bakke	d0c45d2d82	Merge branch 'master' into core-updates Conflicts: gnu/packages/image.scm (incorporated libtiff graft)	2017-06-03 17:51:21 +02:00
Leo Famulari	4a897c4990	gnu: jasper: Update to 2.0.13. * gnu/packages/image.scm (jasper): Update to 2.0.13. [source]: Use GitHub URL and set the file-name. Remove 'jasper-CVE-2017-6850.patch'. * gnu/packages/patches/jasper-CVE-2017-6850.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.	2017-05-29 12:52:30 -04:00
Ludovic Courtès	0b8e89f6bb	gnu: libtiff@4.0.8: Fix source URL. * gnu/packages/image.scm (libtiff-4.0.8)[origin]: Use 'ftp://' not 'http://'.	2017-05-29 11:52:19 +02:00
Leo Famulari	22e6656d25	gnu: libtiff: Update replacement to 4.0.8 [security fixes]. See 'ChangeLog' in the source distribution for more information about the bugs and security issues fixed in this release. * gnu/packages/image.scm (libtiff)[replacement]: Replace with libtiff-4.0.8. (libtiff/fixed): Replace with ... (libtiff-4.0.8): New variable. * gnu/packages/patches/libtiff-CVE-2017-7593.patch, gnu/packages/patches/libtiff-CVE-2017-7594.patch, gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them.	2017-05-28 14:34:43 -04:00
Ricardo Wurmus	d1a914082b	Merge branch 'master' into core-updates	2017-05-24 12:05:47 +02:00
Leo Famulari	10cb88f85c	gnu: jbig2dec: Fix CVE-2017-{7885,7975,7976}. * gnu/packages/patches/jbig2dec-CVE-2017-7885.patch, gnu/packages/patches/jbig2dec-CVE-2017-7975.patch, gnu/packages/patches/jbig2dec-CVE-2017-7976.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/image.scm (jbig2dec)[source]: Use them.	2017-05-20 16:26:29 -04:00
Hartmut Goebel	2f8b9c4648	gnu: Add pngcrunch. * gnu/packages/image.scm (pngcrunch): New variable.	2017-05-09 20:08:30 +02:00
Kei Kebreau	484f7a8862	gnu: libtiff: Add fixes several security flaws. Fixes CVE-2017-{7593, 7594, 7595, 7596, 7597, 7598, 7599, 7600, 7601, 7602}. * gnu/packages/patches/libtiff-CVE-2017-7593.patch, gnu/packages/patches/libtiff-CVE-2017-7594.patch, gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: New files. * gnu/local.mk (dist_patch_DATA): Add them. * gnu/packages/image.scm (libtiff)[replacement]: New field. (libtiff/fixed): New variable.	2017-05-07 06:57:53 -04:00
Marius Bakke	1aa78816f9	gnu: imlib2: Update to 1.4.10. * gnu/packages/image.scm (imlib2): Update to 1.4.10.	2017-04-21 15:36:37 +02:00
Efraim Flashner	0eb0fe2d30	gnu: jasper: Fixx CVE-2017-6850. * gnu/packages/image.scm (jasper)[source]: Add patch. * gnu/packages/patches/jasper-CVE-2017-6850.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it.	2017-04-12 06:19:56 +03:00
Leo Famulari	8fda37bca1	gnu: libpng: Update to 1.6.29. * gnu/packages/image.scm (libpng): Update to 1.6.29.	2017-04-06 23:23:46 -04:00
Leo Famulari	9167488490	gnu: jbig2dec: Fix CVE-2016-9601. * gnu/packages/patches/jbig2dec-CVE-2016-9601.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (jbig2dec)[source]: Use it.	2017-04-02 19:38:56 -04:00
Marius Bakke	77ab6983a1	gnu: devil: Update to 1.8.0. * gnu/packages/patches/devil-CVE-2009-3994.patch, gnu/packages/patches/devil-fix-libpng.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them. * gnu/packages/image.scm (devil): Update to 1.8.0. [source]: Remove patches and snippet. [build-system]: Change to CMAKE-BUILD-SYSTEM. [arguments]: Disable tests. Remove #:configure-flags and add a 'change-directory' phase. Remove 'fix-tests' phase. [inputs]: Change LIBJPEG to LIBJPEG-TURBO.	2017-03-24 00:12:00 +01:00
Ricardo Wurmus	dc8a34ed46	gnu: freeimage: Fix build with GCC 5. * gnu/packages/patches/freeimage-fix-build-with-gcc-5.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. * gnu/packages/image.scm (freeimage)[source]: Add patch.	2017-03-22 14:45:44 +01:00
Efraim Flashner	378de69c59	Merge remote-tracking branch 'origin/master' into core-updates	2017-03-22 12:57:37 +02:00
Efraim Flashner	60092c181c	gnu: zimg: Update to 2.5. * gnu/packages/image.scm (zimg): Update to 2.5.	2017-03-21 22:35:32 +02:00
Leo Famulari	957699ee92	gnu: openjpeg: Remove obsolete patches. * gnu/packages/patches/openjpeg-CVE-2016-5157.patch, gnu/packages/patches/openjpeg-CVE-2016-7163.patch: Delete files. * gnu/local.mk (dist_patch_DATA): Remove them. * gnu/packages/image.scm (openjpeg)[source]: Remove them.	2017-03-20 18:24:58 -04:00
Mark H Weaver	f67337e23e	Merge branch 'master' into core-updates	2017-03-19 18:52:12 -04:00
Ricardo Wurmus	f729a4d8b2	gnu: niftilib: Simplify build phases. * gnu/packages/image.scm (niftilib)[arguments]: Use make-flags instead of replacing "configure" phase; simplify "install" phase.	2017-03-19 14:26:33 +01:00
John Darrington	21122bd79e	gnu: Add niftilib. * gnu/packages/image.scm (niftilib): New variable.	2017-03-18 15:25:59 +01:00
Marius Bakke	2a047d59e0	gnu: libwebp: Update to 0.6.0. * gnu/packages/image.scm (libwebp): Update to 0.6.0. [source]: Remove patch. * gnu/packages/patches/libwebp-CVE-2016-9085.patch: Delete file. * gnu/local.mk (dist_patch_DATA): Remove it.	2017-03-17 20:41:15 +01:00
Kei Kebreau	8f98581613	gnu: libpng-apng: Remove unnecessary call to libtool. * gnu/packages/image.scm (libpng-apng)[phases]: Remove it.	2017-03-17 11:36:27 -04:00
ng0	114a325e8f	gnu: Add libpng-apng. * gnu/packages/image.scm (libpng-apng): New variable. Co-authored-by: Kei Kebreau <kei@openmailbox.org>	2017-03-17 11:25:15 -04:00
Ludovic Courtès	e90e0fad1b	Merge branch 'master' into core-updates	2017-03-09 16:35:41 +01:00

1 2 3 4 5

203 Commits (b1c699c4c0fd4764d14086a5a1bb060c619d2329)