From ca8c1d3c22e72e640980d5320ce89b31a0061a9b Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Thu, 1 Sep 2022 20:01:13 +0000 Subject: [PATCH] Thu Sep 1 20:01:13 UTC 2022 patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txz: Rebuilt. [PATCH] JBIG2Stream: Fix crash on broken file. For more information, see: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860 (* Security fix *) --- ChangeLog.rss | 36 ++++- ChangeLog.txt | 16 ++ FILELIST.TXT | 102 ++++++------ ...txt => curl-7.85.0-x86_64-1_slack15.0.txt} | 0 .../poppler-21.12.0-x86_64-2_slack15.0.txt | 11 ++ ...4e9d9696ee2bc063910a6c9a6b27c5184a52.patch | 29 ++++ patches/source/poppler/poppler.SlackBuild | 147 ++++++++++++++++++ patches/source/poppler/slack-desc | 19 +++ recompress.sh | 1 + 9 files changed, 312 insertions(+), 49 deletions(-) rename patches/packages/{curl-7.84.0-x86_64-1_slack15.0.txt => curl-7.85.0-x86_64-1_slack15.0.txt} (100%) create mode 100644 patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txt create mode 100644 patches/source/poppler/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch create mode 100755 patches/source/poppler/poppler.SlackBuild create mode 100644 patches/source/poppler/slack-desc diff --git a/ChangeLog.rss b/ChangeLog.rss index b963a7d61..8a335b449 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,9 +11,41 @@ Tracking Slackware development in git. en-us urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f - Tue, 30 Aug 2022 19:39:30 GMT - Wed, 31 Aug 2022 11:29:49 GMT + Thu, 1 Sep 2022 20:01:13 GMT + Fri, 2 Sep 2022 11:29:54 GMT maintain_current_git.sh v 1.17 + + Thu, 1 Sep 2022 20:01:13 GMT + Thu, 1 Sep 2022 20:01:13 GMT + https://git.slackware.nl/current/tag/?h=20220901200113 + 20220901200113 + + +patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txz: Rebuilt. + [PATCH] JBIG2Stream: Fix crash on broken file. + For more information, see: + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860 + (* Security fix *) + ]]> + + + + Thu, 1 Sep 2022 03:08:39 GMT + Thu, 1 Sep 2022 03:08:39 GMT + https://git.slackware.nl/current/tag/?h=20220901030839 + 20220901030839 + + +patches/packages/curl-7.85.0-x86_64-1_slack15.0.txz: Upgraded. + This update fixes a security issue: + control code in cookie denial of service. + For more information, see: + https://curl.se/docs/CVE-2022-35252.html + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252 + (* Security fix *) + ]]> + + Tue, 30 Aug 2022 19:39:30 GMT Tue, 30 Aug 2022 19:39:30 GMT diff --git a/ChangeLog.txt b/ChangeLog.txt index 379073ada..e04052b3b 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,19 @@ +Thu Sep 1 20:01:13 UTC 2022 +patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txz: Rebuilt. + [PATCH] JBIG2Stream: Fix crash on broken file. + For more information, see: + http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30860 + (* Security fix *) ++--------------------------+ +Thu Sep 1 03:08:39 UTC 2022 +patches/packages/curl-7.85.0-x86_64-1_slack15.0.txz: Upgraded. + This update fixes a security issue: + control code in cookie denial of service. + For more information, see: + https://curl.se/docs/CVE-2022-35252.html + https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-35252 + (* Security fix *) ++--------------------------+ Tue Aug 30 19:39:30 UTC 2022 extra/sendmail/sendmail-8.17.1-x86_64-4_slack15.0.txz: Rebuilt. Patched sendmail.h to fix SASL auth. Thanks to af7567. diff --git a/FILELIST.TXT b/FILELIST.TXT index f6d0bacf6..4e8687b0b 100644 --- a/FILELIST.TXT +++ b/FILELIST.TXT @@ -1,20 +1,20 @@ -Tue Aug 30 19:42:43 UTC 2022 +Thu Sep 1 20:04:29 UTC 2022 Here is the file list for this directory. If you are using a mirror site and find missing or extra files in the disk subdirectories, please have the archive administrator refresh the mirror. -drwxr-xr-x 12 root root 4096 2022-08-30 19:39 . +drwxr-xr-x 12 root root 4096 2022-09-01 20:01 . -rw-r--r-- 1 root root 5767 2022-02-02 22:44 ./ANNOUNCE.15.0 -rw-r--r-- 1 root root 16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT --rw-r--r-- 1 root root 1148134 2022-08-26 04:06 ./CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-08-26 04:06 ./CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 1148224 2022-09-01 03:14 ./CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-09-01 03:14 ./CHECKSUMS.md5.asc -rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING -rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3 -rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT -rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT --rw-r--r-- 1 root root 1925265 2022-08-30 19:39 ./ChangeLog.txt +-rw-r--r-- 1 root root 1925919 2022-09-01 20:01 ./ChangeLog.txt drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi @@ -25,7 +25,7 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh -rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg -rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg --rw-r--r-- 1 root root 1498899 2022-08-26 04:06 ./FILELIST.TXT +-rw-r--r-- 1 root root 1499006 2022-09-01 03:14 ./FILELIST.TXT -rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY -rw-r--r-- 1 root root 864745 2022-02-02 08:25 ./PACKAGES.TXT -rw-r--r-- 1 root root 8034 2022-02-02 03:36 ./README.TXT @@ -738,13 +738,13 @@ drwxr-xr-x 2 root root 4096 2008-05-07 05:21 ./pasture/source/php/pear -rwxr-xr-x 1 root root 9448 2018-05-16 22:38 ./pasture/source/php/php.SlackBuild -rw-r--r-- 1 root root 775 2017-07-07 19:25 ./pasture/source/php/php.ini-development.diff.gz -rw-r--r-- 1 root root 830 2005-12-09 05:18 ./pasture/source/php/slack-desc -drwxr-xr-x 4 root root 4096 2022-08-30 19:42 ./patches --rw-r--r-- 1 root root 44462 2022-08-30 19:42 ./patches/CHECKSUMS.md5 --rw-r--r-- 1 root root 163 2022-08-30 19:42 ./patches/CHECKSUMS.md5.asc --rw-r--r-- 1 root root 59645 2022-08-30 19:42 ./patches/FILE_LIST --rw-r--r-- 1 root root 11254587 2022-08-30 19:42 ./patches/MANIFEST.bz2 --rw-r--r-- 1 root root 34149 2022-08-30 19:42 ./patches/PACKAGES.TXT -drwxr-xr-x 3 root root 16384 2022-08-30 19:42 ./patches/packages +drwxr-xr-x 4 root root 4096 2022-09-01 20:04 ./patches +-rw-r--r-- 1 root root 45025 2022-09-01 20:04 ./patches/CHECKSUMS.md5 +-rw-r--r-- 1 root root 163 2022-09-01 20:04 ./patches/CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 60395 2022-09-01 20:04 ./patches/FILE_LIST +-rw-r--r-- 1 root root 11269324 2022-09-01 20:04 ./patches/MANIFEST.bz2 +-rw-r--r-- 1 root root 34859 2022-09-01 20:04 ./patches/PACKAGES.TXT +drwxr-xr-x 3 root root 16384 2022-09-01 20:04 ./patches/packages -rw-r--r-- 1 root root 327 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txt -rw-r--r-- 1 root root 10716 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txz -rw-r--r-- 1 root root 163 2022-02-15 05:07 ./patches/packages/aaa_base-15.0-x86_64-4_slack15.0.txz.asc @@ -766,9 +766,9 @@ drwxr-xr-x 3 root root 16384 2022-08-30 19:42 ./patches/packages -rw-r--r-- 1 root root 642 2022-05-26 17:50 ./patches/packages/cups-2.4.2-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 1587868 2022-05-26 17:50 ./patches/packages/cups-2.4.2-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2022-05-26 17:50 ./patches/packages/cups-2.4.2-x86_64-1_slack15.0.txz.asc --rw-r--r-- 1 root root 552 2022-06-27 19:18 ./patches/packages/curl-7.84.0-x86_64-1_slack15.0.txt --rw-r--r-- 1 root root 1309516 2022-06-27 19:18 ./patches/packages/curl-7.84.0-x86_64-1_slack15.0.txz --rw-r--r-- 1 root root 163 2022-06-27 19:18 ./patches/packages/curl-7.84.0-x86_64-1_slack15.0.txz.asc +-rw-r--r-- 1 root root 552 2022-09-01 01:46 ./patches/packages/curl-7.85.0-x86_64-1_slack15.0.txt +-rw-r--r-- 1 root root 1307336 2022-09-01 01:46 ./patches/packages/curl-7.85.0-x86_64-1_slack15.0.txz +-rw-r--r-- 1 root root 163 2022-09-01 01:46 ./patches/packages/curl-7.85.0-x86_64-1_slack15.0.txz.asc -rw-r--r-- 1 root root 373 2022-02-24 19:12 ./patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 993108 2022-02-24 19:12 ./patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2022-02-24 19:12 ./patches/packages/cyrus-sasl-2.1.28-x86_64-1_slack15.0.txz.asc @@ -857,6 +857,9 @@ drwxr-xr-x 2 root root 4096 2022-08-26 04:06 ./patches/packages/linux-5.15 -rw-r--r-- 1 root root 450 2022-03-12 20:37 ./patches/packages/polkit-0.120-x86_64-3_slack15.0.txt -rw-r--r-- 1 root root 403284 2022-03-12 20:37 ./patches/packages/polkit-0.120-x86_64-3_slack15.0.txz -rw-r--r-- 1 root root 163 2022-03-12 20:37 ./patches/packages/polkit-0.120-x86_64-3_slack15.0.txz.asc +-rw-r--r-- 1 root root 533 2022-09-01 18:45 ./patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txt +-rw-r--r-- 1 root root 1746808 2022-09-01 18:45 ./patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txz +-rw-r--r-- 1 root root 163 2022-09-01 18:45 ./patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txz.asc -rw-r--r-- 1 root root 663 2022-03-24 19:32 ./patches/packages/python3-3.9.12-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 19150264 2022-03-24 19:32 ./patches/packages/python3-3.9.12-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2022-03-24 19:32 ./patches/packages/python3-3.9.12-x86_64-1_slack15.0.txz.asc @@ -908,7 +911,7 @@ drwxr-xr-x 2 root root 4096 2022-08-26 04:06 ./patches/packages/linux-5.15 -rw-r--r-- 1 root root 388 2022-08-09 17:48 ./patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txt -rw-r--r-- 1 root root 105196 2022-08-09 17:48 ./patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txz -rw-r--r-- 1 root root 163 2022-08-09 17:48 ./patches/packages/zlib-1.2.12-x86_64-2_slack15.0.txz.asc -drwxr-xr-x 46 root root 4096 2022-08-30 19:26 ./patches/source +drwxr-xr-x 47 root root 4096 2022-09-01 18:50 ./patches/source drwxr-xr-x 2 root root 4096 2022-01-16 05:07 ./patches/source/aaa_base -rw-r--r-- 1 root root 11041 2022-02-15 04:49 ./patches/source/aaa_base/_aaa_base.tar.gz -rwxr-xr-x 1 root root 3894 2022-02-15 05:07 ./patches/source/aaa_base/aaa_base.SlackBuild @@ -977,9 +980,9 @@ drwxr-xr-x 2 root root 4096 2022-05-26 16:49 ./patches/source/cups -rw-r--r-- 1 root root 46 2021-06-29 19:51 ./patches/source/cups/cups.url -rw-r--r-- 1 root root 454 2021-04-26 18:11 ./patches/source/cups/doinst.sh.gz -rw-r--r-- 1 root root 1094 2018-11-29 19:15 ./patches/source/cups/slack-desc -drwxr-xr-x 2 root root 4096 2022-06-27 19:16 ./patches/source/curl --rw-r--r-- 1 root root 2477944 2022-06-27 06:13 ./patches/source/curl/curl-7.84.0.tar.xz --rw-r--r-- 1 root root 488 2022-06-27 06:13 ./patches/source/curl/curl-7.84.0.tar.xz.asc +drwxr-xr-x 2 root root 4096 2022-09-01 01:44 ./patches/source/curl +-rw-r--r-- 1 root root 2480648 2022-08-31 06:16 ./patches/source/curl/curl-7.85.0.tar.xz +-rw-r--r-- 1 root root 488 2022-08-31 06:16 ./patches/source/curl/curl-7.85.0.tar.xz.asc -rwxr-xr-x 1 root root 4861 2022-04-27 18:34 ./patches/source/curl/curl.SlackBuild -rw-r--r-- 1 root root 30 2018-04-20 16:49 ./patches/source/curl/curl.url -rw-r--r-- 1 root root 1004 2019-02-06 21:57 ./patches/source/curl/slack-desc @@ -1216,6 +1219,11 @@ drwxr-xr-x 2 root root 4096 2022-03-12 20:26 ./patches/source/polkit -rw-r--r-- 1 root root 675865 2021-10-06 18:06 ./patches/source/polkit/polkit-0.120.tar.lz -rwxr-xr-x 1 root root 6539 2022-03-12 20:36 ./patches/source/polkit/polkit.SlackBuild -rw-r--r-- 1 root root 903 2020-11-01 20:04 ./patches/source/polkit/slack-desc +drwxr-xr-x 2 root root 4096 2022-09-01 18:42 ./patches/source/poppler +-rw-r--r-- 1 root root 724 2022-09-01 18:40 ./patches/source/poppler/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch.gz +-rw-r--r-- 1 root root 1798780 2021-12-26 19:51 ./patches/source/poppler/poppler-21.12.0.tar.xz +-rwxr-xr-x 1 root root 4628 2022-09-01 18:43 ./patches/source/poppler/poppler.SlackBuild +-rw-r--r-- 1 root root 988 2018-02-27 06:12 ./patches/source/poppler/slack-desc drwxr-xr-x 2 root root 4096 2022-03-24 19:29 ./patches/source/python3 -rw-r--r-- 1 root root 19740524 2022-03-23 21:52 ./patches/source/python3/Python-3.9.12.tar.xz -rw-r--r-- 1 root root 833 2022-03-23 21:52 ./patches/source/python3/Python-3.9.12.tar.xz.asc @@ -2729,15 +2737,15 @@ drwxr-xr-x 2 root root 69632 2022-02-01 08:29 ./slackware64/kde -rw-r--r-- 1 root root 44316 2022-01-08 22:26 ./slackware64/kde/kidletime-5.90.0-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-08 22:26 ./slackware64/kde/kidletime-5.90.0-x86_64-1.txz.asc -rw-r--r-- 1 root root 267 2022-01-27 19:37 ./slackware64/kde/kig-21.12.1-x86_64-2.txt --rw-r--r-- 1 root root 3469108 2022-01-27 19:37 ./slackware64/kde/kig-21.12.1-x86_64-2.txz --rw-r--r-- 1 root root 163 2022-01-27 19:37 ./slackware64/kde/kig-21.12.1-x86_64-2.txz.asc --rw-r--r-- 1 root root 528 2022-01-06 22:29 ./slackware64/kde/kigo-21.12.1-x86_64-1.txt --rw-r--r-- 1 root root 5360748 2022-01-06 22:29 ./slackware64/kde/kigo-21.12.1-x86_64-1.txz --rw-r--r-- 1 root root 163 2022-01-06 22:29 ./slackware64/kde/kigo-21.12.1-x86_64-1.txz.asc --rw-r--r-- 1 root root 216 2021-12-26 20:10 ./slackware64/kde/kile-2.9.93-x86_64-15.txt --rw-r--r-- 1 root root 7406860 2021-12-26 20:10 ./slackware64/kde/kile-2.9.93-x86_64-15.txz --rw-r--r-- 1 root root 163 2021-12-26 20:10 ./slackware64/kde/kile-2.9.93-x86_64-15.txz.asc --rw-r--r-- 1 root root 198 2022-01-06 22:31 ./slackware64/kde/killbots-21.12.1-x86_64-1.txt +-rw-r--r-- 1 root root 3469108 2022-01-27 19:37 ./slackware64/kde/kig-21.12.1-x86_64-2.txz +-rw-r--r-- 1 root root 163 2022-01-27 19:37 ./slackware64/kde/kig-21.12.1-x86_64-2.txz.asc +-rw-r--r-- 1 root root 528 2022-01-06 22:29 ./slackware64/kde/kigo-21.12.1-x86_64-1.txt +-rw-r--r-- 1 root root 5360748 2022-01-06 22:29 ./slackware64/kde/kigo-21.12.1-x86_64-1.txz +-rw-r--r-- 1 root root 163 2022-01-06 22:29 ./slackware64/kde/kigo-21.12.1-x86_64-1.txz.asc +-rw-r--r-- 1 root root 216 2021-12-26 20:10 ./slackware64/kde/kile-2.9.93-x86_64-15.txt +-rw-r--r-- 1 root root 7406860 2021-12-26 20:10 ./slackware64/kde/kile-2.9.93-x86_64-15.txz +-rw-r--r-- 1 root root 163 2021-12-26 20:10 ./slackware64/kde/kile-2.9.93-x86_64-15.txz.asc +-rw-r--r-- 1 root root 198 2022-01-06 22:31 ./slackware64/kde/killbots-21.12.1-x86_64-1.txt -rw-r--r-- 1 root root 1347260 2022-01-06 22:31 ./slackware64/kde/killbots-21.12.1-x86_64-1.txz -rw-r--r-- 1 root root 163 2022-01-06 22:31 ./slackware64/kde/killbots-21.12.1-x86_64-1.txz.asc -rw-r--r-- 1 root root 429 2022-01-08 22:35 ./slackware64/kde/kimageformats-5.90.0-x86_64-1.txt @@ -5484,15 +5492,15 @@ drwxr-xr-x 2 root root 65536 2022-02-01 04:47 ./slackware64/x -rw-r--r-- 1 root root 425 2021-02-13 13:11 ./slackware64/x/mkcomposecache-1.2.1-x86_64-5.txt -rw-r--r-- 1 root root 9392 2021-02-13 13:11 ./slackware64/x/mkcomposecache-1.2.1-x86_64-5.txz -rw-r--r-- 1 root root 163 2021-02-13 13:11 ./slackware64/x/mkcomposecache-1.2.1-x86_64-5.txz.asc --rw-r--r-- 1 root root 375 2021-02-13 13:11 ./slackware64/x/mkfontscale-1.2.1-x86_64-4.txt --rw-r--r-- 1 root root 35624 2021-02-13 13:11 ./slackware64/x/mkfontscale-1.2.1-x86_64-4.txz --rw-r--r-- 1 root root 163 2021-02-13 13:11 ./slackware64/x/mkfontscale-1.2.1-x86_64-4.txz.asc --rw-r--r-- 1 root root 327 2021-02-13 12:59 ./slackware64/x/motif-2.3.8-x86_64-5.txt --rw-r--r-- 1 root root 2551752 2021-02-13 12:59 ./slackware64/x/motif-2.3.8-x86_64-5.txz --rw-r--r-- 1 root root 163 2021-02-13 12:59 ./slackware64/x/motif-2.3.8-x86_64-5.txz.asc --rw-r--r-- 1 root root 583 2021-02-13 12:59 ./slackware64/x/mtdev-1.1.6-x86_64-3.txt --rw-r--r-- 1 root root 22116 2021-02-13 12:59 ./slackware64/x/mtdev-1.1.6-x86_64-3.txz --rw-r--r-- 1 root root 163 2021-02-13 12:59 ./slackware64/x/mtdev-1.1.6-x86_64-3.txz.asc +-rw-r--r-- 1 root root 375 2021-02-13 13:11 ./slackware64/x/mkfontscale-1.2.1-x86_64-4.txt +-rw-r--r-- 1 root root 35624 2021-02-13 13:11 ./slackware64/x/mkfontscale-1.2.1-x86_64-4.txz +-rw-r--r-- 1 root root 163 2021-02-13 13:11 ./slackware64/x/mkfontscale-1.2.1-x86_64-4.txz.asc +-rw-r--r-- 1 root root 327 2021-02-13 12:59 ./slackware64/x/motif-2.3.8-x86_64-5.txt +-rw-r--r-- 1 root root 2551752 2021-02-13 12:59 ./slackware64/x/motif-2.3.8-x86_64-5.txz +-rw-r--r-- 1 root root 163 2021-02-13 12:59 ./slackware64/x/motif-2.3.8-x86_64-5.txz.asc +-rw-r--r-- 1 root root 583 2021-02-13 12:59 ./slackware64/x/mtdev-1.1.6-x86_64-3.txt +-rw-r--r-- 1 root root 22116 2021-02-13 12:59 ./slackware64/x/mtdev-1.1.6-x86_64-3.txz +-rw-r--r-- 1 root root 163 2021-02-13 12:59 ./slackware64/x/mtdev-1.1.6-x86_64-3.txz.asc -rw-r--r-- 1 root root 340 2021-02-13 12:59 ./slackware64/x/mypaint-brushes-1.3.0-noarch-3.txt -rw-r--r-- 1 root root 2346676 2021-02-13 12:59 ./slackware64/x/mypaint-brushes-1.3.0-noarch-3.txz -rw-r--r-- 1 root root 163 2021-02-13 12:59 ./slackware64/x/mypaint-brushes-1.3.0-noarch-3.txz.asc @@ -15098,15 +15106,15 @@ drwxr-xr-x 2 root root 4096 2021-12-10 20:40 ./source/x/x11/src/lib -rw-r--r-- 1 root root 270188 2019-09-24 16:55 ./source/x/x11/src/lib/libXvMC-1.0.12.tar.xz -rw-r--r-- 1 root root 262516 2019-03-16 22:21 ./source/x/x11/src/lib/libXxf86dga-1.1.5.tar.xz -rw-r--r-- 1 root root 251004 2018-07-05 16:49 ./source/x/x11/src/lib/libXxf86misc-1.0.4.tar.xz --rw-r--r-- 1 root root 244964 2015-02-24 07:04 ./source/x/x11/src/lib/libXxf86vm-1.1.4.tar.xz --rw-r--r-- 1 root root 259316 2018-05-14 00:45 ./source/x/x11/src/lib/libdmx-1.1.4.tar.xz --rw-r--r-- 1 root root 263112 2019-02-20 01:33 ./source/x/x11/src/lib/libfontenc-1.1.4.tar.xz --rw-r--r-- 1 root root 320072 2019-07-17 16:25 ./source/x/x11/src/lib/libpciaccess-0.16.tar.xz --rw-r--r-- 1 root root 439404 2020-02-22 20:51 ./source/x/x11/src/lib/libxcb-1.14.tar.xz --rw-r--r-- 1 root root 302836 2019-03-16 18:36 ./source/x/x11/src/lib/libxkbfile-1.1.0.tar.xz --rw-r--r-- 1 root root 250612 2018-02-26 17:27 ./source/x/x11/src/lib/libxshmfence-1.3.tar.xz --rw-r--r-- 1 root root 634752 2020-04-19 21:56 ./source/x/x11/src/lib/pixman-0.40.0.tar.xz --rw-r--r-- 1 root root 169464 2019-03-16 21:30 ./source/x/x11/src/lib/xtrans-1.4.0.tar.xz +-rw-r--r-- 1 root root 244964 2015-02-24 07:04 ./source/x/x11/src/lib/libXxf86vm-1.1.4.tar.xz +-rw-r--r-- 1 root root 259316 2018-05-14 00:45 ./source/x/x11/src/lib/libdmx-1.1.4.tar.xz +-rw-r--r-- 1 root root 263112 2019-02-20 01:33 ./source/x/x11/src/lib/libfontenc-1.1.4.tar.xz +-rw-r--r-- 1 root root 320072 2019-07-17 16:25 ./source/x/x11/src/lib/libpciaccess-0.16.tar.xz +-rw-r--r-- 1 root root 439404 2020-02-22 20:51 ./source/x/x11/src/lib/libxcb-1.14.tar.xz +-rw-r--r-- 1 root root 302836 2019-03-16 18:36 ./source/x/x11/src/lib/libxkbfile-1.1.0.tar.xz +-rw-r--r-- 1 root root 250612 2018-02-26 17:27 ./source/x/x11/src/lib/libxshmfence-1.3.tar.xz +-rw-r--r-- 1 root root 634752 2020-04-19 21:56 ./source/x/x11/src/lib/pixman-0.40.0.tar.xz +-rw-r--r-- 1 root root 169464 2019-03-16 21:30 ./source/x/x11/src/lib/xtrans-1.4.0.tar.xz drwxr-xr-x 2 root root 4096 2021-09-20 18:27 ./source/x/x11/src/proto -rw-r--r-- 1 root root 143588 2020-10-08 22:32 ./source/x/x11/src/proto/xcb-proto-1.14.1.tar.xz -rw-r--r-- 1 root root 763248 2021-09-15 15:59 ./source/x/x11/src/proto/xorgproto-2021.5.tar.xz diff --git a/patches/packages/curl-7.84.0-x86_64-1_slack15.0.txt b/patches/packages/curl-7.85.0-x86_64-1_slack15.0.txt similarity index 100% rename from patches/packages/curl-7.84.0-x86_64-1_slack15.0.txt rename to patches/packages/curl-7.85.0-x86_64-1_slack15.0.txt diff --git a/patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txt b/patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txt new file mode 100644 index 000000000..a3bd69dab --- /dev/null +++ b/patches/packages/poppler-21.12.0-x86_64-2_slack15.0.txt @@ -0,0 +1,11 @@ +poppler: poppler (a library for rendering PDF documents) +poppler: +poppler: Poppler is a library based on the xpdf PDF viewer developed by Derek +poppler: Noonburg of Glyph and Cog, LLC. Since xpdf does not provide a shared +poppler: library, whenever a flaw was found potentially dozens of applications +poppler: incorporating code from xpdf would have to be patched. By providing +poppler: a centralized PDF library this duplicated effort will be eliminated. +poppler: +poppler: Homepage: http://poppler.freedesktop.org +poppler: +poppler: diff --git a/patches/source/poppler/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch b/patches/source/poppler/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch new file mode 100644 index 000000000..a4ee928c5 --- /dev/null +++ b/patches/source/poppler/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch @@ -0,0 +1,29 @@ +From 27354e9d9696ee2bc063910a6c9a6b27c5184a52 Mon Sep 17 00:00:00 2001 +From: Albert Astals Cid +Date: Thu, 25 Aug 2022 00:14:22 +0200 +Subject: [PATCH] JBIG2Stream: Fix crash on broken file + +https://github.com/jeffssh/CVE-2021-30860 + +Thanks to David Warren for the heads up +--- + poppler/JBIG2Stream.cc | 6 +++++- + 1 file changed, 5 insertions(+), 1 deletion(-) + +diff --git a/poppler/JBIG2Stream.cc b/poppler/JBIG2Stream.cc +index 662276e5..9f70431d 100644 +--- a/poppler/JBIG2Stream.cc ++++ b/poppler/JBIG2Stream.cc +@@ -1976,7 +1976,11 @@ void JBIG2Stream::readTextRegionSeg(unsigned int segNum, bool imm, bool lossless + for (i = 0; i < nRefSegs; ++i) { + if ((seg = findSegment(refSegs[i]))) { + if (seg->getType() == jbig2SegSymbolDict) { +- numSyms += ((JBIG2SymbolDict *)seg)->getSize(); ++ const unsigned int segSize = ((JBIG2SymbolDict *)seg)->getSize(); ++ if (unlikely(checkedAdd(numSyms, segSize, &numSyms))) { ++ error(errSyntaxError, getPos(), "Too many symbols in JBIG2 text region"); ++ return; ++ } + } else if (seg->getType() == jbig2SegCodeTable) { + codeTables.push_back(seg); + } diff --git a/patches/source/poppler/poppler.SlackBuild b/patches/source/poppler/poppler.SlackBuild new file mode 100755 index 000000000..12a34ac3e --- /dev/null +++ b/patches/source/poppler/poppler.SlackBuild @@ -0,0 +1,147 @@ +#!/bin/bash + +# Copyright 2006, 2007, 2008, 2009, 2010, 2012, 2017, 2018, 2020 Patrick J. Volkerding, Sebeka, MN, USA +# All rights reserved. +# +# Redistribution and use of this script, with or without modification, is +# permitted provided that the following conditions are met: +# +# 1. Redistributions of this script must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# +# THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO +# EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, +# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, +# PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; +# OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR +# OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF +# ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +cd $(dirname $0) ; CWD=$(pwd) + +PKGNAM=poppler +VERSION=${VERSION:-$(echo $PKGNAM-*.tar.?z* | rev | cut -f 3- -d . | cut -f 1 -d - | rev)} +BUILD=${BUILD:-2_slack15.0} + +# Automatically determine the architecture we're building on: +if [ -z "$ARCH" ]; then + case "$( uname -m )" in + i?86) export ARCH=i586 ;; + arm*) export ARCH=arm ;; + # Unless $ARCH is already set, use uname -m for all other archs: + *) export ARCH=$( uname -m ) ;; + esac +fi + +# If the variable PRINT_PACKAGE_NAME is set, then this script will report what +# the name of the created package would be, and then exit. This information +# could be useful to other scripts. +if [ ! -z "${PRINT_PACKAGE_NAME}" ]; then + echo "$PKGNAM-$VERSION-$ARCH-$BUILD.txz" + exit 0 +fi + +NUMJOBS=${NUMJOBS:-" -j$(expr $(nproc) + 1) "} + +if [ "$ARCH" = "i586" ]; then + SLKCFLAGS="-O2 -march=i586 -mtune=i686" + LIBDIRSUFFIX="" +elif [ "$ARCH" = "s390" ]; then + SLKCFLAGS="-O2" + LIBDIRSUFFIX="" +elif [ "$ARCH" = "x86_64" ]; then + SLKCFLAGS="-O2 -fPIC" + LIBDIRSUFFIX="64" +else + SLKCFLAGS="-O2" + LIBDIRSUFFIX="" +fi + +TMP=${TMP:-/tmp} +PKG=$TMP/package-${PKGNAM} +rm -rf $PKG +mkdir -p $TMP $PKG + +cd $TMP || exit 1 +rm -rf ${PKGNAM}-${VERSION} +tar xvf $CWD/${PKGNAM}-$VERSION.tar.?z* || exit 1 +cd ${PKGNAM}-$VERSION || exit 1 + +chown -R root:root . +find . \ + \( -perm 777 -o -perm 775 -o -perm 711 -o -perm 555 -o -perm 511 \) \ + -exec chmod 755 {} \+ -o \ + \( -perm 666 -o -perm 664 -o -perm 600 -o -perm 444 -o -perm 440 -o -perm 400 \) \ + -exec chmod 644 {} \+ + +# Fix CVE-2021-30860: +zcat $CWD/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch.gz | patch -p1 --verbose || exit 1 + +mkdir cmake-build +cd cmake-build + +CXXFLAGS="$SLKCFLAGS -std=c++11 -fpermissive" \ +cmake \ + -DCMAKE_INSTALL_PREFIX=/usr \ + -DCMAKE_INSTALL_MANDIR=/usr/man \ + -DBUILD_SHARED_LIBS=ON \ + -DENABLE_QT5=ON \ + -DENABLE_XPDF_HEADERS=ON \ + -DENABLE_CMS=lcms2 \ + -DENABLE_DCTDECODER=libjpeg \ + -DENABLE_GTK_DOC=ON \ + -DENABLE_LIBOPENJPEG=openjpeg2 \ + -DENABLE_XPDF_HEADERS=ON \ + -DENABLE_UNSTABLE_API_ABI_HEADERS=ON \ + -DENABLE_ZLIB=ON \ + .. || exit 1 + +make $NUMJOBS || make || exit 1 +make install DESTDIR=$PKG || exit 1 + +# Back to source tarball root directory: +cd .. + +# Remove files that overlap with the xpdf package: +rm -f $PKG/usr/bin/pdfdetach $PKG/usr/man/man1/pdfdetach.1 + +find $PKG | xargs file | grep -e "executable" -e "shared object" | grep ELF \ + | cut -f 1 -d : | xargs strip --strip-unneeded 2> /dev/null + +# Compress and link manpages, if any: +if [ -d $PKG/usr/man ]; then + ( cd $PKG/usr/man + for manpagedir in $(find . -type d -name "man*") ; do + ( cd $manpagedir + for eachpage in $( find . -type l -maxdepth 1) ; do + ln -s $( readlink $eachpage ).gz $eachpage.gz + rm $eachpage + done + gzip -9 *.? + ) + done + ) +fi + +mkdir -p $PKG/usr/doc/${PKGNAM}-$VERSION +cp -a AUTHORS COPYING* INSTALL NEWS README* TODO \ + $PKG/usr/doc/${PKGNAM}-$VERSION +( cd $PKG/usr/doc/${PKGNAM}-$VERSION + ln -s /usr/share/gtk-doc/html/poppler html ) + +# If there's a ChangeLog, installing at least part of the recent history +# is useful, but don't let it get totally out of control: +if [ -r ChangeLog ]; then + DOCSDIR=$(echo $PKG/usr/doc/${PKGNAM}-$VERSION) + cat ChangeLog | head -n 1000 > $DOCSDIR/ChangeLog + touch -r ChangeLog $DOCSDIR/ChangeLog +fi + +mkdir -p $PKG/install +cat $CWD/slack-desc > $PKG/install/slack-desc + +cd $PKG +/sbin/makepkg -l y -c n $TMP/${PKGNAM}-$VERSION-$ARCH-$BUILD.txz diff --git a/patches/source/poppler/slack-desc b/patches/source/poppler/slack-desc new file mode 100644 index 000000000..baba4a307 --- /dev/null +++ b/patches/source/poppler/slack-desc @@ -0,0 +1,19 @@ +# HOW TO EDIT THIS FILE: +# The "handy ruler" below makes it easier to edit a package description. Line +# up the first '|' above the ':' following the base package name, and the '|' +# on the right side marks the last column you can put a character in. You must +# make exactly 11 lines for the formatting to be correct. It's also +# customary to leave one space after the ':'. + + |-----handy-ruler------------------------------------------------------| +poppler: poppler (a library for rendering PDF documents) +poppler: +poppler: Poppler is a library based on the xpdf PDF viewer developed by Derek +poppler: Noonburg of Glyph and Cog, LLC. Since xpdf does not provide a shared +poppler: library, whenever a flaw was found potentially dozens of applications +poppler: incorporating code from xpdf would have to be patched. By providing +poppler: a centralized PDF library this duplicated effort will be eliminated. +poppler: +poppler: Homepage: http://poppler.freedesktop.org +poppler: +poppler: diff --git a/recompress.sh b/recompress.sh index 7f8752496..6663b5ed4 100755 --- a/recompress.sh +++ b/recompress.sh @@ -1184,6 +1184,7 @@ gzip ./patches/source/seamonkey/doinst.sh gzip ./patches/source/seamonkey/sm.ui.scrollToClick.diff gzip ./patches/source/vim/ctags.use-conventional-unused-marker.patch gzip ./patches/source/vim/vim.vimrc.diff +gzip ./patches/source/poppler/27354e9d9696ee2bc063910a6c9a6b27c5184a52.patch gzip ./patches/source/libxslt/libxslt.xsltMaxDepth.diff gzip ./patches/source/net-snmp/net-snmp-5.7.2-cert-path.patch gzip ./patches/source/net-snmp/net-snmp-5.8-Remove-U64-typedef.patch