[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
02/02: gnu: cups-filters: Fix CVE-2016-{10132, 10133} in statically link
From: |
Leo Famulari |
Subject: |
02/02: gnu: cups-filters: Fix CVE-2016-{10132, 10133} in statically linked mupdf. |
Date: |
Mon, 16 Jan 2017 01:25:19 +0000 (UTC) |
lfam pushed a commit to branch master
in repository guix.
commit 8afabb2eca954af6fbba8c6ae37e8f0bc3047840
Author: Leo Famulari <address@hidden>
Date: Sun Jan 15 13:38:48 2017 -0500
gnu: cups-filters: Fix CVE-2016-{10132,10133} in statically linked mupdf.
The vulnerabilities are in the MuJS that is bundled with MuPDF.
* gnu/packages/cups.scm (cups-filters)[replacement]: New field.
(mupdf/fixed-instead-of-mupdf), (cups-filters/fixed): New variables.
---
gnu/packages/cups.scm | 9 +++++++++
1 file changed, 9 insertions(+)
diff --git a/gnu/packages/cups.scm b/gnu/packages/cups.scm
index ca16958..39ab41c 100644
--- a/gnu/packages/cups.scm
+++ b/gnu/packages/cups.scm
@@ -3,6 +3,7 @@
;;; Copyright © 2015, 2016 Ludovic Courtès <address@hidden>
;;; Copyright © 2015, 2016 Efraim Flashner <address@hidden>
;;; Copyright © 2016 Danny Milosavljevic <address@hidden>
+;;; Copyright © 2017 Leo Famulari <address@hidden>
;;;
;;; This file is part of GNU Guix.
;;;
@@ -51,6 +52,7 @@
(define-public cups-filters
(package
(name "cups-filters")
+ (replacement cups-filters/fixed)
(version "1.13.1")
(source(origin
(method url-fetch)
@@ -133,6 +135,13 @@ filters for the PDF-centric printing workflow introduced
by OpenPrinting.")
license:lgpl2.0+
license:expat))))
+(define mupdf/fixed-instead-of-mupdf
+ (package-input-rewriting `((,mupdf . ,(@@ (gnu packages pdf) mupdf/fixed)))))
+
+;;; Fix CVE-2016-10132 and CVE-2016-10133. See mupdf/fixed for more
information.
+(define cups-filters/fixed
+ (mupdf/fixed-instead-of-mupdf cups-filters))
+
;; CUPS on non-MacOS systems requires cups-filters. Since cups-filters also
;; depends on CUPS libraries and binaries, cups-minimal has been added to
;; satisfy this dependency.