branch master updated: gnu: freetype: Replace with 2.10.4 [fixes CVE-202

guix-commits

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

branch master updated: gnu: freetype: Replace with 2.10.4 [fixes CVE-202

From:	guix-commits
Subject:	branch master updated: gnu: freetype: Replace with 2.10.4 [fixes CVE-2020-15999].
Date:	Thu, 22 Oct 2020 16:07:25 -0400

This is an automated email from the git hooks/post-receive script.

nckx pushed a commit to branch master
in repository guix.

The following commit(s) were added to refs/heads/master by this push:
     new d32b210  gnu: freetype: Replace with 2.10.4 [fixes CVE-2020-15999].
d32b210 is described below

commit d32b210f282ef74caf9890e1d4ffe8eb04bd64e5
Author: Tobias Geerinckx-Rice <me@tobias.gr>
AuthorDate: Thu Oct 22 21:20:47 2020 +0200

    gnu: freetype: Replace with 2.10.4 [fixes CVE-2020-15999].
    
    * gnu/packages/fontutils.scm (freetype)[replacement]: New field, set to...
    (freetype/fixed): ...this new variable.
---
 gnu/packages/fontutils.scm | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/gnu/packages/fontutils.scm b/gnu/packages/fontutils.scm
index b3852fe..eec5093 100644
--- a/gnu/packages/fontutils.scm
+++ b/gnu/packages/fontutils.scm
@@ -6,7 +6,7 @@
 ;;; Copyright © 2017 Rene Saavedra <rennes@openmailbox.org>
 ;;; Copyright © 2017 Leo Famulari <leo@famulari.name>
 ;;; Copyright © 2017 Nikita <nikita@n0.is>
-;;; Copyright © 2017, 2018 Tobias Geerinckx-Rice <me@tobias.gr>
+;;; Copyright © 2017, 2018, 2020 Tobias Geerinckx-Rice <me@tobias.gr>
 ;;; Copyright © 2018 Ricardo Wurmus <rekado@elephly.net>
 ;;; Copyright © 2018, 2019 Ludovic Courtès <ludo@gnu.org>
 ;;; Copyright © 2019, 2020 Marius Bakke <mbakke@fastmail.com>
@@ -69,6 +69,7 @@
   (package
    (name "freetype")
    (version "2.10.1")
+   (replacement freetype/fixed)
    (source (origin
             (method url-fetch)
             (uri (string-append "mirror://savannah/freetype/freetype-"
@@ -97,6 +98,19 @@ anti-aliased glyph bitmap generation with 256 gray levels.")
    (license license:freetype)           ; some files have other licenses
    (home-page "https://www.freetype.org/";)))
 
+(define freetype/fixed
+  ;; Security fix for CVE-2020-15999.
+  (package
+    (inherit freetype)
+    (version "2.10.4")
+    (source
+     (origin
+       (method url-fetch)
+       (uri (string-append "mirror://savannah/freetype/freetype-"
+                           version ".tar.xz"))
+       (sha256
+        (base32 "112pyy215chg7f7fmp2l9374chhhpihbh8wgpj5nj6avj3c59a46"))))))
+
 (define-public ttfautohint
   (package
     (name "ttfautohint")

[Prev in Thread]

Current Thread

[Next in Thread]

branch master updated: gnu: freetype: Replace with 2.10.4 [fixes CVE-2020-15999]., guix-commits <=

Prev by Date: branch master updated: gnu: less: Update to 563.
Next by Date: branch master updated: gnu: sky: Fix synopsis.
Previous by thread: branch master updated: gnu: less: Update to 563.
Next by thread: branch master updated: gnu: sky: Fix synopsis.
Index(es):
- Date
- Thread