From 6b5e654dd46e255ee4c51d5363b94e06757ed752 Mon Sep 17 00:00:00 2001 From: Leo Famulari Date: Mon, 8 Aug 2016 18:47:59 -0400 Subject: gnu: fontconfig: Fix CVE-2016-5384. * gnu/packages/fontutils.scm (fontconfig)[replacement]: New field. (fontconfig/fixed): New variable. * gnu/packages/patches/fontconfig-CVE-2016-5384.patch: New file. * gnu/local.mk (dist_patch_DATA): Add it. --- gnu/packages/fontutils.scm | 8 ++++++++ 1 file changed, 8 insertions(+) (limited to 'gnu/packages/fontutils.scm') diff --git a/gnu/packages/fontutils.scm b/gnu/packages/fontutils.scm index 9ddbaec2f2..4867164fa6 100644 --- a/gnu/packages/fontutils.scm +++ b/gnu/packages/fontutils.scm @@ -223,6 +223,7 @@ (define-public woff2 (define-public fontconfig (package (name "fontconfig") + (replacement fontconfig/fixed) (version "2.11.94") (source (origin (method url-fetch) @@ -275,6 +276,13 @@ (define-public fontconfig "See COPYING in the distribution.")) (home-page "http://www.freedesktop.org/wiki/Software/fontconfig"))) +(define fontconfig/fixed + (package + (inherit fontconfig) + (source (origin + (inherit (package-source fontconfig)) + (patches (search-patches "fontconfig-CVE-2016-5384.patch")))))) + (define-public t1lib (package (name "t1lib") -- cgit v1.2.3