aboutsummaryrefslogtreecommitdiff
path: root/gnu/packages/fribidi.scm
diff options
context:
space:
mode:
authorEfraim Flashner <efraim@flashner.co.il>2019-11-09 21:03:19 +0200
committerEfraim Flashner <efraim@flashner.co.il>2019-11-09 21:07:10 +0200
commitb8f0a3fdc8e9263a061e4a3ea79c85099b284b15 (patch)
tree0f3d0b2585684563cd455366a8b09ea4cea2c90e /gnu/packages/fribidi.scm
parentc6be161dbd3a8911c3dd59d8441a3baf2c440307 (diff)
downloadpatches-b8f0a3fdc8e9263a061e4a3ea79c85099b284b15.tar
patches-b8f0a3fdc8e9263a061e4a3ea79c85099b284b15.tar.gz
gnu: fribidi: Fix CVE-2019-18397.
* gnu/packages/fribidi.scm (fribidi): Replace with fribidi/fixed. (fribidi/fixed): New variable. * gnu/packages/patches/fribidi-CVE-2019-18397.patch: New file. * gnu/local.mk (dist_patch_DATA): Register it.
Diffstat (limited to 'gnu/packages/fribidi.scm')
-rw-r--r--gnu/packages/fribidi.scm13
1 files changed, 11 insertions, 2 deletions
diff --git a/gnu/packages/fribidi.scm b/gnu/packages/fribidi.scm
index dfd2a77c20..61aa6fd726 100644
--- a/gnu/packages/fribidi.scm
+++ b/gnu/packages/fribidi.scm
@@ -1,6 +1,6 @@
;;; GNU Guix --- Functional package management for GNU
;;; Copyright © 2014 Marek Benc <merkur32@gmail.com>
-;;; Copyright © 2016 Efraim Flashner <efraim@flashner.co.il>
+;;; Copyright © 2016, 2019 Efraim Flashner <efraim@flashner.co.il>
;;; Copyright © 2018 Tobias Geerinckx-Rice <me@tobias.gr>
;;;
;;; This file is part of GNU Guix.
@@ -22,10 +22,12 @@
#:use-module (guix packages)
#:use-module (guix download)
#:use-module (guix build-system gnu)
- #:use-module (guix licenses))
+ #:use-module (guix licenses)
+ #:use-module (gnu packages))
(define-public fribidi
(package
+ (replacement fribidi/fixed)
(name "fribidi")
(version "1.0.5")
(source
@@ -45,3 +47,10 @@ Algorithm. This algorithm is used to properly display text in left-to-right
or right-to-left ordering as necessary.")
(home-page "https://github.com/fribidi/fribidi")
(license lgpl2.1+)))
+
+(define fribidi/fixed
+ (package
+ (inherit fribidi)
+ (source
+ (origin (inherit (package-source fribidi))
+ (patches (search-patches "fribidi-CVE-2019-18397.patch"))))))