From d2aa2d245183e44d63a447d06e7d86de1e85ce5c Mon Sep 17 00:00:00 2001
From: Ricardo Wurmus <rekado@elephly.net>
Date: Fri, 29 Mar 2019 06:34:39 +0100
Subject: gnu: r-png: Move to (gnu packages cran).

* gnu/packages/image.scm (r-png): Move from here...
* gnu/packages/cran.scm (r-png): ...to here.
---
 gnu/packages/image.scm | 23 -----------------------
 1 file changed, 23 deletions(-)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index b52b6025ae..d363c445b7 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -198,29 +198,6 @@ APNG patch provides APNG support to libpng.")
         (base32
          "1izw9ybm27llk8531w6h4jp4rk2rxy2s9vil16nwik5dp0amyqxl"))))))
 
-(define-public r-png
-  (package
-    (name "r-png")
-    (version "0.1-7")
-    (source (origin
-              (method url-fetch)
-              (uri (cran-uri "png" version))
-              (sha256
-               (base32
-                "0g2mcp55lvvpx4kd3mn225mpbxqcq73wy5qx8b4lyf04iybgysg2"))))
-    (build-system r-build-system)
-    (inputs
-     `(("libpng" ,libpng)
-       ("zlib" ,zlib)))
-    (home-page "http://www.rforge.net/png/")
-    (synopsis "Read and write PNG images")
-    (description
-     "This package provides an easy and simple way to read, write and display
-bitmap images stored in the PNG format.  It can read and write both files and
-in-memory raw vectors.")
-    ;; Any of these GPL versions.
-    (license (list license:gpl2 license:gpl3))))
-
 (define-public pngcrush
   (package
    (name "pngcrush")
-- 
cgit v1.2.3


From 36a4366d79a310d05db0de2cf6d5bb3c5e861d4b Mon Sep 17 00:00:00 2001
From: Efraim Flashner <efraim@flashner.co.il>
Date: Sun, 31 Mar 2019 16:39:43 +0300
Subject: gnu: Fix descriptions to not use quotes.

* gnu/packages/admin.scm (wpa-supplicant-minimal, mingetty, di),
* gnu/packages/audio.scm (fil-plugins),
* gnu/packages/base.scm (make-ld-wrapper, make-glibc-locales),
* gnu/packages/bioinformatics.scm (r-samtools),
* gnu/packages/chez.scm (chez-mit),
* gnu/packages/commencement.scm (make-gcc-toolchain),
* gnu/packages/compression.scm (fastjar),
* gnu/packages/cran.scm (r-maps, r-rcpp),
* gnu/packages/databases.scm (sparql-query),
* gnu/packages/dunst.scm (dunst),
* gnu/packages/ftp.scm (ncftp),
* gnu/packages/gl.scm (freeglut),
* gnu/packages/haskell-check.scm (ghc-tasty-golden),
* gnu/packages/haskell.scm (ghc-case-insensitive, ghc-text,
ghc-haskell-src, ghc-syb, ghc-deepseq-generics, ghc-network-uri,
ghc-rerebase, ghc-zlib),
* gnu/packages/image.scm (jbig2dec),
* gnu/packages/kde-frameworks.scm (kinit, karchive),
* gnu/packages/linux.scm (wireless-tools, perf, module-init-tools, kbd),
* gnu/packages/lirc.scm (lirc),
* gnu/packages/lisp.scm (uglify-js),
* gnu/packages/mate.scm (mate-netbook),
* gnu/packages/microcom.scm (microcom),
* gnu/packages/music.scm (bristol),
* gnu/packages/networking.scm (perl-geo-ip),
* gnu/packages/patchutils.scm (patches),
* gnu/packages/perl-check.scm (perl-test-more-utf8),
* gnu/packages/perl.scm (perl-log-report-optional, perl-file-which,
perl-io-tty, perl-log-any, perl-digest-sha1, perl-class-load,
perl-regexp-common, perl-module-pluggable, perl-class-modifier),
* gnu/packages/python-xyz.scm (python-backports-abc, python-natsort),
* gnu/packages/samba.scm (iniparser),
* gnu/packages/search.scm (mlocate),
* gnu/packages/spice.scm (spice),
* gnu/packages/statistics.scm (r-dt, r-lubridate, r-estimability,
r-commonmark, r-digest, r-viridislite, r-stringr),
* gnu/packages/tex.scm (texlive-latex-changebar),
* gnu/packages/version-control.scm (subversion),
* gnu/packages/w3m.scm (w3m),
* gnu/packages/web.scm (perl-http-parser,
perl-plack-middleware-reverseproxy),
* gnu/packages/xorg.scm (xkeyboard-config, mkfontdir, xcursor-theme,
mkfontscale, xinit, font-alias)[description]: Use @code instead of quotes.
---
 gnu/packages/image.scm | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index d363c445b7..9fc29ec284 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -545,7 +545,7 @@ arithmetic ops.")
     (arguments '(#:configure-flags '("--disable-static")))
     (synopsis "Decoder of the JBIG2 image compression format")
     (description
-      "JBIG2 is designed for lossy or lossless encoding of 'bilevel' (1-bit
+      "JBIG2 is designed for lossy or lossless encoding of @code{bilevel} (1-bit
 monochrome) images at moderately high resolution, and in particular scanned
 paper documents.  In this domain it is very efficient, offering compression
 ratios on the order of 100:1.
-- 
cgit v1.2.3


From 0e2b0b05accdea7c3f016f8483d0ec04021114d3 Mon Sep 17 00:00:00 2001
From: Marius Bakke <mbakke@fastmail.com>
Date: Sun, 7 Apr 2019 22:01:25 +0200
Subject: gnu: openjpeg: Replace with 2.3.1 [security fixes].

This release includes many security fixes, including CVE-2018-5785 and
CVE-2018-CVE-2018-6616.  See
<https://github.com/uclouvain/openjpeg/blob/master/CHANGELOG.md> for details.

* gnu/packages/image.scm (openjpeg)[replacement]: New field.
(openjpeg-2.3.1): New public variable.
---
 gnu/packages/image.scm | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index 9fc29ec284..3b2bb23252 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -561,6 +561,7 @@ work.")
   (package
     (name "openjpeg")
     (version "2.3.0")
+    (replacement openjpeg-2.3.1)
     (source
       (origin
         (method url-fetch)
@@ -594,6 +595,20 @@ error-resilience, a Java-viewer for j2k-images, ...")
     (home-page "https://github.com/uclouvain/openjpeg")
     (license license:bsd-2)))
 
+(define-public openjpeg-2.3.1
+  (package
+    (inherit openjpeg)
+    (version "2.3.1")
+    (source (origin
+              (method git-fetch)
+              (uri (git-reference
+                    (url "https://github.com/uclouvain/openjpeg")
+                    (commit (string-append "v" version))))
+              (file-name (git-file-name "openjpeg" version))
+              (sha256
+               (base32
+                "1dn98d2dfa1lqyxxmab6rrcv52dyhjr4g7i4xf2w54fqsx14ynrb"))))))
+
 (define-public openjpeg-1
   (package (inherit openjpeg)
     (name "openjpeg")
-- 
cgit v1.2.3


From 5c46e1dda8535f239a5d136d48e85bcf7210f339 Mon Sep 17 00:00:00 2001
From: Tobias Geerinckx-Rice <me@tobias.gr>
Date: Mon, 22 Apr 2019 23:55:52 +0200
Subject: gnu: gifsicle: Update to 1.92.

* gnu/packages/image.scm (gifsicle): Update to 1.92.
---
 gnu/packages/image.scm | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index 3b2bb23252..dd6b2711a8 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -1505,15 +1505,14 @@ in-memory raw vectors.")
 (define-public gifsicle
   (package
    (name "gifsicle")
-   (version "1.91")
+   (version "1.92")
    (source
      (origin
        (method url-fetch)
        (uri (string-append "http://www.lcdf.org/gifsicle/gifsicle-"
                            version ".tar.gz"))
        (sha256
-        (base32
-         "00586z1yz86qcblgmf16yly39n4lkjrscl52hvfxqk14m81fckha"))))
+        (base32 "0rffpzxcak19k6cngpxn73khvm3z1gswrqs90ycdzzb53p05ddas"))))
    (build-system gnu-build-system)
    (arguments
     '(#:phases
@@ -1528,7 +1527,7 @@ in-memory raw vectors.")
               (("/bin/rm")
                (which "rm")))
             #t)))))
-   (native-inputs `(("perl" ,perl))) ; Only for tests.
+   (native-inputs `(("perl" ,perl)))    ; only for tests
    (inputs `(("libx11" ,libx11)))
    (home-page "http://www.lcdf.org/gifsicle/")
    (synopsis "Edit GIF images and animations")
-- 
cgit v1.2.3


From 645b6c7fc72cf15b549de6a01b63174df18622d3 Mon Sep 17 00:00:00 2001
From: Tobias Geerinckx-Rice <me@tobias.gr>
Date: Mon, 22 Apr 2019 23:56:38 +0200
Subject: gnu: gifsicle: Use HTTPS.

* gnu/packages/image.scm (gifsicle)[source, home-page]: Use HTTPS.
---
 gnu/packages/image.scm | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index dd6b2711a8..78e155fa39 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -1509,7 +1509,7 @@ in-memory raw vectors.")
    (source
      (origin
        (method url-fetch)
-       (uri (string-append "http://www.lcdf.org/gifsicle/gifsicle-"
+       (uri (string-append "https://www.lcdf.org/gifsicle/gifsicle-"
                            version ".tar.gz"))
        (sha256
         (base32 "0rffpzxcak19k6cngpxn73khvm3z1gswrqs90ycdzzb53p05ddas"))))
@@ -1529,7 +1529,7 @@ in-memory raw vectors.")
             #t)))))
    (native-inputs `(("perl" ,perl)))    ; only for tests
    (inputs `(("libx11" ,libx11)))
-   (home-page "http://www.lcdf.org/gifsicle/")
+   (home-page "https://www.lcdf.org/gifsicle/")
    (synopsis "Edit GIF images and animations")
    (description "Gifsicle is a command-line GIF image manipulation tool that:
 
-- 
cgit v1.2.3


From be59c48d15ccfdec2d935801e632e2c5dcf11d07 Mon Sep 17 00:00:00 2001
From: Tobias Geerinckx-Rice <me@tobias.gr>
Date: Tue, 23 Apr 2019 00:22:41 +0200
Subject: gnu: perceptualdiff: Don't use unstable tarball.

It's still broken by freeimage, unfortunately.

* gnu/packages/image.scm (perceptualdiff)[source]: Use GIT-FETCH and
GIT-FILE-NAME.
---
 gnu/packages/image.scm | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index 78e155fa39..4010fd0ace 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -1153,13 +1153,13 @@ the programmer.")
     (version "1.3")
     (source
      (origin
-       (method url-fetch)
-       (uri (string-append "https://github.com/myint/perceptualdiff/archive/v"
-                           version ".tar.gz"))
-       (file-name (string-append name "-" version ".tar.gz"))
-        (sha256
-         (base32
-          "0zl6xmp971fffg7fzcz2fbgxg5x2w7l8qa65c008i4kbkc9016ps"))))
+       (method git-fetch)
+       (uri (git-reference
+             (url "https://github.com/myint/perceptualdiff.git")
+             (commit (string-append "v" version))))
+       (file-name (git-file-name name version))
+       (sha256
+        (base32 "0yys55f9i9g3wjjg0j2m0p0k21zwnid8520a8lrr30khm4k5gibp"))))
     (build-system cmake-build-system)
     (inputs `(("freeimage" ,freeimage)))
     (arguments
-- 
cgit v1.2.3


From a18581a02da0b5ca1c99f2114129513cdf5fa05d Mon Sep 17 00:00:00 2001
From: Marius Bakke <mbakke@fastmail.com>
Date: Wed, 17 Apr 2019 22:36:47 +0200
Subject: gnu: libpng: Replace with 1.6.37 [security fixes].

This fixes CVE-2018-14048, CVE-2018-14550, and CVE-2019-7317.

* gnu/packages/image.scm (libpng)[replacement]: New field.
(libpng-1.6.37): New public variable.
---
 gnu/packages/image.scm | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)

(limited to 'gnu/packages/image.scm')

diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index 4010fd0ace..4443e1c83d 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -87,6 +87,7 @@
   (package
    (name "libpng")
    (version "1.6.34")
+   (replacement libpng-1.6.37)
    (source (origin
             (method url-fetch)
             (uri (list (string-append "mirror://sourceforge/libpng/libpng16/"
@@ -112,6 +113,25 @@ library.  It supports almost all PNG features and is extensible.")
    (license license:zlib)
    (home-page "http://www.libpng.org/pub/png/libpng.html")))
 
+;; This graft exists to fix CVE-2018-14048, CVE-2018-14550, and CVE-2019-7317.
+(define-public libpng-1.6.37
+  (package
+    (inherit libpng)
+    (version "1.6.37")
+    (source (origin
+              (method url-fetch)
+              (uri (list (string-append "mirror://sourceforge/libpng/libpng16/"
+                                        version "/libpng-" version ".tar.xz")
+                         (string-append
+                          "ftp://ftp.simplesystems.org/pub/libpng/png/src"
+                          "/libpng16/libpng-" version ".tar.xz")
+                         (string-append
+                          "ftp://ftp.simplesystems.org/pub/libpng/png/src/history"
+                          "/libpng16/libpng-" version ".tar.xz")))
+              (sha256
+               (base32
+                "1jl8in381z0128vgxnvn33nln6hzckl7l7j9nqvkaf1m9n1p0pjh"))))))
+
 ;; libpng-apng should be updated when the APNG patch is released:
 ;; <https://bugs.gnu.org/27556>
 (define-public libpng-apng
-- 
cgit v1.2.3