diff options
Diffstat (limited to 'libre/sdl/PKGBUILD')
| -rw-r--r-- | libre/sdl/PKGBUILD | 61 |
1 files changed, 50 insertions, 11 deletions
diff --git a/libre/sdl/PKGBUILD b/libre/sdl/PKGBUILD index 7fc3cb0fb..e5b177193 100644 --- a/libre/sdl/PKGBUILD +++ b/libre/sdl/PKGBUILD @@ -8,9 +8,10 @@ pkgname=sdl pkgver=1.2.15 -pkgrel=10 -pkgrel+=.par1 -pkgdesc="A library for portable low-level access to a video framebuffer, audio output, mouse, and keyboard, without nonfree riva_mmio.h file" +pkgrel=13 +pkgrel+=.parabola1 +pkgdesc="A library for portable low-level access to a video framebuffer, audio output, mouse, and keyboard" +pkgdesc+=", without nonfree riva_mmio.h file" arch=('x86_64') arch+=('i686' 'armv7h') url="https://www.libsdl.org" @@ -22,8 +23,7 @@ makedepends=('alsa-lib' 'mesa' 'libpulse' 'glu') optdepends=('alsa-lib: ALSA audio driver' 'libpulse: PulseAudio audio driver') options=('staticlibs') -mksource=(https://www.libsdl.org/release/SDL-${pkgver}.tar.gz) -source=(https://repo.parabola.nu/other/${pkgname}-libre/SDL-libre-${pkgver}.tar.gz +source=(https://www.libsdl.org/release/SDL-${pkgver}.tar.gz{,.sig} SDL-1.2.10-GrabNotViewable.patch SDL-1.2.15-SDL_EnableUNICODE_drops_keyboard_events.patch SDL-1.2.15-const_XData32.patch @@ -34,9 +34,22 @@ source=(https://repo.parabola.nu/other/${pkgname}-libre/SDL-libre-${pkgver}.tar. sdl-1.2.14-disable-mmx.patch libsdl-1.2.15-resizing.patch X11_KeyToUnicode.patch + SDL-1.2.15-CVE-2019-13616-validate_image_size_when_loading_BMP_files.patch + SDL-1.2.15-CVE-2019-7572-Fix-a-buffer-overread-in-IMA_ADPCM_nib.patch + SDL-1.2.15-CVE-2019-7572-Fix-a-buffer-overwrite-in-IMA_ADPCM_de.patch + SDL-1.2.15-CVE-2019-7573-CVE-2019-7576-Fix-buffer-overreads-in-.patch + SDL-1.2.15-CVE-2019-7574-Fix-a-buffer-overread-in-IMA_ADPCM_dec.patch + SDL-1.2.15-CVE-2019-7575-Fix-a-buffer-overwrite-in-MS_ADPCM_dec.patch + SDL-1.2.15-CVE-2019-7577-Fix-a-buffer-overread-in-MS_ADPCM_deco.patch + SDL-1.2.15-CVE-2019-7577-Fix-a-buffer-overread-in-MS_ADPCM_nibb.patch + SDL-1.2.15-CVE-2019-7578-Fix-a-buffer-overread-in-InitIMA_ADPCM.patch + SDL-1.2.15-CVE-2019-7635-Reject-BMP-images-with-pixel-colors-ou.patch + SDL-1.2.15-CVE-2019-7637-Fix-in-integer-overflow-in-SDL_Calcula.patch + SDL-1.2.15-CVE-2019-7638-CVE-2019-7636-Refuse-loading-BMP-image.patch + SDL-1.2.15-Reject-2-3-5-6-7-bpp-BMP-images.patch libre.patch) -mksha256sums=('d6d316a793e5e348155f0dd93b979798933fb98aa1edebcc108829d6474aad00') -sha256sums=('806485cf92574ce883480b7f010aeb1b27c7e325c6c1e799f6cdc950df10da8a' +sha256sums=('d6d316a793e5e348155f0dd93b979798933fb98aa1edebcc108829d6474aad00' + 'SKIP' 'ea2042b8a45a083b1447d5c56e52b23b79f2ddb0d717ec7b287b34ef71bd2d1a' '292046466d52a2ebe995a0121404864e4ee0de2b6024203acb95bbd600844da0' 'bab60b515a74b71650ee71d5a0075c77046a7bad48b061673c3798dbdd35446d' @@ -47,15 +60,26 @@ sha256sums=('806485cf92574ce883480b7f010aeb1b27c7e325c6c1e799f6cdc950df10da8a' '17bb880dd2cb4922d4e3771d146660b9da8be8f1629a5cdaae7523d4a9d2bd7c' '5160fb1c07b04480d98d45b89a0aa6e577f2ac4c3bace0c80b251e6aca1fb4a1' 'b1ad9c60829b166e6b647006d6549ea657155e755cf574fcfc4b91b658654769' + '95ddeff25c9f5ea4f828c90073852218a3c8ecfcd4da4f3a7f6ea54e3e5c2086' + '3f05fcccfa7f3474572955d0cbcfc931da57e3da450fc5c5803c837c38fd6e17' + 'a9bd66c75e443f7875d044518b5960386c549aa1c0592364aee1240a6e0867a5' + 'f4cd391a5df211a5d3558f5ec03b9f413533398f44feca86a30a8acc90e63402' + '0293e56873929d817950e272ebfd6735c8d5b896d0a59b2d7be09107dac7e85b' + 'be4cadd1b028e8b14ee4e4413aeffd98ff2ad1e66a7c75c8bdb04bfd08b9372a' + '335b5b1c44229ac90318dae36a98731332f417c2d71d449385e6ab013f25efdb' + '0371bcdba4e89055be62a76421052d7bd5fbf40c0f0e3d9c29fc5d21686f5afd' + '0f3691d6fc7381a4dd23216041b341102aa858b105534541dfa2843b0eccace6' + '358028a9d6523377c1757a58faed741e10a0a9863f9df33f21cd32668d257fed' + '3624f0dbe8d9bd3d553a25806237edcae5fafe714e5c4da3c5e3b281a3fbc8ae' + '7db8112826318de5705b54cf493060cec34e2822df2b1cd9f55891672beed64d' + 'da87eb71c7af042bc8379f9f7cd63e57d99429774bb43524dde103718b99c533' '89a6d08e1d2f8cf2d144d43d0511f7da430eb4a2020acb52775de6f506e40d48') +validpgpkeys=('1528635D8053A57F77D1E08630A59377A7763BE6') # Sam Lantinga <slouken@libsdl.org> -mksource() { +prepare() { cd SDL-$pkgver rm -v src/video/fbcon/riva_mmio.h -} -prepare() { - cd SDL-$pkgver patch -Np1 -i ../SDL-1.2.10-GrabNotViewable.patch patch -Np1 -i ../SDL-1.2.15-SDL_EnableUNICODE_drops_keyboard_events.patch patch -Np1 -i ../SDL-1.2.15-const_XData32.patch @@ -70,6 +94,21 @@ prepare() { patch -Np1 -i ../libsdl-1.2.15-resizing.patch patch -Np1 -i ../X11_KeyToUnicode.patch + # bunch of CVE fixes from Fedora - Thanks! + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7577-Fix-a-buffer-overread-in-MS_ADPCM_deco.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7575-Fix-a-buffer-overwrite-in-MS_ADPCM_dec.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7574-Fix-a-buffer-overread-in-IMA_ADPCM_dec.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7572-Fix-a-buffer-overread-in-IMA_ADPCM_nib.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7572-Fix-a-buffer-overwrite-in-IMA_ADPCM_de.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7573-CVE-2019-7576-Fix-buffer-overreads-in-.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7578-Fix-a-buffer-overread-in-InitIMA_ADPCM.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7638-CVE-2019-7636-Refuse-loading-BMP-image.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7637-Fix-in-integer-overflow-in-SDL_Calcula.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7635-Reject-BMP-images-with-pixel-colors-ou.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-13616-validate_image_size_when_loading_BMP_files.patch + patch -Np1 -i ../SDL-1.2.15-CVE-2019-7577-Fix-a-buffer-overread-in-MS_ADPCM_nibb.patch + patch -Np1 -i ../SDL-1.2.15-Reject-2-3-5-6-7-bpp-BMP-images.patch + patch -Np1 -i ../libre.patch } |