* [bug#64676] [PATCH] gnu: libwebp: Replace with 1.3.1. [fixes CVE-2023-1999]
@ 2023-07-17 7:29 Hilton Chain via Guix-patches via
2023-08-16 20:52 ` bug#64676: " Ludovic Courtès
0 siblings, 1 reply; 2+ messages in thread
From: Hilton Chain via Guix-patches via @ 2023-07-17 7:29 UTC (permalink / raw)
To: 64676; +Cc: Hilton Chain
* gnu/packages/image.scm (libwebp/fixed): New variable.
(libwebp)[replacement]: Assign it to new field.
---
gnu/packages/image.scm | 17 +++++++++++++++++
1 file changed, 17 insertions(+)
diff --git a/gnu/packages/image.scm b/gnu/packages/image.scm
index 50af2001ad..d4390fe3f3 100644
--- a/gnu/packages/image.scm
+++ b/gnu/packages/image.scm
@@ -1432,6 +1432,7 @@ (define-public libwebp
(package
(name "libwebp")
(version "1.2.4")
+ (replacement libwebp/fixed)
(source
(origin
;; No tarballs are provided for >0.6.1.
@@ -1470,6 +1471,22 @@ (define-public libwebp
channels.")
(license license:bsd-3)))
+(define libwebp/fixed
+ (package
+ (inherit libwebp)
+ (name "libwebp")
+ (version "1.3.1")
+ (source
+ (origin
+ (method git-fetch)
+ (uri (git-reference
+ (url "https://chromium.googlesource.com/webm/libwebp")
+ (commit (string-append "v" version))))
+ (file-name (git-file-name name version))
+ (sha256
+ (base32
+ "1aas6gwy7kfcq34cil781kcsl286khh9grwcx7k4d2n1g7zcpl3m"))))))
+
(define-public libmng
(package
(name "libmng")
base-commit: 3755941f038ec66fba568fa88d6b2d295e196723
--
2.41.0
^ permalink raw reply related [flat|nested] 2+ messages in thread
end of thread, other threads:[~2023-08-16 20:54 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-07-17 7:29 [bug#64676] [PATCH] gnu: libwebp: Replace with 1.3.1. [fixes CVE-2023-1999] Hilton Chain via Guix-patches via
2023-08-16 20:52 ` bug#64676: " Ludovic Courtès
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).