Daniel Sabogal: 8 libx11: upgrade to 1.6.4 (CVE-2016-7942, CVE-2016-7943) main/libxfixes: upgrade to 5.0.3 (CVE-2016-7944) main/libxi: upgrade to 1.7.7 (CVE-2016-7945, CVE-2016-7946) main/libxrandr: upgrade to 1.5.1 (CVE-2016-7947, CVE-2016-7948) main/libxrender: upgrade to 0.9.10 (CVE-2016-7949, CVE-2016-7950) main/libxtst: upgrade to 1.2.3 (CVE-2016-7951, CVE-2016-7952) main/libxv: upgrade to 1.0.11 (CVE-2016-5407) main/libxvmc: ugrade to 1.0.10 (CVE-2016-7953) 8 files changed, 76 insertions(+), 43 deletions(-)
Copy & paste the following snippet into your terminal to import this patchset into git:
curl -s https://lists.alpinelinux.org/~alpine/aports/patches/2099/mbox | git am -3Learn more about email & git
--- main/libx11/APKBUILD | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) diff --git a/main/libx11/APKBUILD b/main/libx11/APKBUILD index 9de3d25..b6ad355 100644 --- a/main/libx11/APKBUILD +++ b/main/libx11/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libx11 -pkgver=1.6.3 -pkgrel=2 +pkgver=1.6.4 +pkgrel=0 pkgdesc="X11 client-side library" url="http://xorg.freedesktop.org/" arch="all" @@ -13,6 +13,11 @@ depends_dev="libxcb-dev xextproto xf86bigfontproto-dev xtrans makedepends="$depends_dev util-macros xproto kbproto" source="http://xorg.freedesktop.org/releases/individual/lib/libX11-$pkgver.tar.bz2" +# secfixes: +# 1.6.4: +# - CVE-2016-7942 +# - CVE-2016-7943 + build() { cd "$srcdir"/libX11-$pkgver ./configure \ @@ -30,6 +35,6 @@ package() { install -Dm644 COPYING "$pkgdir"/usr/share/licenses/$pkgname/COPYING } -md5sums="2e36b73f8a42143142dda8129f02e4e0 libX11-1.6.3.tar.bz2" -sha256sums="cf31a7c39f2f52e8ebd0db95640384e63451f9b014eed2bb7f5de03e8adc8111 libX11-1.6.3.tar.bz2" -sha512sums="01bbac8075b3fdae19cacfde1c799469f06fb864235025ce444fc10a3ba079bce30f4f3527db47c5edbf91d08299c61116cdf296efa38b2034c0099fac99cc69 libX11-1.6.3.tar.bz2" +md5sums="6d54227082f3aa2c596f0b3a3fbb9175 libX11-1.6.4.tar.bz2" +sha256sums="b7c748be3aa16ec2cbd81edc847e9b6ee03f88143ab270fb59f58a044d34e441 libX11-1.6.4.tar.bz2" +sha512sums="1fb2ab1f16af14f03ad147ecf2a43c0137c528b9f7ad7de12c47a5861159313260c40122e8271ebd53bf06636d84a4766e06354c7791780f623ba316bed46e92 libX11-1.6.4.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxfixes/APKBUILD | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/main/libxfixes/APKBUILD b/main/libxfixes/APKBUILD index 6961154..bba6f75 100644 --- a/main/libxfixes/APKBUILD +++ b/main/libxfixes/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxfixes -pkgver=5.0.2 +pkgver=5.0.3 pkgrel=0 pkgdesc="X11 miscellaneous 'fixes' extension library" url="http://xorg.freedesktop.org/" @@ -11,8 +11,12 @@ depends_dev="xproto fixesproto libx11-dev" makedepends="$depends_dev xextproto" subpackages="$pkgname-dev $pkgname-doc" source="http://xorg.freedesktop.org/releases/individual/lib/libXfixes-$pkgver.tar.bz2" - _builddir="$srcdir"/libXfixes-$pkgver + +# secfixes: +# 5.0.3: +# - CVE-2016-7944 + prepare() { cd "$_builddir" for i in $source; do @@ -37,6 +41,6 @@ package() { cd "$_builddir" make DESTDIR="$pkgdir" install || return 1 } -md5sums="544d73df94e638ba7b64147be416e576 libXfixes-5.0.2.tar.bz2" -sha256sums="9bd20edfec084a1bed481d48dd4815dee88139fffad091418cdda081129a9aea libXfixes-5.0.2.tar.bz2" -sha512sums="570a072da4d88653915e5bb196c4b9048482b4f9c2d2638bad5ec538de1ed799322f32c21815a3358ddedec6bde43a715d9ebb466a61fbb01eb432dfcce330a0 libXfixes-5.0.2.tar.bz2" +md5sums="07e01e046a0215574f36a3aacb148be0 libXfixes-5.0.3.tar.bz2" +sha256sums="de1cd33aff226e08cefd0e6759341c2c8e8c9faf8ce9ac6ec38d43e287b22ad6 libXfixes-5.0.3.tar.bz2" +sha512sums="72d5ee496e5c0520c95ef6bbb52deff1ee4c29792f11aa17aeb25c8ec5eb992ca502de040c77ad95835d1b1432f315b6cb7a3308b434847c28b9c2c6f9d1ac10 libXfixes-5.0.3.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxi/APKBUILD | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) diff --git a/main/libxi/APKBUILD b/main/libxi/APKBUILD index 75b0611..11d127e 100644 --- a/main/libxi/APKBUILD +++ b/main/libxi/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxi -pkgver=1.7.6 +pkgver=1.7.7 pkgrel=0 pkgdesc="X11 Input extension library" url="http://xorg.freedesktop.org" @@ -16,8 +16,13 @@ makedepends=" xproto " source="http://xorg.freedesktop.org/releases/individual/lib/libXi-$pkgver.tar.bz2" - _builddir="$srcdir"/libXi-$pkgver + +# secfixes: +# 1.7.7: +# - CVE-2016-7945 +# - CVE-2016-7946 + prepare() { cd "$_builddir" for i in $source; do @@ -44,6 +49,6 @@ package() { make DESTDIR="$pkgdir" install || return 1 install -Dm644 COPYING "$pkgdir"/usr/share/licenses/$pkgname/COPYING } -md5sums="510e555ecfffa8d2298a0f42b725e563 libXi-1.7.6.tar.bz2" -sha256sums="1f32a552cec0f056c0260bdb32e853cec0673d2f40646ce932ad5a9f0205b7ac libXi-1.7.6.tar.bz2" -sha512sums="229e1e6e1486808ffad9610a8fd7930bd3348fa5d11709adcb6239b5c01af877ac549072e8d3aec605a3835d8278fd48146db50577fa031407d20c1e871d8f4a libXi-1.7.6.tar.bz2" +md5sums="cc0883a898222d50ff79af3f83595823 libXi-1.7.7.tar.bz2" +sha256sums="996f834fa57b9b33ba36690f6f5c6a29320bc8213022943912462d8015b1e030 libXi-1.7.7.tar.bz2" +sha512sums="2501ee104753c54cc067b71c07d8add35c4c2f961eb8041cc6aa1963ec34032fa827c2db4d88097ec3e667a591c759b75007f92daa3b6834db5c5485fc243557 libXi-1.7.7.tar.bz2"996f834fa57b9b33ba36690f6f5c6a29320bc8213022943912462d8015b1e030 libXi-1.7.7.tar.bz2 -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxrandr/APKBUILD | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/main/libxrandr/APKBUILD b/main/libxrandr/APKBUILD index 39ebc4a..86fc0bc 100644 --- a/main/libxrandr/APKBUILD +++ b/main/libxrandr/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxrandr -pkgver=1.5.0 +pkgver=1.5.1 pkgrel=0 pkgdesc="X11 RandR extension library" url="http://xorg.freedesktop.org/" @@ -12,9 +12,13 @@ depends_dev="randrproto libx11-dev libxext-dev" makedepends="$depends_dev libxrender-dev xproto" source="http://xorg.freedesktop.org/releases/individual/lib/libXrandr-$pkgver.tar.bz2 " +_builddir="$srcdir"/libXrandr-$pkgver +# secfixes: +# 1.5.1: +# - CVE-2016-7947 +# - CVE-2016-7948 -_builddir="$srcdir"/libXrandr-$pkgver prepare() { cd "$_builddir" for i in $source; do @@ -40,6 +44,6 @@ package() { make DESTDIR="$pkgdir" install || return 1 install -Dm644 COPYING "$pkgdir"/usr/share/licenses/$pkgname/COPYING } -md5sums="309762867e41c6fd813da880d8a1bc93 libXrandr-1.5.0.tar.bz2" -sha256sums="6f864959b7fc35db11754b270d71106ef5b5cf363426aa58589cb8ac8266de58 libXrandr-1.5.0.tar.bz2" -sha512sums="f488b55ffa47977fdf6c662348f4ca9f56e44032a0bb83fedc2ff9c26c003f2694c5ad677ab5dcd9b1c3e3f72fcd33b25b68ededec9c8e86f5146b9fb5b2d3cc libXrandr-1.5.0.tar.bz2" +md5sums="28e486f1d491b757173dd85ba34ee884 libXrandr-1.5.1.tar.bz2" +sha256sums="1ff9e7fa0e4adea912b16a5f0cfa7c1d35b0dcda0e216831f7715c8a3abcf51a libXrandr-1.5.1.tar.bz2" +sha512sums="ddcee1c50da8810412fd747b05a073ee5522b2f3b0a74e6a9b48b489ce9712356d1bc3009f8898aeee85671cdb44e2dafa04c8caf23d97963b36b1af9174445a libXrandr-1.5.1.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxrender/APKBUILD | 17 ++++++++++------- 1 file changed, 10 insertions(+), 7 deletions(-) diff --git a/main/libxrender/APKBUILD b/main/libxrender/APKBUILD index 0e4df54..f3fa3b2 100644 --- a/main/libxrender/APKBUILD +++ b/main/libxrender/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxrender -pkgver=0.9.9 -pkgrel=1 +pkgver=0.9.10 +pkgrel=0 pkgdesc="X Rendering Extension client library" url="http://xorg.freedesktop.org/" arch="all" @@ -11,10 +11,13 @@ depends= depends_dev="renderproto libx11-dev" makedepends="$depends_dev" source="http://xorg.freedesktop.org/releases/individual/lib/libXrender-$pkgver.tar.bz2" - - _builddir="$srcdir"/libXrender-$pkgver +# secfixes: +# 0.9.10: +# - CVE-2016-7949 +# - CVE-2016-7950 + build() { cd "$_builddir" ./configure \ @@ -29,6 +32,6 @@ package() { cd "$_builddir" make DESTDIR="$pkgdir" install || return 1 } -md5sums="5db92962b124ca3a8147daae4adbd622 libXrender-0.9.9.tar.bz2" -sha256sums="fc2fe57980a14092426dffcd1f2d9de0987b9d40adea663bd70d6342c0e9be1a libXrender-0.9.9.tar.bz2" -sha512sums="6bb6d18d6a1b26631921b19b95a18556296208578f59fbdb7dd81f09bd9399021a2c72e7fc1504134cd004722153dc5b43fef49347aea54d4748fa22d3b6e9a7 libXrender-0.9.9.tar.bz2" +md5sums="802179a76bded0b658f4e9ec5e1830a4 libXrender-0.9.10.tar.bz2" +sha256sums="c06d5979f86e64cabbde57c223938db0b939dff49fdb5a793a1d3d0396650949 libXrender-0.9.10.tar.bz2" +sha512sums="16ea0cf638b32d7df54b270457ef8c9d9a80da27fa845b105b560cb31027b4c7fe799cf23d6b6bac492be5961264e96d7845d316a9af4de9ff38bf40885ea6fe libXrender-0.9.10.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxtst/APKBUILD | 15 ++++++++++----- 1 file changed, 10 insertions(+), 5 deletions(-) diff --git a/main/libxtst/APKBUILD b/main/libxtst/APKBUILD index 789296d..7616a21 100644 --- a/main/libxtst/APKBUILD +++ b/main/libxtst/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxtst -pkgver=1.2.2 +pkgver=1.2.3 pkgrel=0 pkgdesc="X11 Testing -- Resource extension library" url="http://xorg.freedesktop.org/" @@ -12,8 +12,13 @@ depends_dev="recordproto libx11-dev libxext-dev inputproto libxi-dev" makedepends="$depends_dev" source="http://xorg.freedesktop.org/releases/individual/lib/libXtst-$pkgver.tar.bz2 " - _builddir="$srcdir"/libXtst-$pkgver + +# secfixes: +# 1.2.3: +# - CVE-2016-7951 +# - CVE-2016-7952 + prepare() { cd "$_builddir" for i in $source; do @@ -39,6 +44,6 @@ package() { install -D -m644 COPYING "$pkgdir"/usr/share/licenses/$pkgname/LICENSE } -md5sums="25c6b366ac3dc7a12c5d79816ce96a59 libXtst-1.2.2.tar.bz2" -sha256sums="ef0a7ffd577e5f1a25b1663b375679529663a1880151beaa73e9186c8309f6d9 libXtst-1.2.2.tar.bz2" -sha512sums="1cf040f16d426e6a6d1cf8c0f966c171418c082165ae6e9bed6285cd45f144e4ef58bf74c6d34fd81e6894534d21df55efe5d0bc0b2a28f9bb9d74e168dd7369 libXtst-1.2.2.tar.bz2" +md5sums="ef8c2c1d16a00bd95b9fdcef63b8a2ca libXtst-1.2.3.tar.bz2" +sha256sums="4655498a1b8e844e3d6f21f3b2c4e2b571effb5fd83199d428a6ba7ea4bf5204 libXtst-1.2.3.tar.bz2" +sha512sums="6f6741fd3596775eaa056465319f78c29c91b3893a851a4899df651a2023a4d762497b112a33d7d3e8865fe85d173d03e4b49daef76a66af1ae1eaab82a12765 libXtst-1.2.3.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxv/APKBUILD | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-) diff --git a/main/libxv/APKBUILD b/main/libxv/APKBUILD index f298ea8..f46d3cc 100644 --- a/main/libxv/APKBUILD +++ b/main/libxv/APKBUILD @@ -1,7 +1,7 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxv -pkgver=1.0.10 -pkgrel=1 +pkgver=1.0.11 +pkgrel=0 pkgdesc="X11 Video extension library" url="http://xorg.freedesktop.org/" arch="all" @@ -12,8 +12,12 @@ makedepends="$depends_dev" subpackages="$pkgname-dev $pkgname-doc" source="http://xorg.freedesktop.org/releases/individual/lib/libXv-$pkgver.tar.bz2 " - _builddir="$srcdir"/libXv-$pkgver + +# secfixes: +# 1.0.11: +# - CVE-2016-5407 + prepare() { cd "$_builddir" @@ -41,6 +45,6 @@ package() { install -D -m644 COPYING "$pkgdir"/usr/share/licenses/$pkgname/COPYING } -md5sums="e0af49d7d758b990e6fef629722d4aca libXv-1.0.10.tar.bz2" -sha256sums="55fe92f8686ce8612e2c1bfaf58c057715534419da700bda8d517b1d97914525 libXv-1.0.10.tar.bz2" -sha512sums="3c9642006dbc7a74f91263aa3a94711a95ee436b03d97ef51fce2bc2f602c25589606e1fcb58287ea0efebb3b9dbe7ef5fcb94e11ad3ec6be7830947a4cefe03 libXv-1.0.10.tar.bz2" +md5sums="210b6ef30dda2256d54763136faa37b9 libXv-1.0.11.tar.bz2" +sha256sums="d26c13eac99ac4504c532e8e76a1c8e4bd526471eb8a0a4ff2a88db60cb0b088 libXv-1.0.11.tar.bz2" +sha512sums="97cb3ab06cedc87799d06e1affd5cee32ed0e551903fa5c915f79e7ed92eded867e3220b4a663822f7ebd86fdc71b09943b7077d98f1200019992e8d24144e58 libXv-1.0.11.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---
--- main/libxvmc/APKBUILD | 13 ++++++++----- 1 file changed, 8 insertions(+), 5 deletions(-) diff --git a/main/libxvmc/APKBUILD b/main/libxvmc/APKBUILD index d455587..533b105 100644 --- a/main/libxvmc/APKBUILD +++ b/main/libxvmc/APKBUILD @@ -1,6 +1,6 @@ # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=libxvmc -pkgver=1.0.9 +pkgver=1.0.10 pkgrel=0 pkgdesc="X11 Video Motion Compensation extension library" url="http://xorg.freedesktop.org/" @@ -11,9 +11,12 @@ depends= depends_dev="xproto videoproto libxv-dev libx11-dev libxext-dev" makedepends="$depends_dev libtool autoconf automake util-macros" source="http://xorg.freedesktop.org/releases/individual/lib/libXvMC-$pkgver.tar.bz2" - _builddir="$srcdir"/libXvMC-$pkgver +# secfixes: +# 1.0.10: +# - CVE-2016-7953 + build() { cd "$_builddir" ./configure \ @@ -29,6 +32,6 @@ package() { cd "$_builddir" make DESTDIR="$pkgdir" install || return 1 } -md5sums="eba6b738ed5fdcd8f4203d7c8a470c79 libXvMC-1.0.9.tar.bz2" -sha256sums="0703d7dff6ffc184f1735ca5d4eb9dbb402b522e08e008f2f96aee16c40a5756 libXvMC-1.0.9.tar.bz2" -sha512sums="658db91ae37cbad468a85301d77b6237674f91fad82679348c26a297bb8c1da81f6b7b13c4ff47a3d6c7f4f8fefdf270d0fde316ec14666fa4e2d1e2c4b337ca libXvMC-1.0.9.tar.bz2" +md5sums="4cbe1c1def7a5e1b0ed5fce8e512f4c6 libXvMC-1.0.10.tar.bz2" +sha256sums="e501a079b5dfaef0897c56152770c77e05e362065cec58910289aa567277ee2e libXvMC-1.0.10.tar.bz2" +sha512sums="db979627eda2e58dbc95f0705681aa4acf51dc375a078467ea0b1c78414963e52417e525bcf224b4642eab2e540619c168c1e4757fad97bac7d07b60b23b3e19 libXvMC-1.0.10.tar.bz2" -- 2.10.0 --- Unsubscribe: alpine-aports+unsubscribe@lists.alpinelinux.org Help: alpine-aports+help@lists.alpinelinux.org ---