gnu: libpng: Update to 1.5.26 [fixes CVE-2015-8472 and CVE-2015-8540].
* gnu/packages/image.scm (libpng): Update to 1.5.26.
gnu: jasper: Patch CVE-2008-3522.
* gnu/packages/patches/jasper-CVE-2008-3522.patch: New file.
* gnu/packages/image.scm (jasper)[source]: Use it.
* gnu-system.am (dist_patch_DATA): Add it.
gnu: Add jasper.
* gnu/packages/image.scm (jasper): New variable.
gnu: libpng: Update to 1.5.24 [fixes CVE-2015-8126].
* gnu/packages/image.scm (libpng): Update to 1.5.24.
gnu: Add devil.
* gnu/packages/image.scm (devil): New variable.
* gnu/packages/patches/devil-fix-libpng.patch: New file.
* gnu-system.am (dist_patch_DATA): Add it.
gnu: images: Add jpegoptim 1.4.3
* gnu/packages/images.scm (jpegoptim): New variable jpegoptim
Signed-off-by: Ludovic Courtès <ludo@gnu.org>
gnu: libpng: Use 1.5.24 as a replacement [fixes CVE-2015-8126].
Reported by Leo Famulari <leo@famulari.name>.
* gnu/packages/image.scm (libpng-urls): New procedure.
(libpng)[source]: Use it.
[replacement]: New field.
(libpng-1.5.24): New variable.
Merge branch 'dbus-update'
gnu: leptonica: Disable parallel tests.
* gnu/packages/image.scm (leptonica)[arguments]: Add #:parallel-tests?.
gnu: leptonica: Disable failing tests.
* gnu/packages/image.scm (leptonica)[arguments]: Add 'disable-failing-tests' phase.
gnu: leptonica: Update to 1.72.
* gnu/packages/image.scm (leptonica): Update to 1.72.
gnu: giflib: Update to 5.1.1.
* gnu/packages/image.scm (giflib): Update to 5.1.1.
gnu: giflib: Update to 5.1.1.
* gnu/packages/image.scm (giflib): Update to 5.1.1.
Merge branch 'master' into core-updates
gnu: libwmf: Add fixes for several security flaws.
* gnu/packages/patches/libwmf-CAN-2004-0941.patch,
gnu/packages/patches/libwmf-CVE-2007-0455.patch,
gnu/packages/patches/libwmf-CVE-2007-2756.patch,
gnu/packages/patches/libwmf-CVE-2007-3472.patch,
gnu/packages/patches/libwmf-CVE-2007-3473.patch,
gnu/packages/patches/libwmf-CVE-2007-3477.patch,
gnu/packages/patches/libwmf-CVE-2009-3546.patch: New files.
* gnu/packages/patches/libwmf-CVE-2015-0848+4588+4695+4696.patch: Delete
file. Replace with ...
* gnu/packages/patches/libwmf-CVE-2015-0848+CVE-2015-4588.patch,
gnu/packages/patches/libwmf-CVE-2015-4695.patch,
gnu/packages/patches/libwmf-CVE-2015-4696.patch: ... these new files.
* gnu-system.am (dist_patch_DATA): Adjust accordingly.
* gnu/packages/image.scm (libwmf)[source]: Adjust set of patches.
Merge branch 'master' into core-updates
gnu: openjpeg-2.x: Add fix for CVE-2015-6581.
* gnu/packages/patches/openjpeg-CVE-2015-6581.patch: New file.
* gnu-system.am (dist_patch_DATA): Add it.
* gnu/packages/image.scm (openjpeg, openjpeg-2.0)[source]: Add patch.
gnu: freeimage: Add fix for CVE-2015-0852.
* gnu/packages/patches/freeimage-CVE-2015-0852.patch: New file.
* gnu-system.am (dist_patch_DATA): Add it.
* gnu/packages/image.scm (freeimage)[source]: Add patch.