gnu: openjpeg: Update to 2.2.0 [security fixes].

In addition to the patches we already had (which are not mentioned in the
ChangeLog, but verified by following their respective GitHub issues) this
release also fixes CVE-2016-9112, CVE-2016-5139, CVE-2016-5152, CVE-2016-5158,
CVE-2016-5159, CVE-2016-1626 and CVE-2016-1628.

See <https://github.com/uclouvain/openjpeg/blob/v2.2.0/CHANGELOG.md> for details.

* gnu/packages/patches/openjpeg-CVE-2016-9572-CVE-2016-9573.patch,
  gnu/packages/patches/openjpeg-CVE-2016-9850-CVE-2016-9851.patch: Delete files.
* gnu/local.mk (dist_patch_DATA): Remove them.
* gnu/packages/image.scm (openjpeg): Update to 2.2.0.
[source](patches): Remove.
* gnu/packages/gstreamer.scm (gst-plugins-bad)[arguments]: Add phase to patch
hard-coded openjpeg-2.1 path.

gnu: ruby-puma: Update to 3.9.1.

* gnu/packages/ruby.scm (ruby-puma): Update to 3.9.1.
[source]: Remove patch.
[arguments]: Disable tests.
[native-inputs]: Remove field.
* gnu/packages/patches/ruby-puma-ignore-broken-test.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.

gnu: ntfs-3g: Update to 2017.3.23.

* gnu/packages/linux.scm (ntfs-3g): Update to 2017.3.23.
[source]: Remove patch.
* gnu/packages/patches/ntfs-3g-CVE-2017-0358.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.

gnu: libtasn1: Fix CVE-2017-10790.

* gnu/packages/patches/libtasn1-CVE-2017-10790.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/tls.scm (libtasn1/fixed)[source]: Use it.

gnu: php: Update to 7.1.8.

* gnu/packages/patches/gd-CVE-2017-7890.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it
* gnu/packages/php.scm (php): Update to 7.1.8.

gnu: fabric: Update to 1.13.2.

* gnu/packages/admin.scm (fabric): Update to 1.13.2.  Remove outdated comments.
[source]: Remove ‘patches’.
* gnu/packages/patches/fabric-tests.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.

gnu: glibc@2.22: Fix security issues.

Fixes CVE-2015-{5180,7547}, CVE-2016-{3075,3706,4429}.

* gnu/packages/base.scm (glibc@2.22)[source]: Add patches.
* gnu/packages/patches/glibc-CVE-2015-7547.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.

gnu: glibc@2.23: Fix CVE-2015-5180, CVE-2016-{3075,3706,4429}.

* gnu/packages/base.scm (glibc@2.23)[source]: Add patches.
* gnu/packages/patches/glibc-CVE-2016-3075.patch,
gnu/packages/patches/glibc-CVE-2016-3706.patch,
gnu/packages/patches/glibc-CVE-2016-4429.patch: New files.
* gnu/local.mk (dist_patch_DATA): Register them.

gnu: glibc@2.24: Fix CVE-2015-5180.

* gnu/packages/base.scm (glibc@2.24)[source]: Add patch.
* gnu/packages/patches/glibc-CVE-2015-5180.patch: New file.
* gnu/local.mk (dist_patch_DATA): Register it.

gnu: guile-ssh: Update to 0.11.2.

* gnu/packages/ssh.scm (guile-ssh): Update to 0.11.2.
[source]: Remove 'patches', 'modules', and 'snippet'.
* gnu/packages/patches/guile-ssh-channel-finalization.patch,
gnu/packages/patches/guile-ssh-double-free.patch,
gnu/packages/patches/guile-ssh-rexec-bug.patch: Remove.
* gnu/local.mk (dist_patch_DATA): Remove them.

gnu: python-pbr-minimal: Update to 3.0.1

* gnu/packages/python.scm (python-pbr-minimal): Update to 3.0.1
[source]: Update hash and remove patch.
* gnu/packages/patches/python-pbr-fix-man-page-support.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove it.

Signed-off-by: Efraim Flashner <efraim@flashner.co.il>

gnu: libgit2: Update to 0.26.0.

* gnu/packages/version-control.scm (libgit2): Update to 0.26.0.  Remove
"libgit2-use-after-free.patch".
* gnu/packages/patches/libgit2-use-after-free.patch: Remove.
* gnu/local.mk (dist_patch_DATA): Remove it.

gnu: erlang: Fix man-pages search path of 'erl -man'.

* gnu/packages/patches/erlang-man-path.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/erlang.scm (erlang)[source]: Use it.

Signed-off-by: Ludovic Courtès <ludo@gnu.org>

gnu: nss, nss-certs: Update to 3.32.

This release includes minor code changes and many certificate updates:
<https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.32_release_notes>

* gnu/packages/certs.scm (nss-certs): Update to 3.32.
* gnu/packages/gnuzilla.scm (nss): Update to 3.32.
[arguments]: Prevent another test file from being installed.
* gnu/packages/patches/nss-pkgconfig.patch: Adjust.

gnu: evince: Update to 3.24.1.

* gnu/packages/gnome.scm (evince): Update to 3.24.1.
[source]: Remove obsolete patch.
* gnu/packages/patches/evince-CVE-2017-1000083.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.

gnu: perl-dbd-mysql: Fix CVE-2017-10788.

* gnu/packages/patches/perl-dbd-mysql-CVE-2017-10788.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/databases.scm (perl-dbd-mysql)[source]: Use it.

gnu: Add guile2.0-bytestructures.

* gnu/packages/patches/guile-bytestructures-name-clash.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.
* gnu/packages/guile.scm (guile-bytestructures)[source]: Use it.
[arguments]: Unpack the source.
[native-inputs]: New field.
(guile2.0-bytestructures): New variable.

gnu: gnome: Add deja-dup.

* gnu/packages/gnome.scm (deja-dup): New variable.
* gnu/packages/patches/deja-dup-use-ref-keyword-for-iter.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add patch file entry.

gnu: metabat: Update to 2.11.1.

* gnu/packages/bioinformatics.scm (metabat): Update to 2.11.1.
[source]: Add patch to fix compilation.
[arguments]: Adjust regular expressions modifying 'SConstruct'.
* gnu/packages/patches/metabat-fix-compilation.patch: New file.
* gnu/local.mk (dist_patch_DATA): Add it.

gnu: bcftools: Update to 1.5.

* gnu/packages/bioinformatics.scm (bcftools): Update to 1.5.
[origin]: Remove fix-makefile patch.
[arguments]: Add configure flags, add LIBS make flag.  Do not delete
configure phase.
* gnu/packages/patches/bcftools-fix-makefile.patch: Remove file.
* gnu/local.mk (dist_patch_DATA): Remove it.