gnu: libtiff: Add fixes several security flaws.
Fixes CVE-2017-{7593, 7594, 7595, 7596, 7597, 7598, 7599, 7600, 7601, 7602}.
* gnu/packages/patches/libtiff-CVE-2017-7593.patch,
gnu/packages/patches/libtiff-CVE-2017-7594.patch,
gnu/packages/patches/libtiff-multiple-UBSAN-crashes.patch: New files.
* gnu/local.mk (dist_patch_DATA): Add them.
* gnu/packages/image.scm (libtiff)[replacement]: New field.
(libtiff/fixed): New variable.
system: Define <boot-parameters> before first use.
Fixes <http://bugs.gnu.org/26791>.
Reported by Mark H Weaver <mhw@netris.org>.
* gnu/system.scm (<boot-parameters>, read-boot-parameters)
(read-boot-parameters-file): Move before first use of the
'boot-parameters' macro.
gnu: icecat: Update to 52.1.0-gnu1. Add fixes from upstream ESR 52.1.1.
* gnu/packages/gnuzilla.scm (icecat): Update to 52.1.0-gnu1. Remove patches
that are included in the new release. In the snippet, don't try to remove
dom/devicestorage, which has since been removed upstream. Add selected fixes
from upstream mozilla-esr52, up to the ESR 52.1.1 release.
* gnu/packages/patches/icecat-bug-1299500-pt10.patch: Delete file.
* gnu/local.mk (dist_patch_DATA): Remove it.
gnu: speedtest-cli: Update to 1.0.6.
* gnu/packages/networking.scm (speedtest-cli): Update to 1.0.6.
gnu: meson: Update to 0.40.1.
* gnu/packages/build-tools.scm (meson): Update to 0.40.1.
gnu: youtube-dl: Update to 2017.05.07.
* gnu/packages/video.scm (youtube-dl): Update to 2017.05.07.
tests: Corrupt archive import test is robust against different store prefixes.
* tests/store.scm ("import corrupt path"): Set 'index' to #x70.
build: Use 'guix pack -K' for the 'guix-binary*.tar.xz' targets.
* Makefile.am (guix-binary.%.tar.xz): Add -K flag for 'guix pack'.
maint: Add 'time-monotonic' bug workaround in build-aux/hydra/evaluate.scm.
* build-aux/hydra/evaluate.scm: Add 'time-monotonic' workaround for
Guile 2.2.
maint: Add 'update-guix-package' target.
* build-aux/update-guix-package.scm: New file.
* Makefile.am (EXTRA_DIST): Add it.
(update-guix-package): New target.
(.PHONY): Add it.
* gnu/packages/package-management.scm (guix): Mention it.
gnu: guix: Remove the stable-release 'guix' package.
* gnu/packages/package-management.scm (guix-release): Remove.
(guix-devel): Rename to...
(guix): ... this. Incorporate fields from former 'guix-release'.
(guix-devel): New variable.
store: Use 'TCP_NODELAY' when connecting to a daemon over PF_INET.
* guix/store.scm (open-inet-socket): Add 'cond-expand' form to define
'TCP_NODELAY' when needed. Add call to 'setsockopt' after 'connect'.
gnu: hexchat: Update to 2.12.4.
* gnu/packages/messaging.scm (hexchat): Update to 2.12.4.
[source]: Remove incorrectly bootstrapped files.
[native-inputs]: Add autoconf, autoconf-archive, automake, libtool,
pkg-config.
[arguments]: Add ‘bootstrap’ phase.
Co-authored-by: Tobias Geerinckx-Rice <me@tobias.gr>
gnu: cppcheck: Update to 1.78.
* gnu/packages/check.scm (cppcheck): Update to 1.78.
Revert "gnu: hexchat: Update to 2.12.4."
This reverts commit 09270a97d9297e8acf6d9ff224dd1d58e2a4498e.
The source derivation failed to build with:
/gnu/store/19lkrck1844idbcfq6ajzr0akmr8rshj-hexchat-2.12.4.tar.xz-builder:1:2293:
In procedure #<procedure f6fdc0 ()>:
/gnu/store/19lkrck1844idbcfq6ajzr0akmr8rshj-hexchat-2.12.4.tar.xz-builder:1:2293:
In procedure module-lookup: Unbound variable: inputs
gnu: certbot, python-acme: Update to 0.14.0.
* gnu/packages/tls.scm (certbot, python-acme, python2-acme): Update to 0.14.0.
gnu: Add emacs-evil-surround.
* gnu/packages/emacs.scm (emacs-evil-surround): New variable.
gnu: Move qutebrowser to web-browsers.scm.
* gnu/packages/web.scm: Move qutebrowser...
* gnu/packages/web-browsers.scm: ...here.
gnu: limnoria: Update to 20170330.
* gnu/packages/irc.scm (limnoria): Update to 20170330.
Signed-off-by: Ludovic Courtès <ludo@gnu.org>