Summary: | <media-libs/openjpeg-2.5.0: security fixes | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | proxy-maint, t |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/uclouvain/openjpeg/blob/v2.5.0/NEWS.md | ||
See Also: | https://github.com/gentoo/gentoo/pull/25523 | ||
Whiteboard: | B2 [glsa+] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 856304 | ||
Bug Blocks: |
Description
John Helmert III
2022-05-13 17:11:37 UTC
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f0a1ba2eaccd64377fa90dd289886faaae126df3 commit f0a1ba2eaccd64377fa90dd289886faaae126df3 Author: Thomas Bracht Laumann Jespersen <t@laumann.xyz> AuthorDate: 2022-05-16 08:07:39 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-05-22 20:35:39 +0000 media-libs/openjpeg: add 2.5.0 Also update to EAPI 8, and bump the test data to the latest commit possible. Drop all security patches from v2.4.0 as they are part of the upstream release. Closes: https://bugs.gentoo.org/844064 Bug: https://bugs.gentoo.org/783513 Bug: https://bugs.gentoo.org/484802 Signed-off-by: Thomas Bracht Laumann Jespersen <t@laumann.xyz> Closes: https://github.com/gentoo/gentoo/pull/25523 Signed-off-by: Sam James <sam@gentoo.org> media-libs/openjpeg/Manifest | 2 + .../files/openjpeg-2.5.0-gnuinstalldirs.patch | 299 +++++++++++++++++++++ media-libs/openjpeg/openjpeg-2.5.0.ebuild | 140 ++++++++++ 3 files changed, 441 insertions(+) Please stable 2.5.0 when ready. Bleh, commit history for this version is full of security fixes: https://github.com/uclouvain/openjpeg/commits/v2.5.0?after=a5891555eb49ed7cc26b2901ea680acda136d811+34&branch=v2.5.0&qualified_name=refs%2Ftags%2Fv2.5.0 The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=3ffb060a535687205849990e329954275cbcd1f4 commit 3ffb060a535687205849990e329954275cbcd1f4 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-09-07 02:52:41 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-09-07 02:58:07 +0000 [ GLSA 202209-04 ] OpenJPEG: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/783513 Bug: https://bugs.gentoo.org/836969 Bug: https://bugs.gentoo.org/844064 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202209-04.xml | 45 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 45 insertions(+) GLSA released, all done! |