From 60495596cde8463d5931dad5cc48fba0b77eaae5 Mon Sep 17 00:00:00 2001 From: Bernd Kuhls Date: Sat, 22 Jun 2024 10:43:22 +0200 Subject: [PATCH] package/ghostscript: security bump version to 10.03.1 Fixes CVE-2024-33869, CVE-2023-52722, CVE-2024-33870, CVE-2024-33871 and CVE-2024-29510. Release notes: https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/tag/gs10031 Remove patch which is included in this release. Signed-off-by: Bernd Kuhls Signed-off-by: Peter Korsgaard (cherry picked from commit 515e579567a8e44e8e4c537ba10f49d5b5d732d9) Signed-off-by: Peter Korsgaard --- .../0001-Fix-build-without-BUILD_PDF.patch | 34 ------------------- package/ghostscript/ghostscript.hash | 4 +-- package/ghostscript/ghostscript.mk | 2 +- 3 files changed, 3 insertions(+), 37 deletions(-) delete mode 100644 package/ghostscript/0001-Fix-build-without-BUILD_PDF.patch diff --git a/package/ghostscript/0001-Fix-build-without-BUILD_PDF.patch b/package/ghostscript/0001-Fix-build-without-BUILD_PDF.patch deleted file mode 100644 index af69cd3670..0000000000 --- a/package/ghostscript/0001-Fix-build-without-BUILD_PDF.patch +++ /dev/null @@ -1,34 +0,0 @@ -From 088f3cd6e58cff5fa51e072d1829f7691a5f6681 Mon Sep 17 00:00:00 2001 -From: Fabrice Fontaine -Date: Wed, 20 Sep 2023 13:44:28 +0100 -Subject: [PATCH] Fix build without BUILD_PDF - -The PDFSetParams PostScript extension operator was missing a stub function definition -when the PDF interpreter is not built in. - - Author: Fabrice Fontaine -Upstream: https://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=088f3cd6e58cff5fa51e072d1829f7691a5f6681 -Signed-off-by: Fabrice Fontaine ---- - psi/zpdfops.c | 5 +++++ - 1 file changed, 5 insertions(+) - -diff --git a/psi/zpdfops.c b/psi/zpdfops.c -index e7e0a42ee..271687a18 100644 ---- a/psi/zpdfops.c -+++ b/psi/zpdfops.c -@@ -1507,6 +1507,11 @@ static int zPDFdrawannots(i_ctx_t *i_ctx_p) - return_error(gs_error_undefined); - } - -+static int zPDFSetParams(i_ctx_t *i_ctx_p) -+{ -+ return_error(gs_error_undefined); -+} -+ - static int zPDFInit(i_ctx_t *i_ctx_p) - { - return_error(gs_error_undefined); --- -2.34.1 - diff --git a/package/ghostscript/ghostscript.hash b/package/ghostscript/ghostscript.hash index 849f6c64ba..ed8e4cf7d9 100644 --- a/package/ghostscript/ghostscript.hash +++ b/package/ghostscript/ghostscript.hash @@ -1,5 +1,5 @@ -# From https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs10021/SHA512SUMS -sha512 ee0f754c1bd8a18428ad14eaa3ead80ff8b96275af5012e7a8384f1f10490da056eec9ae3cc791a7a13a24e16e54df5bccdd109c7d53a14534bbd7360a300b11 ghostscript-10.02.1.tar.xz +# From https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs10031/SHA512SUMS +sha512 59e071cd23aed246b51317d3cccd9ccf8e1e84c4ecf9b22fb938e561eff42cec61915b0bdd96a313a3ea27750579c54ca0d0862b65edd306a621731c0063ffd3 ghostscript-10.03.1.tar.xz # Hash for license file: sha256 8ce064f423b7c24a011b6ebf9431b8bf9861a5255e47c84bfb23fc526d030a8b LICENSE diff --git a/package/ghostscript/ghostscript.mk b/package/ghostscript/ghostscript.mk index da23ebbadb..80e2543d1c 100644 --- a/package/ghostscript/ghostscript.mk +++ b/package/ghostscript/ghostscript.mk @@ -4,7 +4,7 @@ # ################################################################################ -GHOSTSCRIPT_VERSION = 10.02.1 +GHOSTSCRIPT_VERSION = 10.03.1 GHOSTSCRIPT_SOURCE = ghostscript-$(GHOSTSCRIPT_VERSION).tar.xz GHOSTSCRIPT_SITE = https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs$(subst .,,$(GHOSTSCRIPT_VERSION)) GHOSTSCRIPT_LICENSE = AGPL-3.0