df91a970b6
Fix CVE-2022-2085: A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an init_device_procs defined for the device that uses it as a prototype that depends upon the number of bits per pixel. For bpp > 64, mem_x_device is used and does not have an init_device_procs defined. This flaw allows an attacker to parse a large number of bits (more than 64 bits per pixel), which triggers a NULL pointer dereference flaw, causing an application to crash. Drop patch (already in version) https://www.ghostscript.com/doc/9.56.0/News.htm https://www.ghostscript.com/doc/9.56.1/News.htm Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
91 lines
2.3 KiB
Makefile
91 lines
2.3 KiB
Makefile
################################################################################
|
|
#
|
|
# ghostscript
|
|
#
|
|
################################################################################
|
|
|
|
GHOSTSCRIPT_VERSION = 9.56.1
|
|
GHOSTSCRIPT_SITE = https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/download/gs$(subst .,,$(GHOSTSCRIPT_VERSION))
|
|
GHOSTSCRIPT_LICENSE = AGPL-3.0
|
|
GHOSTSCRIPT_LICENSE_FILES = LICENSE
|
|
GHOSTSCRIPT_CPE_ID_VENDOR = artifex
|
|
GHOSTSCRIPT_DEPENDENCIES = \
|
|
host-lcms2 \
|
|
host-libjpeg \
|
|
host-pkgconf \
|
|
host-zlib \
|
|
fontconfig \
|
|
ghostscript-fonts \
|
|
jpeg \
|
|
lcms2 \
|
|
libpng \
|
|
tiff
|
|
|
|
# Ghostscript includes (old) copies of several libraries, delete them.
|
|
# Inspired by linuxfromscratch:
|
|
# http://www.linuxfromscratch.org/blfs/view/svn/pst/gs.html
|
|
define GHOSTSCRIPT_REMOVE_LIBS
|
|
rm -rf $(@D)/freetype $(@D)/ijs $(@D)/jbig2dec $(@D)/jpeg \
|
|
$(@D)/lcms2mt $(@D)/libpng $(@D)/openjpeg $(@D)/tiff \
|
|
$(@D)/zlib
|
|
endef
|
|
GHOSTSCRIPT_POST_PATCH_HOOKS += GHOSTSCRIPT_REMOVE_LIBS
|
|
|
|
GHOSTSCRIPT_CONF_ENV = \
|
|
CCAUX="$(HOSTCC)" \
|
|
CFLAGSAUX="$(HOST_CFLAGS) $(HOST_LDFLAGS)" \
|
|
PKGCONFIG="$(PKG_CONFIG_HOST_BINARY)"
|
|
|
|
GHOSTSCRIPT_CONF_OPTS = \
|
|
--disable-compile-inits \
|
|
--enable-fontconfig \
|
|
--with-fontpath=/usr/share/fonts \
|
|
--enable-freetype \
|
|
--disable-gtk \
|
|
--without-libpaper \
|
|
--without-pdf \
|
|
--with-system-libtiff
|
|
|
|
ifeq ($(BR2_PACKAGE_JBIG2DEC),y)
|
|
GHOSTSCRIPT_DEPENDENCIES += jbig2dec
|
|
GHOSTSCRIPT_CONF_OPTS += --with-jbig2dec
|
|
else
|
|
GHOSTSCRIPT_CONF_OPTS += --without-jbig2dec
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_LIBIDN),y)
|
|
GHOSTSCRIPT_DEPENDENCIES += libidn
|
|
GHOSTSCRIPT_CONF_OPTS += --with-libidn
|
|
else
|
|
GHOSTSCRIPT_CONF_OPTS += --without-libidn
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_OPENJPEG),y)
|
|
GHOSTSCRIPT_DEPENDENCIES += openjpeg
|
|
GHOSTSCRIPT_CONF_OPTS += --enable-openjpeg
|
|
else
|
|
GHOSTSCRIPT_CONF_OPTS += --disable-openjpeg
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_CUPS),y)
|
|
GHOSTSCRIPT_DEPENDENCIES += cups
|
|
GHOSTSCRIPT_CONF_OPTS += \
|
|
CUPSCONFIG=$(STAGING_DIR)/usr/bin/cups-config \
|
|
--enable-cups
|
|
else
|
|
GHOSTSCRIPT_CONF_OPTS += --disable-cups
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_XLIB_LIBX11),y)
|
|
GHOSTSCRIPT_DEPENDENCIES += xlib_libX11
|
|
GHOSTSCRIPT_CONF_OPTS += --with-x
|
|
else
|
|
GHOSTSCRIPT_CONF_OPTS += --without-x
|
|
endif
|
|
|
|
ifeq ($(BR2_TOOLCHAIN_HAS_THREADS),)
|
|
GHOSTSCRIPT_CONF_OPTS += --without-tesseract
|
|
endif
|
|
|
|
$(eval $(autotools-package))
|