ghostscript: update 9.52 -> 9.53.3

ghostscript-9.15-parallel-make.patch rebased; one of the chunks removed upstream. Remove bundled jpeg source, as that seems to be the only way to get ghostscript to fall back to system jpeg library. (From OE-Core rev: ad8c8ffc5a008872d40a36ea825da30accd6a11a) Signed-off-by: Alexander Kanavin <alex.kanavin@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Alexander Kanavin <alex.kanavin@gmail.com> 2020-10-28 22:05:38 +0100
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-10-30 13:22:48 +0000
commit: 2d787812e8619b2f114697dbc51f7fad39206ef5 (patch)
tree: a25fc0317edd35a7a6c16e009a805c77d4159f16 /meta/recipes-extended
parent: 50feea207e01cfe7d0324aba98cbc8e6d11dd018 (diff)
download: poky-2d787812e8619b2f114697dbc51f7fad39206ef5.tar.gz
3 files changed, 12 insertions, 74 deletions
diff --git a/meta/recipes-extended/ghostscript/ghostscript/CVE-2020-15900.patch b/meta/recipes-extended/ghostscript/ghostscript/CVE-2020-15900.patch
deleted file mode 100644
index d7c5f034e5..0000000000
--- a/meta/recipes-extended/ghostscript/ghostscript/CVE-2020-15900.patch
+++ /dev/null
@@ -1,54 +0,0 @@
-From 5d499272b95a6b890a1397e11d20937de000d31b Mon Sep 17 00:00:00 2001
-From: Ray Johnston <ray.johnston@artifex.com>
-Date: Wed, 22 Jul 2020 09:57:54 -0700
-Subject: [PATCH] Bug 702582, CVE 2020-15900 Memory Corruption in Ghostscript
- 9.52
-Fix the 'rsearch' calculation for the 'post' size to give the correct
-size.  Previous calculation would result in a size that was too large,
-and could underflow to max uint32_t. Also fix 'rsearch' to return the
-correct 'pre' string with empty string match.
-A future change may 'undefine' this undocumented, non-standard operator
-during initialization as we do with the many other non-standard internal
-PostScript operators and procedures.
-Upstream-Status: Backport [https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5d499272b95a6b890a1397e11d20937de000d31b]
-CVE: CVE-2020-15900
-Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
---
- psi/zstring.c | 17 +++++++++++------
- 1 file changed, 11 insertions(+), 6 deletions(-)
-diff --git a/psi/zstring.c b/psi/zstring.c
-index 33662dafa..58e1af2b3 100644
--- a/psi/zstring.c
-+++ b/psi/zstring.c
-@@ -142,13 +142,18 @@ search_impl(i_ctx_t *i_ctx_p, bool forward)
-     return 0;
- found:
-     op->tas.type_attrs = op1->tas.type_attrs;
-    op->value.bytes = ptr;
-    r_set_size(op, size);
-+    op->value.bytes = ptr;                             /* match */
-+    op->tas.rsize = size;                              /* match */
-     push(2);
-    op[-1] = *op1;
-    r_set_size(op - 1, ptr - op[-1].value.bytes);
-    op1->value.bytes = ptr + size;
-    r_set_size(op1, count + (!forward ? (size - 1) : 0));
-+    op[-1] = *op1;                                     /* pre */
-+    op[-3].value.bytes = ptr + size;                   /* post */
-+    if (forward) {
-+        op[-1].tas.rsize = ptr - op[-1].value.bytes;   /* pre */
-+        op[-3].tas.rsize = count;                      /* post */
-+    } else {
-+        op[-1].tas.rsize = count;                      /* pre */
-+        op[-3].tas.rsize -= count + size;              /* post */
-+    }
-     make_true(op);
-     return 0;
- }
-- 
-2.17.1
diff --git a/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch b/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch
index ffa269e3b2..5b57da2a97 100644
--- a/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch
+++ b/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch
@@ -1,7 +1,7 @@
-From 84bb692d6b047c09266de154f404af9817fa04aa Mon Sep 17 00:00:00 2001
+From 04a86a613e0f9bfbbad99874f72217f75e8c53a3 Mon Sep 17 00:00:00 2001
 From: Robert Yang <liezhi.yang@windriver.com>
 Date: Thu, 29 Mar 2018 15:59:05 +0800
-Subject: [PATCH 01/10] contrib.mak: fix for parallel build
+Subject: [PATCH] contrib.mak: fix for parallel build
 Upstream-Status: Pending
@@ -9,23 +9,16 @@ Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
 Rebase to 9.23
 Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
 ---
- contrib/contrib.mak | 2 ++
+ contrib/contrib.mak | 1 +
- 1 file changed, 2 insertions(+)
+ 1 file changed, 1 insertion(+)
 diff --git a/contrib/contrib.mak b/contrib/contrib.mak
-index f5a2fa4..4999752 100644
+index 2edee7a..c9100e8 100644
 --- a/contrib/contrib.mak
 +++ b/contrib/contrib.mak
-@@ -1067,6 +1067,7 @@ $(DEVOBJ)dviprlib.$(OBJ) : $(JAPSRC)dviprlib.c $(JAPSRC)dviprlib.h \
+@@ -1241,6 +1241,7 @@ $(DEVOBJ)gdevalps.$(OBJ) : $(JAPSRC)gdevalps.c $(PDEVH) \
-        $(DEVCC) $(O_)$@ $(C_) $(JAPSRC)dviprlib.c
- 
- extra-dmprt-install: install-libdata
-+       mkdir -p $(DESTDIR)$(gsdatadir)$(D)lib
-        $(INSTALL_DATA) $(JAPSRC)dmp_init.ps $(DESTDIR)$(gsdatadir)$(D)lib || exit 1
-        $(INSTALL_DATA) $(JAPSRC)dmp_site.ps $(DESTDIR)$(gsdatadir)$(D)lib || exit 1
-        $(INSTALL_DATA) $(JAPSRC)escp_24.src $(DESTDIR)$(gsdatadir)$(D)lib || exit 1
-@@ -1235,6 +1236,7 @@ $(DEVOBJ)gdevalps.$(OBJ) : $(JAPSRC)gdevalps.c $(PDEVH) \
 ### ----------------- Additional .upp files ---------------- ###
 
 extra-upp-install: install-libdata
@@ -33,6 +26,3 @@ index f5a2fa4..4999752 100644
        for f in $(CONTRIBSRC)uniprint$(D)*.upp; do \
            $(INSTALL_DATA) $$f $(DESTDIR)$(gsdatadir)$(D)lib || exit 1; \
        done
-- 
-1.8.3.1
diff --git a/meta/recipes-extended/ghostscript/ghostscript_9.52.bb b/meta/recipes-extended/ghostscript/ghostscript_9.53.3.bb
index 65135f5821..cbf60c8c85 100644
--- a/meta/recipes-extended/ghostscript/ghostscript_9.52.bb
+++ b/meta/recipes-extended/ghostscript/ghostscript_9.53.3.bb
@@ -34,7 +34,6 @@ SRC_URI_BASE = "https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/d
 SRC_URI = "${SRC_URI_BASE} \
           file://ghostscript-9.21-prevent_recompiling.patch \
           file://cups-no-gcrypt.patch \
-           file://CVE-2020-15900.patch \
           "
 SRC_URI_class-native = "${SRC_URI_BASE} \
@@ -42,8 +41,7 @@ SRC_URI_class-native = "${SRC_URI_BASE} \
                        file://base-genht.c-add-a-preprocessor-define-to-allow-fope.patch \
                        "
-SRC_URI[md5sum] = "0f6964ab9b83a63b7e373f136243f901"
+SRC_URI[sha256sum] = "6eaf422f26a81854a230b80fd18aaef7e8d94d661485bd2e97e695b9dce7bf7f"
-SRC_URI[sha256sum] = "c2501d8e8e0814c4a5aa7e443e230e73d7af7f70287546f7b697e5ef49e32176"
 # Put something like
 #
@@ -84,6 +82,10 @@ BUILD_CFLAGS += "-DHAVE_SYS_TIME_H=1"
 inherit autotools-brokensep
+do_configure_prepend_class-target () {
+        rm -rf ${S}/jpeg/
+}
 do_configure_append () {
        # copy tools from the native ghostscript build
        if [ "${PN}" != "ghostscript-native" ]; then
author	Alexander Kanavin <alex.kanavin@gmail.com>	2020-10-28 22:05:38 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2020-10-30 13:22:48 +0000
commit	2d787812e8619b2f114697dbc51f7fad39206ef5 (patch)
tree	a25fc0317edd35a7a6c16e009a805c77d4159f16 /meta/recipes-extended
parent	50feea207e01cfe7d0324aba98cbc8e6d11dd018 (diff)
download	poky-2d787812e8619b2f114697dbc51f7fad39206ef5.tar.gz

diff --git a/meta/recipes-extended/ghostscript/ghostscript/CVE-2020-15900.patch b/meta/recipes-extended/ghostscript/ghostscript/CVE-2020-15900.patch deleted file mode 100644 index d7c5f034e5..0000000000 --- a/meta/recipes-extended/ghostscript/ghostscript/CVE-2020-15900.patch +++ /dev/null
@@ -1,54 +0,0 @@
1	From 5d499272b95a6b890a1397e11d20937de000d31b Mon Sep 17 00:00:00 2001
2	From: Ray Johnston <ray.johnston@artifex.com>
3	Date: Wed, 22 Jul 2020 09:57:54 -0700
4	Subject: [PATCH] Bug 702582, CVE 2020-15900 Memory Corruption in Ghostscript
5	9.52
6
7	Fix the 'rsearch' calculation for the 'post' size to give the correct
8	size. Previous calculation would result in a size that was too large,
9	and could underflow to max uint32_t. Also fix 'rsearch' to return the
10	correct 'pre' string with empty string match.
11
12	A future change may 'undefine' this undocumented, non-standard operator
13	during initialization as we do with the many other non-standard internal
14	PostScript operators and procedures.
15
16	Upstream-Status: Backport [https://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5d499272b95a6b890a1397e11d20937de000d31b]
17	CVE: CVE-2020-15900
18	Signed-off-by: Chee Yang Lee <chee.yang.lee@intel.com>
19	---
20	psi/zstring.c \| 17 +++++++++++------
21	1 file changed, 11 insertions(+), 6 deletions(-)
22
23	diff --git a/psi/zstring.c b/psi/zstring.c
24	index 33662dafa..58e1af2b3 100644
25	--- a/psi/zstring.c
26	+++ b/psi/zstring.c
27	@@ -142,13 +142,18 @@ search_impl(i_ctx_t *i_ctx_p, bool forward)
28	return 0;
29	found:
30	op->tas.type_attrs = op1->tas.type_attrs;
31	- op->value.bytes = ptr;
32	- r_set_size(op, size);
33	+ op->value.bytes = ptr; /* match */
34	+ op->tas.rsize = size; /* match */
35	push(2);
36	- op[-1] = *op1;
37	- r_set_size(op - 1, ptr - op[-1].value.bytes);
38	- op1->value.bytes = ptr + size;
39	- r_set_size(op1, count + (!forward ? (size - 1) : 0));
40	+ op[-1] = op1; / pre */
41	+ op[-3].value.bytes = ptr + size; /* post */
42	+ if (forward) {
43	+ op[-1].tas.rsize = ptr - op[-1].value.bytes; /* pre */
44	+ op[-3].tas.rsize = count; /* post */
45	+ } else {
46	+ op[-1].tas.rsize = count; /* pre */
47	+ op[-3].tas.rsize -= count + size; /* post */
48	+ }
49	make_true(op);
50	return 0;
51	}
52	--
53	2.17.1
54


diff --git a/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch b/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch index ffa269e3b2..5b57da2a97 100644 --- a/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch +++ b/meta/recipes-extended/ghostscript/ghostscript/ghostscript-9.15-parallel-make.patch
@@ -1,7 +1,7 @@
1	From 84bb692d6b047c09266de154f404af9817fa04aa Mon Sep 17 00:00:00 2001	1	From 04a86a613e0f9bfbbad99874f72217f75e8c53a3 Mon Sep 17 00:00:00 2001
2	From: Robert Yang <liezhi.yang@windriver.com>	2	From: Robert Yang <liezhi.yang@windriver.com>
3	Date: Thu, 29 Mar 2018 15:59:05 +0800	3	Date: Thu, 29 Mar 2018 15:59:05 +0800
4	Subject: [PATCH 01/10] contrib.mak: fix for parallel build	4	Subject: [PATCH] contrib.mak: fix for parallel build
5		5
6	Upstream-Status: Pending	6	Upstream-Status: Pending
7		7
@@ -9,23 +9,16 @@ Signed-off-by: Robert Yang <liezhi.yang@windriver.com>
9		9
10	Rebase to 9.23	10	Rebase to 9.23
11	Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>	11	Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com>
		12
12	---	13	---
13	contrib/contrib.mak \| 2 ++	14	contrib/contrib.mak \| 1 +
14	1 file changed, 2 insertions(+)	15	1 file changed, 1 insertion(+)
15		16
16	diff --git a/contrib/contrib.mak b/contrib/contrib.mak	17	diff --git a/contrib/contrib.mak b/contrib/contrib.mak
17	index f5a2fa4..4999752 100644	18	index 2edee7a..c9100e8 100644
18	--- a/contrib/contrib.mak	19	--- a/contrib/contrib.mak
19	+++ b/contrib/contrib.mak	20	+++ b/contrib/contrib.mak
20	@@ -1067,6 +1067,7 @@ $(DEVOBJ)dviprlib.$(OBJ) : $(JAPSRC)dviprlib.c $(JAPSRC)dviprlib.h \	21	@@ -1241,6 +1241,7 @@ $(DEVOBJ)gdevalps.$(OBJ) : $(JAPSRC)gdevalps.c $(PDEVH) \
21	$(DEVCC) $(O_)$@ $(C_) $(JAPSRC)dviprlib.c
22
23	extra-dmprt-install: install-libdata
24	+ mkdir -p $(DESTDIR)$(gsdatadir)$(D)lib
25	$(INSTALL_DATA) $(JAPSRC)dmp_init.ps $(DESTDIR)$(gsdatadir)$(D)lib \|\| exit 1
26	$(INSTALL_DATA) $(JAPSRC)dmp_site.ps $(DESTDIR)$(gsdatadir)$(D)lib \|\| exit 1
27	$(INSTALL_DATA) $(JAPSRC)escp_24.src $(DESTDIR)$(gsdatadir)$(D)lib \|\| exit 1
28	@@ -1235,6 +1236,7 @@ $(DEVOBJ)gdevalps.$(OBJ) : $(JAPSRC)gdevalps.c $(PDEVH) \
29	### ----------------- Additional .upp files ---------------- ###	22	### ----------------- Additional .upp files ---------------- ###
30		23
31	extra-upp-install: install-libdata	24	extra-upp-install: install-libdata
@@ -33,6 +26,3 @@ index f5a2fa4..4999752 100644
33	for f in $(CONTRIBSRC)uniprint$(D)*.upp; do \	26	for f in $(CONTRIBSRC)uniprint$(D)*.upp; do \
34	$(INSTALL_DATA) $$f $(DESTDIR)$(gsdatadir)$(D)lib \|\| exit 1; \	27	$(INSTALL_DATA) $$f $(DESTDIR)$(gsdatadir)$(D)lib \|\| exit 1; \
35	done	28	done
36	--
37	1.8.3.1
38


diff --git a/meta/recipes-extended/ghostscript/ghostscript_9.52.bb b/meta/recipes-extended/ghostscript/ghostscript_9.53.3.bb index 65135f5821..cbf60c8c85 100644 --- a/meta/recipes-extended/ghostscript/ghostscript_9.52.bb +++ b/meta/recipes-extended/ghostscript/ghostscript_9.53.3.bb
@@ -34,7 +34,6 @@ SRC_URI_BASE = "https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/d
34	SRC_URI = "${SRC_URI_BASE} \	34	SRC_URI = "${SRC_URI_BASE} \
35	file://ghostscript-9.21-prevent_recompiling.patch \	35	file://ghostscript-9.21-prevent_recompiling.patch \
36	file://cups-no-gcrypt.patch \	36	file://cups-no-gcrypt.patch \
37	file://CVE-2020-15900.patch \
38	"	37	"
39		38
40	SRC_URI_class-native = "${SRC_URI_BASE} \	39	SRC_URI_class-native = "${SRC_URI_BASE} \
@@ -42,8 +41,7 @@ SRC_URI_class-native = "${SRC_URI_BASE} \
42	file://base-genht.c-add-a-preprocessor-define-to-allow-fope.patch \	41	file://base-genht.c-add-a-preprocessor-define-to-allow-fope.patch \
43	"	42	"
44		43
45	SRC_URI[md5sum] = "0f6964ab9b83a63b7e373f136243f901"	44	SRC_URI[sha256sum] = "6eaf422f26a81854a230b80fd18aaef7e8d94d661485bd2e97e695b9dce7bf7f"
46	SRC_URI[sha256sum] = "c2501d8e8e0814c4a5aa7e443e230e73d7af7f70287546f7b697e5ef49e32176"
47		45
48	# Put something like	46	# Put something like
49	#	47	#
@@ -84,6 +82,10 @@ BUILD_CFLAGS += "-DHAVE_SYS_TIME_H=1"
84		82
85	inherit autotools-brokensep	83	inherit autotools-brokensep
86		84
		85	do_configure_prepend_class-target () {
		86	rm -rf ${S}/jpeg/
		87	}
		88
87	do_configure_append () {	89	do_configure_append () {
88	# copy tools from the native ghostscript build	90	# copy tools from the native ghostscript build
89	if [ "${PN}" != "ghostscript-native" ]; then	91	if [ "${PN}" != "ghostscript-native" ]; then