gnu: runc: Update to 1.0.0-rc6 [fixes CVE-2019-5736].

[jackhill/guix/guix.git] / gnu / local.mk

diff --git a/gnu/local.mk b/gnu/local.mk
index dffc580..16bb704 100644 (file)
--- a/gnu/local.mk
+++ b/gnu/local.mk
@@ -634,7 +634,8 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/aegisub-icu59-include-unistr.patch      \
   %D%/packages/patches/aegisub-boost68.patch                    \
   %D%/packages/patches/agg-am_c_prototype.patch                        \
-  %D%/packages/patches/allegro-fix-compilation-mesa-18.2.5-and-later.patch \
+  %D%/packages/patches/allegro-mesa-18.2.5-and-later.patch     \
+  %D%/packages/patches/allegro4-mesa-18.2.5-and-later.patch    \
   %D%/packages/patches/amule-crypto-6.patch                    \
   %D%/packages/patches/antiword-CVE-2014-8123.patch                    \
   %D%/packages/patches/antlr3-3_1-fix-java8-compilation.patch  \
@@ -664,8 +665,6 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/blast+-fix-makefile.patch               \
   %D%/packages/patches/boost-fix-icu-build.patch               \
   %D%/packages/patches/byobu-writable-status.patch             \
-  %D%/packages/patches/cairo-CVE-2016-9082.patch                       \
-  %D%/packages/patches/cairo-setjmp-wrapper.patch              \
   %D%/packages/patches/calibre-no-updates-dialog.patch         \
   %D%/packages/patches/calibre-use-packaged-feedparser.patch   \
   %D%/packages/patches/casync-renameat2-declaration.patch      \
@@ -696,9 +695,6 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/coda-use-system-libs.patch              \
   %D%/packages/patches/combinatorial-blas-awpm.patch           \
   %D%/packages/patches/combinatorial-blas-io-fix.patch         \
-  %D%/packages/patches/cool-retro-term-dont-check-uninit-member.patch  \
-  %D%/packages/patches/cool-retro-term-fix-array-size.patch    \
-  %D%/packages/patches/cool-retro-term-memory-leak-1.patch     \
   %D%/packages/patches/cpio-CVE-2016-2037.patch                        \
   %D%/packages/patches/cpufrequtils-fix-aclocal.patch          \
   %D%/packages/patches/cracklib-CVE-2016-6318.patch            \
@@ -709,7 +705,6 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/cube-nocheck.patch                      \
   %D%/packages/patches/cursynth-wave-rand.patch                        \
   %D%/packages/patches/cvs-2017-12836.patch                    \
-  %D%/packages/patches/cyrus-sasl-CVE-2013-4122.patch          \
   %D%/packages/patches/dbus-helper-search-path.patch           \
   %D%/packages/patches/deja-dup-use-ref-keyword-for-iter.patch \
   %D%/packages/patches/dfu-programmer-fix-libusb.patch         \
@@ -724,13 +719,13 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/doxygen-test.patch                      \
   %D%/packages/patches/dropbear-CVE-2018-15599.patch           \
   %D%/packages/patches/dvd+rw-tools-add-include.patch          \
+  %D%/packages/patches/efl-mesa-compat.patch                   \
   %D%/packages/patches/elfutils-tests-ptrace.patch             \
   %D%/packages/patches/einstein-build.patch                    \
   %D%/packages/patches/emacs-exec-path.patch                   \
   %D%/packages/patches/emacs-fix-scheme-indent-function.patch  \
   %D%/packages/patches/emacs-json-reformat-fix-tests.patch     \
   %D%/packages/patches/emacs-highlight-stages-add-gexp.patch   \
-  %D%/packages/patches/emacs-pdf-tools-poppler.patch           \
   %D%/packages/patches/emacs-scheme-complete-scheme-r5rs-info.patch    \
   %D%/packages/patches/emacs-source-date-epoch.patch           \
   %D%/packages/patches/emacs-realgud-fix-configure-ac.patch    \
@@ -749,6 +744,7 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/fasthenry-spUtils.patch                 \
   %D%/packages/patches/fasthenry-spSolve.patch                 \
   %D%/packages/patches/fasthenry-spFactor.patch                        \
+  %D%/packages/patches/fbreader-curl-7.62.patch                \
   %D%/packages/patches/fcgi-2.4.0-gcc44-fixes.patch            \
   %D%/packages/patches/fcgi-2.4.0-poll.patch                   \
   %D%/packages/patches/fifo-map-fix-flags-for-gcc.patch                \
@@ -801,14 +797,12 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/ghc-8.0-fall-back-to-madv_dontneed.patch \
   %D%/packages/patches/ghc-dont-pass-linker-flags-via-response-files.patch     \
   %D%/packages/patches/ghc-haddock-library-unbundle.patch              \
-  %D%/packages/patches/ghostscript-CVE-2018-16509.patch                \
-  %D%/packages/patches/ghostscript-bug-699708.patch            \
   %D%/packages/patches/ghostscript-no-header-id.patch          \
   %D%/packages/patches/ghostscript-no-header-uuid.patch                \
   %D%/packages/patches/ghostscript-no-header-creationdate.patch \
   %D%/packages/patches/giflib-make-reallocarray-private.patch  \
-  %D%/packages/patches/glib-networking-ssl-cert-file.patch     \
   %D%/packages/patches/glib-tests-timer.patch                  \
+  %D%/packages/patches/glib-networking-connection.patch        \
   %D%/packages/patches/glibc-CVE-2015-5180.patch               \
   %D%/packages/patches/glibc-CVE-2015-7547.patch               \
   %D%/packages/patches/glibc-CVE-2016-3075.patch               \
@@ -817,6 +811,8 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/glibc-CVE-2017-1000366-pt1.patch                \
   %D%/packages/patches/glibc-CVE-2017-1000366-pt2.patch                \
   %D%/packages/patches/glibc-CVE-2017-1000366-pt3.patch                \
+  %D%/packages/patches/glibc-CVE-2018-11236.patch              \
+  %D%/packages/patches/glibc-CVE-2018-11237.patch              \
   %D%/packages/patches/glibc-allow-kernel-2.6.32.patch         \
   %D%/packages/patches/glibc-bootstrap-system.patch            \
   %D%/packages/patches/glibc-hidden-visibility-ldconfig.patch  \
@@ -833,11 +829,11 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/glog-gcc-5-demangling.patch             \
   %D%/packages/patches/gmp-arm-asm-nothumb.patch               \
   %D%/packages/patches/gmp-faulty-test.patch                   \
+  %D%/packages/patches/gnome-shell-theme.patch                 \
   %D%/packages/patches/gnome-todo-libical-compat.patch         \
   %D%/packages/patches/gnome-tweak-tool-search-paths.patch     \
   %D%/packages/patches/gnucash-fix-test-transaction-failure.patch \
   %D%/packages/patches/gnutls-skip-trust-store-test.patch      \
-  %D%/packages/patches/gnutls-skip-pkgconfig-test.patch                \
   %D%/packages/patches/gobject-introspection-absolute-shlib-path.patch \
   %D%/packages/patches/gobject-introspection-cc.patch          \
   %D%/packages/patches/gobject-introspection-girepository.patch        \
@@ -851,6 +847,7 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/grub-check-error-efibootmgr.patch       \
   %D%/packages/patches/gsl-test-i686.patch                     \
   %D%/packages/patches/gspell-dash-test.patch                  \
+  %D%/packages/patches/gst-plugins-good-libvpx-compat.patch    \
   %D%/packages/patches/guile-1.8-cpp-4.5.patch                 \
   %D%/packages/patches/guile-2.2-default-utf8.patch            \
   %D%/packages/patches/guile-default-utf8.patch                        \
@@ -873,6 +870,8 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/hdf4-reproducibility.patch              \
   %D%/packages/patches/hdf4-shared-fortran.patch               \
   %D%/packages/patches/hdf5-config-date.patch                  \
+  %D%/packages/patches/hdf5-mpi-deprecations.patch             \
+  %D%/packages/patches/hdf5-1.8-mpi-deprecations.patch         \
   %D%/packages/patches/hdf-eos2-build-shared.patch             \
   %D%/packages/patches/hdf-eos2-remove-gctp.patch              \
   %D%/packages/patches/hdf-eos2-fortrantests.patch             \
@@ -893,6 +892,7 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/icedtea-7-hotspot-gcc-segfault-workaround.patch  \
   %D%/packages/patches/id3lib-CVE-2007-4460.patch                      \
   %D%/packages/patches/ilmbase-fix-tests.patch                 \
+  %D%/packages/patches/inkscape-poppler-compat3.patch          \
   %D%/packages/patches/intltool-perl-compatibility.patch       \
   %D%/packages/patches/irrlicht-use-system-libs.patch          \
   %D%/packages/patches/isl-0.11.1-aarch64-support.patch        \
@@ -907,7 +907,6 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/java-xerces-build_dont_unzip.patch      \
   %D%/packages/patches/java-xerces-xjavac_taskdef.patch        \
   %D%/packages/patches/jbig2dec-ignore-testtest.patch          \
-  %D%/packages/patches/json-glib-fix-tests-32bit.patch         \
   %D%/packages/patches/kdbusaddons-kinit-file-name.patch       \
   %D%/packages/patches/khmer-use-libraries.patch                \
   %D%/packages/patches/libziparchive-add-includes.patch                \
@@ -978,6 +977,7 @@ dist_patch_DATA =                                           \
   %D%/packages/patches/libmad-mips-newgcc.patch                        \
   %D%/packages/patches/libmygpo-qt-fix-qt-5.11.patch           \
   %D%/packages/patches/libmygpo-qt-missing-qt5-modules.patch   \
+  %D%/packages/patches/libreoffice-boost.patch                 \
   %D%/packages/patches/libreoffice-icu.patch                   \
   %D%/packages/patches/libreoffice-glm.patch                   \
   %D%/packages/patches/libsndfile-armhf-type-checks.patch      \
@@ -987,10 +987,6 @@ dist_patch_DATA =                                          \
   %D%/packages/patches/libssh2-fix-build-failure-with-gcrypt.patch     \
   %D%/packages/patches/libtar-CVE-2013-4420.patch              \
   %D%/packages/patches/libtheora-config-guess.patch            \
-  %D%/packages/patches/libtiff-CVE-2017-9935.patch             \
-  %D%/packages/patches/libtiff-CVE-2017-18013.patch            \
-  %D%/packages/patches/libtiff-CVE-2018-8905.patch             \
-  %D%/packages/patches/libtiff-CVE-2018-10963.patch            \
   %D%/packages/patches/libtool-skip-tests2.patch               \
   %D%/packages/patches/libusb-0.1-disable-tests.patch          \
   %D%/packages/patches/libusb-for-axoloti.patch                        \
@@ -1057,6 +1053,7 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/mumps-build-parallelism.patch           \
   %D%/packages/patches/mupen64plus-ui-console-notice.patch     \
   %D%/packages/patches/mupen64plus-video-z64-glew-correct-path.patch    \
+  %D%/packages/patches/musescore-fix-use_webengine.patch       \
   %D%/packages/patches/mutt-store-references.patch             \
   %D%/packages/patches/m4-gnulib-libio.patch                   \
   %D%/packages/patches/netcdf-date-time.patch                  \
@@ -1124,6 +1121,7 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/pinball-src-deps.patch                  \
   %D%/packages/patches/pinball-system-ltdl.patch               \
   %D%/packages/patches/pinentry-efl.patch                      \
+  %D%/packages/patches/pingus-boost-headers.patch              \
   %D%/packages/patches/pingus-sdl-libs-config.patch            \
   %D%/packages/patches/pius.patch                              \
   %D%/packages/patches/pixman-CVE-2016-5296.patch              \
@@ -1132,9 +1130,9 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/plotutils-libpng-jmpbuf.patch           \
   %D%/packages/patches/podofo-cmake-3.12.patch                 \
   %D%/packages/patches/polkit-CVE-2018-19788.patch             \
-  %D%/packages/patches/poppler-CVE-2018-19149.patch            \
   %D%/packages/patches/portaudio-audacity-compat.patch         \
   %D%/packages/patches/portmidi-modular-build.patch            \
+  %D%/packages/patches/postgresql-disable-resolve_symlinks.patch       \
   %D%/packages/patches/potrace-tests.patch                     \
   %D%/packages/patches/procmail-ambiguous-getline-debian.patch  \
   %D%/packages/patches/procmail-CVE-2014-3618.patch            \
@@ -1184,7 +1182,6 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/qt4-ldflags.patch                       \
   %D%/packages/patches/qtbase-use-TZDIR.patch                  \
   %D%/packages/patches/qtscript-disable-tests.patch            \
-  %D%/packages/patches/qt-5-renameat2.patch                    \
   %D%/packages/patches/quagga-reproducible-build.patch          \
   %D%/packages/patches/quickswitch-fix-dmenu-check.patch       \
   %D%/packages/patches/quilt-test-fix-regex.patch              \
@@ -1210,6 +1207,7 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/ruby-concurrent-test-arm.patch          \
   %D%/packages/patches/ruby-rack-ignore-failing-test.patch      \
   %D%/packages/patches/ruby-tzinfo-data-ignore-broken-test.patch\
+  %D%/packages/patches/runc-CVE-2019-5736.patch                        \
   %D%/packages/patches/rust-1.19-mrustc.patch                  \
   %D%/packages/patches/rust-1.25-accept-more-detailed-gdb-lines.patch \
   %D%/packages/patches/rust-bootstrap-stage0-test.patch                \
@@ -1234,9 +1232,11 @@ dist_patch_DATA =                                                \
   %D%/packages/patches/soundconverter-remove-gconf-dependency.patch    \
   %D%/packages/patches/soundtouch-CVE-2018-14044-14045.patch   \
   %D%/packages/patches/soundtouch-CVE-2018-1000223.patch       \
+  %D%/packages/patches/sssd-curl-compat.patch                  \
   %D%/packages/patches/steghide-fixes.patch                    \
   %D%/packages/patches/streamlink-update-test.patch            \
   %D%/packages/patches/superlu-dist-awpm-grid.patch            \
+  %D%/packages/patches/superlu-dist-fix-mpi-deprecations.patch \
   %D%/packages/patches/superlu-dist-scotchmetis.patch          \
   %D%/packages/patches/swig-guile-gc.patch                     \
   %D%/packages/patches/swish-e-search.patch                    \
@@ -1255,6 +1255,9 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/teeworlds-use-latest-wavpack.patch      \
   %D%/packages/patches/texinfo-perl-compat.patch               \
   %D%/packages/patches/texinfo-5-perl-compat.patch             \
+  %D%/packages/patches/texlive-bin-luatex-poppler-compat.patch \
+  %D%/packages/patches/texlive-bin-pdftex-poppler-compat.patch \
+  %D%/packages/patches/texlive-bin-xetex-poppler-compat.patch  \
   %D%/packages/patches/telegram-purple-adjust-test.patch       \
   %D%/packages/patches/texi2html-document-encoding.patch       \
   %D%/packages/patches/texi2html-i18n.patch                    \
@@ -1305,6 +1308,7 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/wavpack-CVE-2018-7253.patch             \
   %D%/packages/patches/wavpack-CVE-2018-7254.patch             \
   %D%/packages/patches/weechat-python.patch                    \
+  %D%/packages/patches/wesnoth-newer-boost.patch               \
   %D%/packages/patches/wicd-bitrate-none-fix.patch             \
   %D%/packages/patches/wicd-get-selected-profile-fix.patch     \
   %D%/packages/patches/wicd-urwid-1.3.patch                    \
@@ -1335,8 +1339,7 @@ dist_patch_DATA =                                         \
   %D%/packages/patches/xfce4-settings-defaults.patch           \
   %D%/packages/patches/xinetd-fix-fd-leak.patch                        \
   %D%/packages/patches/xinetd-CVE-2013-4342.patch              \
-  %D%/packages/patches/xmodmap-asprintf.patch                  \
-  %D%/packages/patches/zathura-plugindir-environment-variable.patch
+  %D%/packages/patches/xmodmap-asprintf.patch
 
 MISC_DISTRO_FILES =                            \
   %D%/packages/ld-wrapper.in