8a683a54cc
raptor_xml_writer_start_element_common in raptor_xml_writer.c in Raptor RDF Syntax Library 2.0.15 miscalculates the maximum nspace declarations for the XML writer, leading to heap-based buffer overflows (sometimes seen in raptor_qname_format_as_xml). For more details, see the oss-security discussion: https://www.openwall.com/lists/oss-security/2020/11/13/1 Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
48 lines
1.4 KiB
Makefile
48 lines
1.4 KiB
Makefile
################################################################################
|
|
#
|
|
# raptor
|
|
#
|
|
################################################################################
|
|
|
|
RAPTOR_VERSION = 2.0.15
|
|
RAPTOR_SOURCE = raptor2-$(RAPTOR_VERSION).tar.gz
|
|
RAPTOR_SITE = http://download.librdf.org/source
|
|
RAPTOR_DEPENDENCIES = libxml2 libxslt
|
|
RAPTOR_LICENSE = GPL-2.0+ or LGPL-2.1+ or Apache-2.0+
|
|
RAPTOR_LICENSE_FILES = LICENSE.txt
|
|
RAPTOR_INSTALL_STAGING = YES
|
|
|
|
# Flag is added to make sure the patch is applied for the configure.ac of raptor.
|
|
RAPTOR_AUTORECONF = YES
|
|
|
|
# 0002-Calcualte-max-nspace-declarations-correctly-for-XML-.patch
|
|
RAPTOR_IGNORE_CVES += CVE-2017-18926
|
|
|
|
RAPTOR_CONF_OPTS =\
|
|
--with-xml2-config=$(STAGING_DIR)/usr/bin/xml2-config \
|
|
--with-xslt-config=$(STAGING_DIR)/usr/bin/xslt-config
|
|
|
|
ifeq ($(BR2_PACKAGE_LIBCURL),y)
|
|
RAPTOR_DEPENDENCIES += libcurl
|
|
RAPTOR_CONF_OPTS += --with-curl-config=$(STAGING_DIR)/usr/bin/curl-config
|
|
else
|
|
RAPTOR_CONF_OPTS += --with-curl-config=no
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_YAJL),y)
|
|
RAPTOR_DEPENDENCIES += yajl
|
|
RAPTOR_CONF_ENV += LIBS="-lm"
|
|
RAPTOR_CONF_OPTS += --with-yajl=$(STAGING_DIR)/usr
|
|
else
|
|
RAPTOR_CONF_OPTS += --with-yajl=no
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_ICU),y)
|
|
RAPTOR_DEPENDENCIES += icu
|
|
RAPTOR_CONF_OPTS += --with-icu-config=$(STAGING_DIR)/usr/bin/icu-config
|
|
else
|
|
RAPTOR_CONF_OPTS += --with-icu-config=no
|
|
endif
|
|
|
|
$(eval $(autotools-package))
|