summaryrefslogtreecommitdiffstats
path: root/meta-oe/recipes-support/gd
Commit message (Collapse)AuthorAgeFilesLines
* gd: Fix build with clang-15Khem Raj2022-08-232-0/+116
| | | | Signed-off-by: Khem Raj <raj.khem@gmail.com>
* recipes: Update SRC_URI branch and protocolsRichard Purdie2021-11-031-1/+1
| | | | | | | | | This patch updates SRC_URIs using git to include branch=master if no branch is set and also to use protocol=https for github urls as generated by the conversion script in OE-Core. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: upgrade 2.3.2 -> 2.3.3Sakib Sajal2021-09-243-204/+3
| | | | | Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: fix CVE-2021-38115Sakib Sajal2021-08-262-0/+30
| | | | | Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* Convert to new override syntaxMartin Jansa2021-08-031-6/+6
| | | | | | | | | | This is the result of automated script (0.9.1) conversion: oe-core/scripts/contrib/convert-overrides.py . converting the metadata to use ":" as the override character instead of "_". Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: Replace deprecated types from tiffKhem Raj2021-04-232-1/+172
| | | | | | | These are now flagged with new tiff >= 4.3.0 Signed-off-by: Khem Raj <raj.khem@gmail.com> Cc: Wang Mingyu <wangmy@fujitsu.com>
* gd: upgrade 2.3.1 -> 2.3.2zhengruoqin2021-03-161-1/+1
| | | | | Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: upgrade 2.3.0 -> 2.3.1zhengruoqin2021-02-041-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | - Fix potential integer overflow detected by oss-fuzz - Fix #615 using libraqm - Fix #303: gdlib.pc: use Requires instead of Libs (#537) - Fixed #472: Adjusting CMakeLists.txt (#582) - Fix #615: gdImageStringFT() fails for empty strings as of libgd 2.3.0 (#633) - Fix typo but preserve BC - Compute average in gdGuessBackgroundColorFromCorners properly (#483) - CMakeLists.txt: zlib is enabled implicitly - src/config.h.cmake: replace #cmakedefine01 with #define in macro ENABLE_GD_FOORMATS (#622) - gdlib.pc: use prefixes for pkgconfig file - cmake: remove required host includes (#617) - Move initial declaration out of `for` loop - distribute getlib script - Make gd_nnquant.c less likely to introduce duplicate definitions (#601) - webp: support pkg-config file - gd_io: replace internal Putchar with gdPutC - gd_io: trim unused Putword function - Add REQUIRED to FIND_PACKAGE(ZLIB) - README: add some libraries info (#631) - VMS/README.VMS: Add dropping support information (#614) Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: Extend for native and nativesdkChristian Eggers2020-06-101-1/+3
| | | | | | | gd is required for msgcgen which is often used together with doxygen. Signed-off-by: Christian Eggers <ceggers@arri.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: uprev from 2.2.5 to 2.3.0Sakib Sajal2020-03-266-581/+4
| | | | | | | | | | | | | | | Major release after 2.2.5. Changelog: https://github.com/libgd/libgd/blob/gd-2.3.0/CHANGELOG.md Changes: - SRC_REV points to tag gd-2.3.0 - branch in SRC_URI points to master - updated homepage - removed patches as they were merged upstream under gd-2.3.0 tag Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: Fix CVE-2018-14553Sakib Sajal2020-03-182-0/+111
| | | | | | | | | | Backport fix from upstream to fix NULL pointer dereference. Upstream-Status: Backport CVE: CVE-2018-14553 Signed-off-by: Sakib Sajal <sakib.sajal@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: fix CVE-2017-6363Haiqing Bai2020-03-042-0/+36
| | | | | | | | Backport the CVE patch from the upstream to fix the heap-based buffer over-read in tiffWriter. Signed-off-by: Haiqing Bai <Haiqing.Bai@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: fix CVE-2019-6978Trevor Gamblin2019-10-042-0/+300
| | | | | | | CVE: CVE-2019-6978 Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: set CVE_PRODUCTQi.Chen@windriver.com2019-05-071-0/+2
| | | | | Signed-off-by: Chen Qi <Qi.Chen@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: fix compile error caused by -Werror=maybe-uninitializedChangqing Li2019-04-091-0/+2
| | | | | | | | | | | | | | | When enable DEBUG_BUILD, gd compile failed with error: | ../../git/src/gd_tiff.c:961:64: error: 'image_type' may be used uninitialized in this function [-Werror=maybe-uninitialized] | (image_type == GD_PALETTE || image_type == GD_INDEXED || image_type == GD_GRAY)) { | ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~~ actually, this warning is misinformation, we can see the logic from: https://github.com/libgd/libgd/blob/master/src/gd_tiff.c image_type will be assigned no matter force_rgba is TRUE/FALSE. Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: Fix CVE-2018-1000222Mingli Yu2018-09-122-0/+83
| | | | | | | check return value in gdImageBmpPtr Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: Replace strncpy with memccpy to fix -Wstringop-truncation.Robert Yang2018-06-202-0/+47
| | | | | | | | Fixed for gcc8: git/src/gdft.c:1699:2: error: 'strncpy' output truncated before terminating nul copying as many bytes from a string as its length [-Werror=stringop-truncation] Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* gd: update to version 2.2.5Derek Straka2017-11-301-1/+1
| | | | | | | | | | | Resolves the following security issues: * Double-free in gdImagePngPtr(). (CVE-2017-6362) * Buffer over-read into uninitialized memory. (CVE-2017-7890) Full changelog: https://github.com/libgd/libgd/blob/gd-2.2.5/CHANGELOG.md Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* gd: update to 2.2.4Yi Zhao2017-08-289-897/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | * Remove the following patches which already merged in upstream: fix-gcc-unused-functions.patch .gitignore-the-new-test-case.patch CVE-2016-10166.patch CVE-2016-10167.patch CVE-2016-10168.patch CVE-2016-6906-1.patch CVE-2016-6906-2.patch Fix-290-TGA-RLE-decoding-is-broken.patch * Update LICENSE's MD5 check sum. The COPYING file has been update with the following commits in upstream: commit f863b3c2d300ff5344f6752e5813b0d6985e79c4 Resolve #282: COPYING vs. docs/naturaldocs/license.txt commit 9ccdaedbd9a2cfd1c8a9a258c09af161e796bd41 Sync COPYING and docs/naturaldocs/license.txt These two commits updated the copyright statement regarding the authorship of gd and adjust the format. Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd : CVE-2016-6906Catalin Enache2017-06-055-1/+703
| | | | | | | | | | | | | | | | The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file, related to the decompression buffer. Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-6906 Upstream patches: https://github.com/libgd/libgd/commit/fb0e0cce0b9f25389ab56604c3547351617e1415 https://github.com/libgd/libgd/commit/58b6dde319c301b0eae27d12e2a659e067d80558 Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd : CVE-2016-10167, CVE-2016-10168Catalin Enache2017-04-183-1/+89
| | | | | | | | | | | | | | | | | | | | | The gdImageCreateFromGd2Ctx function in gd_gd2.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (application crash) via a crafted image file. Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10167 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10168 Upstream patches: https://github.com/libgd/libgd/commit/fe9ed49dafa993e3af96b6a5a589efeea9bfb36f https://github.com/libgd/libgd/commit/69d2fd2c597ffc0c217de1238b9bf4d4bceba8e6 Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd : CVE-2016-10166Catalin Enache2017-04-182-1/+62
| | | | | | | | | | | | | | | Integer underflow in the _gdContributionsAlloc function in gd_interpolation.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors related to decrementing the u variable. Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10166 Upstream patch: https://github.com/libgd/libgd/commit/60bfb401ad5a4a8ae995dcd36372fe15c71e1a35 Signed-off-by: Catalin Enache <catalin.enache@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* meta-oe: fix indentationMartin Jansa2016-08-221-2/+2
| | | | | | | | * remove tabs which sneaked in since last cleanup * meta-oe layers are using consistent indentation with 4 spaces, see http://www.openembedded.org/wiki/Styleguide Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: update to version 2.2.3Derek Straka2016-08-222-6/+49
| | | | | | | | * Upstream removed vpx support in favor of webp * Explicity disable webp support Signed-off-by: Derek Straka <derek@asterius.io> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: cleanup buildpaths from gdlib.pcWenzong Fan2015-10-131-0/+5
| | | | | | | | * gdlib.pc: -L/path/to/tmp/sysroots/qemux86-64/usr/lib64 -> -L/usr/lib64 Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: disable webp/vpx supportKoen Kooi2015-09-231-2/+4
| | | | | | | | | The recent update to libvpx 1.4.x broke gd. Upstream has replaced libvpx with libwebp, so fixing it isn't worth it. If webp support is really needed, backport https://bitbucket.org/libgd/gd-libgd/commits/a79232c5fa69 and add a PACKAGECONFIG for it. Signed-off-by: Koen Kooi <koen.kooi@linaro.org> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: upgrade to 2.1.1Roy Li2015-08-242-42/+2
| | | | | | | | remove fix-the-subdir-objects-error.patch, a same fix has been merged into source code. Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: add dependency on libvpxMartin Jansa2014-08-111-1/+1
| | | | | | | * fixes floating dependency: gd-2.1.0: gd rdepends on libvpx but it isn't a build dependency? [build-deps] Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: add dependency on tiffMartin Jansa2014-08-111-1/+1
| | | | | | | * fixes floating dependency: gd/gd/latest lost dependency on liblzma tiff Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* recipes: add missing pkgconfig class inheritsRichard Purdie2014-06-211-1/+1
| | | | | | | | * These recipes all use pkg-config in some way but were missing dependencies on the tool, this patch adds them. Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: split the binaries to package gd-toolsJackie Huang2014-05-031-0/+9
| | | | | | | | | As most linux distribution do, gd only includes the library, and split all the command line tools into gd-tools, and add the perl dependcy since one of the tools is a perl script. Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: fix the subdir-objects errorRobert Yang2014-04-212-1/+42
| | | | | | | | | | | | | | | | | Fix this error: iautomake: warning: possible forward-incompatibility. automake: At least a source file is in a subdirectory, but the 'subdir-objects' automake: automake option hasn't been enabled. For now, the corresponding output automake: object file(s) will be placed in the top-level directory. However, automake: this behaviour will change in future Automake versions: they will automake: unconditionally cause object files to be placed in the same subdirectory automake: of the corresponding sources. automake: You are advised to start using 'subdir-objects' option throughout your automake: project, to avoid future incompatibilities. Signed-off-by: Robert Yang <liezhi.yang@windriver.com> Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: fix --with-freetype optionMartin Jansa2014-04-211-1/+1
| | | | | | | | * 'yes' value means using pkg-config to find freetype, other values are using FREETYPE_CONFIG=/bin/freetype-config and freetype-config isn't in STAGING_LIBDIR but in STAGING_BINDIR/crossscripts/freetype-config Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: update to version 2.1.0Jackie Huang2014-04-212-26/+30
| | | | | | | | | | | Changes: - Add DESCRIPTION and HOMEPAGE - libgd.org is down, use bitbucket.org instead and also remove the MIRROR for it. - Remove the unnecessary specified dir for --with-png. Signed-off-by: Jackie Huang <jackie.huang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: added upstream license file and fixed configure warningsstephen.arnold422014-04-201-2/+2
| | | | | | | | | | This fixes QA warnings about missing license file and stale configure options, (includes updates for freetype libpath and disables hardcoded rpaths). Upstream-Status: Inappropriate (distribution/packaging fix) Signed-off-by: Stephen Arnold <stephen.arnold42@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* recipes: convert remaining SUMMARY/DESCRIPTION cosmetic issuesMatthieu CRAPET2014-02-231-1/+1
| | | | | | | | | | | | | Changes: - rename SUMMARY with length > 80 to DESCRIPTION - rename DESCRIPTION with length < 80 to (non present tag) SUMMARY - drop final point character at the end of SUMMARY string - remove trailing whitespace of SUMMARY line Note: don't bump PR Signed-off-by: Matthieu Crapet <Matthieu.Crapet@ingenico.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: Add mirror for when libgd.org is downPaul Barker2013-04-081-0/+2
| | | | | | | | Added http://fossies.org/unix/www/ as a mirror of http://www.libgd.org/releases/ so that gd-2.0.36RC1.tar.gz can still be downloaded when libgd.org is down. Signed-off-by: Paul Barker <paul@paulbarker.me.uk> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* recipes: bump PR to rebuild .la files without libz.laMartin Jansa2012-02-131-1/+1
| | | | Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
* gd: import from OE rev d4f0211e2078d5033ae0dee74664de5520d8392dMartin Jansa2011-05-291-0/+24
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-08-07 12:42:55 +0000