Jasper has been marked insecure for a while, and upstream has not
been responsive to CVEs for over a year.
Fixes#55388.
Signed-off-by: David Anderson <dave@natulte.net>
After making `ffmpeg` point to the latest `ffmpeg_4`, all packages that
used `ffmpeg` without requiring a specific version now use ffmpeg_3
explicitly so they shouldn't change.
This makes packages use lapack and blas, which can wrap different
BLAS/LAPACK implementations.
treewide: cleanup from blas/lapack changes
A few issues in the original treewide:
- can’t assume blas64 is a bool
- unused commented code
resolving CVE-2019-14491, CVE-2019-14492 & CVE-2019-15939
most internal downloads are unchanged except for "ade" which was bumped
from v0.1.1d to v0.1.1f between these releases
There ver very many conflicts, basically all due to
name -> pname+version. Fortunately, almost everything was auto-resolved
by kdiff3, and for now I just fixed up a couple evaluation problems,
as verified by the tarball job. There might be some fallback to these
conflicts, but I believe it should be minimal.
Hydra nixpkgs: ?compare=1538299
See: https://github.com/opencv/opencv/pull/13232
This also fixes the test of haskell-opencv HEAD where we got the
following error:
Feature Detection
houghLinesP:
libgomp: Out of memory allocating 927712937064 bytes
Test suite test-opencv: FAIL
Undefined symbols for architecture x86_64:
"_NSDefaultRunLoopMode", referenced from:
_cvWaitKey in window_cocoa.mm.o
"_OBJC_CLASS_$_NSDate", referenced from:
objc-class-ref in window_cocoa.mm.o
objc-class-ref in cap_qtkit.mm.o
"_OBJC_CLASS_$_NSDictionary", referenced from:
objc-class-ref in window_cocoa.mm.o
objc-class-ref in cap_qtkit.mm.o
"_OBJC_CLASS_$_NSMutableDictionary", referenced from:
objc-class-ref in window_cocoa.mm.o
"_OBJC_CLASS_$_NSRunLoop", referenced from:
objc-class-ref in cap_qtkit.mm.o
"_OBJC_CLASS_$_NSTimer", referenced from:
objc-class-ref in cap_qtkit.mm.o
ld: symbol(s) not found for architecture x86_64
Since years I'm not maintaining anything of the list below other
than some updates when I needed them for some reason. Other people
is doing that maintenance on my behalf so I better take me out but
for very few packages. Finally!