poppler_0_61: add patch for CVE-2019-9959

[risicle]

Motivation for this change

We still have an older 0.61 release of poppler in the tree (poppler_0_61). This should fix CVE-2019-9959 for it.

https://nvd.nist.gov/vuln/detail/CVE-2019-9959

Added a custom patch because while the upstream fix does apply as a patch, it doesn't take into account the openjpeg1/openjpeg2 split 0.61 still has (simply requiring a duplicated section).

While I was here I also bumped it from 0.61.0 -> 0.61.1.

For the main poppler package, we should be looking at merging #60701.

Things done

• Tested using sandboxing (nix.useSandbox on NixOS, or option sandbox in nix.conf on non-NixOS)
• Built on platform(s)
  • NixOS
  • macOS
  • other Linux distributions
• Tested via one or more NixOS test(s) if existing and applicable for the change (look inside nixos/tests)
• Tested compilation of all pkgs that depend on this change using nix-shell -p nix-review --run "nix-review wip"
• Tested execution of all binary files (usually in ./result/bin/)
• Determined the impact on package closure size (by running nix path-info -S before and after)
• Ensured that relevant documentation is up to date
• Fits CONTRIBUTING.md.

Notify maintainers

cc @