Date: Fri, 26 Feb 2016 15:52:16 +0000 (UTC) From: Mark Felder <feld@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-branches@freebsd.org Subject: svn commit: r409616 - branches/2016Q1/graphics/giflib Message-ID: <201602261552.u1QFqGpC019612@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: feld Date: Fri Feb 26 15:52:16 2016 New Revision: 409616 URL: https://svnweb.freebsd.org/changeset/ports/409616 Log: MFH: r409615 graphics/giflib: Update to 5.1.2 * Code hardening using reallocarray() from OpenBSD. * Sanity check in giffilter catches files with malformed extension records Fixes SourceForge bug #63: malformed gif causes segfault in giffilter. * Inexpensive sanity check in DGifSlurp() catches malformed files with no image descriptor. Fixes SourceForge bug #64: malformed gif causes crash in giftool. * Fix SourceForge bug #66: GifDrawBoxedText8x8() modifying constant input parameter. * Bail out of GIF read on invalid pixel width. Addresses Savannah bug #67: invalid shift in dgif_lib.c * Fix SourceForge bug #69: #69 Malformed: Gif file with no extension block after a GRAPHICS_EXT_FUNC_CODE extension causes segfault (in giftext). * Fix SourceForge bug #71: Buffer overwrite when giffixing a malformed gif. * Fix SourceForge bug #73: Null pointer deference in gifclrmap (only reachable with malformed GIF). * Fix SourceForge bug #74: Double free in gifsponge under 5.1,1, for any valid gif image. * Fix SourceForge bug #75: GAGetArgs overflows due to uncounted use of va_arg. * Sanity check in giffix catches some malformed files. Addresses SourceForge bug #77: dgif_lib.c: extension processing error Security: CVE-2015-7555 Approved by: ports-secteam (with hat) Modified: branches/2016Q1/graphics/giflib/Makefile branches/2016Q1/graphics/giflib/distinfo Directory Properties: branches/2016Q1/ (props changed) Modified: branches/2016Q1/graphics/giflib/Makefile ============================================================================== --- branches/2016Q1/graphics/giflib/Makefile Fri Feb 26 15:51:37 2016 (r409615) +++ branches/2016Q1/graphics/giflib/Makefile Fri Feb 26 15:52:16 2016 (r409616) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= giflib -PORTVERSION= 5.1.1 +PORTVERSION= 5.1.2 CATEGORIES= graphics MASTER_SITES= SF/${PORTNAME} Modified: branches/2016Q1/graphics/giflib/distinfo ============================================================================== --- branches/2016Q1/graphics/giflib/distinfo Fri Feb 26 15:51:37 2016 (r409615) +++ branches/2016Q1/graphics/giflib/distinfo Fri Feb 26 15:52:16 2016 (r409616) @@ -1,2 +1,2 @@ -SHA256 (giflib-5.1.1.tar.bz2) = 391014aceb21c8b489dc7b0d0b6a917c4e32cc014ce2426d47ca376d02fe2ffc -SIZE (giflib-5.1.1.tar.bz2) = 654389 +SHA256 (giflib-5.1.2.tar.bz2) = 76c0a084c3b02f9315ff937b8be6096186002fea26f33e2123081ba2be6e2a7c +SIZE (giflib-5.1.2.tar.bz2) = 638967
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201602261552.u1QFqGpC019612>