Date: Wed, 3 Oct 2007 20:55:41 +0200 From: "Rene Ladan" <r.c.ladan@gmail.com> To: freebsd-gnats-submit@FreeBSD.org Cc: x11@FreeBSD.org Subject: ports/116878: [PATCH] x11-fonts/xfs : update to 1.0.5 (security fix) Message-ID: <e890cae60710031155m44505cedpf2f39e6b57211c0e@mail.gmail.com> Resent-Message-ID: <200710031900.l93J03QI076553@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 116878 >Category: ports >Synopsis: [PATCH] x11-fonts/xfs: update to 1.0.5 (security fix) >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports-bugs >State: open >Quarter: >Keywords: >Date-Required: >Class: update >Submitter-Id: current-users >Arrival-Date: Wed Oct 03 19:00:02 GMT 2007 >Closed-Date: >Last-Modified: >Originator: Rene Ladan >Release: FreeBSD 7.0-CURRENT i386 >Organization: >Environment: System: FreeBSD 195-241-214-37.dsl.ip.tiscali.nl 7.0-CURRENT FreeBSD 7.0-CURRENT #25: Mon Oct 1 11:48:11 CEST >Description: - Update to 1.0.5 Fixes two security vulnerabilities: * CVE-2007-4568 : fix for integer overflows in build_range() : fix for heap overwrite in swap_char2b() Announced 2007-10-02 on xorg@lists.freedesktop.org see http://lists.freedesktop.org/archives/xorg/2007-October/028899.html Port maintainer (x11@FreeBSD.org) is cc'd. Patch tested with 'port test' Generated with FreeBSD Port Tools 0.77 >How-To-Repeat: >Fix: --- xfs-1.0.5,1.patch begins here --- diff -ruN --exclude=CVS /usr/ports/x11-fonts/xfs.orig/Makefile /usr/ports/x11-fonts/xfs/Makefile --- /usr/ports/x11-fonts/xfs.orig/Makefile 2007-10-03 20:44:49.000000000 +0200 +++ /usr/ports/x11-fonts/xfs/Makefile 2007-10-03 20:32:10.000000000 +0200 @@ -6,8 +6,7 @@ # PORTNAME= xfs -PORTVERSION= 1.0.4 -PORTREVISION= 4 +PORTVERSION= 1.0.5 PORTEPOCH= 1 CATEGORIES= x11-fonts diff -ruN --exclude=CVS /usr/ports/x11-fonts/xfs.orig/distinfo /usr/ports/x11-fonts/xfs/distinfo --- /usr/ports/x11-fonts/xfs.orig/distinfo 2007-10-03 20:44:49.000000000 +0200 +++ /usr/ports/x11-fonts/xfs/distinfo 2007-10-03 20:33:03.000000000 +0200 @@ -1,3 +1,3 @@ -MD5 (xorg/app/xfs-1.0.4.tar.bz2) = f43cb64d623b748208dfd9012d17b654 -SHA256 (xorg/app/xfs-1.0.4.tar.bz2) = 452dde2923c7ae5a2b8cb4b9735507c579c1c55a0e5e45a34210e52574ee641b -SIZE (xorg/app/xfs-1.0.4.tar.bz2) = 149414 +MD5 (xorg/app/xfs-1.0.5.tar.bz2) = 3fc73b5e39a1fe8b8d96563c8144cffe +SHA256 (xorg/app/xfs-1.0.5.tar.bz2) = f586f2101d42e512e7d20a6a6715c3c2cad19cacbee3b4034a0818de349e38f9 +SIZE (xorg/app/xfs-1.0.5.tar.bz2) = 152131 --- xfs-1.0.5,1.patch ends here --- >Release-Note: >Audit-Trail: >Unformatted: X-send-pr-version: 3.113 X-GNATS-Notify:
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?e890cae60710031155m44505cedpf2f39e6b57211c0e>