pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/x11/kdelibs3 Fix for CVE-2009-1725

details:   https://anonhg.NetBSD.org/pkgsrc/rev/84e95a35ff24
branches:  trunk
changeset: 563570:84e95a35ff24
user:      markd <markd%pkgsrc.org@localhost>
date:      Tue Aug 18 11:57:33 2009 +0000

description:
Fix for CVE-2009-1725

diffstat:

 x11/kdelibs3/Makefile         |   4 ++--
 x11/kdelibs3/distinfo         |   3 ++-
 x11/kdelibs3/patches/patch-aq |  15 +++++++++++++++
 3 files changed, 19 insertions(+), 3 deletions(-)

diffs (49 lines):

diff -r 2a768ad6b074 -r 84e95a35ff24 x11/kdelibs3/Makefile
--- a/x11/kdelibs3/Makefile     Tue Aug 18 05:49:27 2009 +0000
+++ b/x11/kdelibs3/Makefile     Tue Aug 18 11:57:33 2009 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.141 2009/06/16 16:09:36 hasso Exp $
+# $NetBSD: Makefile,v 1.142 2009/08/18 11:57:33 markd Exp $
 
 DISTNAME=      kdelibs-${_KDE_VERSION}
-PKGREVISION=   1
+PKGREVISION=   2
 CATEGORIES=    x11
 COMMENT=       Support libraries for the KDE integrated X11 desktop
 
diff -r 2a768ad6b074 -r 84e95a35ff24 x11/kdelibs3/distinfo
--- a/x11/kdelibs3/distinfo     Tue Aug 18 05:49:27 2009 +0000
+++ b/x11/kdelibs3/distinfo     Tue Aug 18 11:57:33 2009 +0000
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.94 2008/08/27 12:02:32 markd Exp $
+$NetBSD: distinfo,v 1.95 2009/08/18 11:57:33 markd Exp $
 
 SHA1 (kdelibs-3.5.10.tar.bz2) = c930a25f4419134def55b8466c3a6f737227fb82
 RMD160 (kdelibs-3.5.10.tar.bz2) = 4c960664283c83ebc8e68932ca9044336fcff223
@@ -15,6 +15,7 @@
 SHA1 (patch-an) = d34a3cc0ac0b92921bcaeb9b05c5b7a99ee3566c
 SHA1 (patch-ao) = 7ae360b2ee2332ec3017dfd468457f2c1b139308
 SHA1 (patch-ap) = 94037230bb3d12549195d52b98ffdd821f94f90d
+SHA1 (patch-aq) = 18f3885a73cd9169cf4f9c9d97420e639f7fec3c
 SHA1 (patch-bc) = 434a48d290aa9716b8c6e372419460ebd33cf8ea
 SHA1 (patch-bd) = 552c072d9e369420b2a54944cb4b0d0f75555468
 SHA1 (patch-be) = fdf2d64acb70b46ec4c71bed9ee89fa34fd5dd3d
diff -r 2a768ad6b074 -r 84e95a35ff24 x11/kdelibs3/patches/patch-aq
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/x11/kdelibs3/patches/patch-aq     Tue Aug 18 11:57:33 2009 +0000
@@ -0,0 +1,15 @@
+$NetBSD: patch-aq,v 1.11 2009/08/18 11:57:33 markd Exp $
+
+KDE svn 1002164 fixes CVE-2009-1725
+
+--- khtml/html/htmltokenizer.cpp.orig  2007-05-14 19:52:39.000000000 +1200
++++ khtml/html/htmltokenizer.cpp
+@@ -736,7 +736,7 @@ void HTMLTokenizer::parseEntity(Tokenize
+ #ifdef TOKEN_DEBUG
+                 kdDebug( 6036 ) << "unknown entity!" << endl;
+ #endif
+-                checkBuffer(10);
++                checkBuffer(11);
+                 // ignore the sequence, add it to the buffer as plaintext
+                 *dest++ = '&';
+                 for(unsigned int i = 0; i < cBufferPos; i++)
Home | Main Index | Thread Index | Old Index