CVS commit: pkgsrc/graphics/jbigkit

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/graphics/jbigkit
From: "OBATA Akio" <obache%netbsd.org@localhost>
Date: Thu, 10 Apr 2014 12:04:17 +0000

Module Name:    pkgsrc
Committed By:   obache
Date:           Thu Apr 10 12:04:16 UTC 2014

Modified Files:
        pkgsrc/graphics/jbigkit: Makefile distinfo
        pkgsrc/graphics/jbigkit/patches: patch-Makefile patch-aa patch-ab

Log Message:
Update jbigkit to 2.1.

Changes in version 2.1 (2014-04-08)

This is a security-critical bug-fix release that remains API and ABI
backwards compatible to version 2.0. Users who process BIE data from
untrusted sources should upgrade.

  - fixed a buffer-overflow vulnerability in the jbig.c decoder,
    reported by Florian Weimer (Red Hat): CVE-2013-6369

  - fixed ability of corrupted input data to force jbig85.c decoder
    into an end-less loop

  - fixed a bug in the processing of private deterministic-prediction
    tables (DPPRIV=1) in jbig.c decoder

  - fixed integer-type mismatches in printf arguments on 64-bit systems

  - fuzz-testing script added


To generate a diff of this commit:
cvs rdiff -u -r1.5 -r1.6 pkgsrc/graphics/jbigkit/Makefile
cvs rdiff -u -r1.4 -r1.5 pkgsrc/graphics/jbigkit/distinfo
cvs rdiff -u -r1.1 -r1.2 pkgsrc/graphics/jbigkit/patches/patch-Makefile
cvs rdiff -u -r1.3 -r1.4 pkgsrc/graphics/jbigkit/patches/patch-aa
cvs rdiff -u -r1.4 -r1.5 pkgsrc/graphics/jbigkit/patches/patch-ab

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index