pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/pkgsrc-2021Q2]: pkgsrc/graphics/librsvg Pullup ticket #6492 - request...
details: https://anonhg.NetBSD.org/pkgsrc/rev/fd5c82386c9d
branches: pkgsrc-2021Q2
changeset: 457097:fd5c82386c9d
user: bsiegert <bsiegert%pkgsrc.org@localhost>
date: Mon Aug 16 19:27:53 2021 +0000
description:
Pullup ticket #6492 - requested by gutteridge
graphics/librsvg: security fix
Revisions pulled up:
- graphics/librsvg/Makefile 1.131
- graphics/librsvg/cargo-depends.mk 1.2
- graphics/librsvg/distinfo 1.52
---
Module Name: pkgsrc
Committed By: gutteridge
Date: Wed Aug 11 00:18:40 UTC 2021
Modified Files:
pkgsrc/graphics/librsvg: Makefile cargo-depends.mk distinfo
Log Message:
librsvg: update to 2.50.7
This includes a crate dependency update due to a security issue,
RUSTSEC-2020-0146.
==============
Version 2.50.7
==============
Two cairo-related bug fixes:
- #745 - Fix mismatched cairo_save/restore when running in inside the Cairo test suite.
- #746 - Possible cairo_save() without cairo_restore() in render_layer().
==============
Version 2.50.6
==============
This release fixes an important bug about text spacing. The bug fix
requires an update to at least Pango 1.44. Sorry for the increased
requirements!
- Librsvg now requires at least Pango 1.44.
- #730 - Incorrect text spacing when the transform is not 1:1. You
can see this when a small font-size is scaled up due to a
transform. It is less visible for a large font-size scaled down.
- #704 - Fix circle/ellipse in paths when they are made out of a
single Arc command.
==============
Version 2.50.5
==============
- #699 - Images embedded as data: URLs didn't render if they had a
MIME type with a charset parameter.
- #691 - Don't allow number lists with unbounded lengths in
tableValues attributes, for feComponentTransfer and
feConvolveMatrix (Madds H).
- #718 - Negative rx/ry in rect element should be ignored.
==============
Version 2.50.4
==============
Update dependent crates that had security vulnerabilities:
generic-array to 0.13.3 - RUSTSEC-2020-0146
- #686 - Reduced stack usage (Sebastian Dröge).
- #698 - Add limit for too-large radiuses on the feMorphology filter (Madds H).
- #703 - Properly ignore elements in an error state inside the "switch" element.
diffstat:
graphics/librsvg/Makefile | 7 +-
graphics/librsvg/cargo-depends.mk | 157 ++++----
graphics/librsvg/distinfo | 630 +++++++++++++++++++------------------
3 files changed, 409 insertions(+), 385 deletions(-)
diffs (truncated from 1236 to 300 lines):
diff -r 4c876bba7f0f -r fd5c82386c9d graphics/librsvg/Makefile
--- a/graphics/librsvg/Makefile Sat Jul 24 18:12:20 2021 +0000
+++ b/graphics/librsvg/Makefile Mon Aug 16 19:27:53 2021 +0000
@@ -1,7 +1,6 @@
-# $NetBSD: Makefile,v 1.130 2021/05/02 19:59:58 gutteridge Exp $
+# $NetBSD: Makefile,v 1.130.2.1 2021/08/16 19:27:53 bsiegert Exp $
-DISTNAME= librsvg-2.50.3
-PKGREVISION= 1
+DISTNAME= librsvg-2.50.7
CATEGORIES= graphics gnome
MASTER_SITES= ${MASTER_SITE_GNOME:=sources/librsvg/${PKGVERSION_NOREV:R}/}
EXTRACT_SUFX= .tar.xz
@@ -32,7 +31,7 @@
.include "../../devel/gobject-introspection/buildlink3.mk"
BUILDLINK_API_DEPENDS.glib2+= glib2>=2.50.0
.include "../../devel/glib2/buildlink3.mk"
-BUILDLINK_API_DEPENDS.pango+= pango>=1.38
+BUILDLINK_API_DEPENDS.pango+= pango>=1.44
.include "../../devel/pango/buildlink3.mk"
.include "../../fonts/fontconfig/buildlink3.mk"
BUILDLINK_API_DEPENDS.cairo+= cairo>=1.2.0
diff -r 4c876bba7f0f -r fd5c82386c9d graphics/librsvg/cargo-depends.mk
--- a/graphics/librsvg/cargo-depends.mk Sat Jul 24 18:12:20 2021 +0000
+++ b/graphics/librsvg/cargo-depends.mk Mon Aug 16 19:27:53 2021 +0000
@@ -1,44 +1,45 @@
-# $NetBSD: cargo-depends.mk,v 1.1 2021/04/13 10:28:00 wiz Exp $
+# $NetBSD: cargo-depends.mk,v 1.1.2.1 2021/08/16 19:27:53 bsiegert Exp $
-CARGO_CRATE_DEPENDS+= adler-0.2.3
+CARGO_CRATE_DEPENDS+= adler-1.0.2
CARGO_CRATE_DEPENDS+= adler32-1.2.0
-CARGO_CRATE_DEPENDS+= aho-corasick-0.7.15
+CARGO_CRATE_DEPENDS+= aho-corasick-0.7.18
CARGO_CRATE_DEPENDS+= approx-0.3.2
-CARGO_CRATE_DEPENDS+= assert_cmd-1.0.2
+CARGO_CRATE_DEPENDS+= assert_cmd-1.0.5
CARGO_CRATE_DEPENDS+= atty-0.2.14
CARGO_CRATE_DEPENDS+= autocfg-1.0.1
CARGO_CRATE_DEPENDS+= base-x-0.2.8
CARGO_CRATE_DEPENDS+= bitflags-1.2.1
CARGO_CRATE_DEPENDS+= block-0.1.6
-CARGO_CRATE_DEPENDS+= bstr-0.2.14
-CARGO_CRATE_DEPENDS+= bumpalo-3.5.0
-CARGO_CRATE_DEPENDS+= bytemuck-1.5.0
-CARGO_CRATE_DEPENDS+= byteorder-1.4.2
+CARGO_CRATE_DEPENDS+= bstr-0.2.16
+CARGO_CRATE_DEPENDS+= bumpalo-3.7.0
+CARGO_CRATE_DEPENDS+= bytemuck-1.5.1
+CARGO_CRATE_DEPENDS+= byteorder-1.4.3
CARGO_CRATE_DEPENDS+= cairo-rs-0.8.1
CARGO_CRATE_DEPENDS+= cairo-sys-rs-0.9.2
-CARGO_CRATE_DEPENDS+= cast-0.2.3
+CARGO_CRATE_DEPENDS+= cast-0.2.6
CARGO_CRATE_DEPENDS+= cfg-if-1.0.0
CARGO_CRATE_DEPENDS+= chrono-0.4.19
CARGO_CRATE_DEPENDS+= clap-2.33.3
-CARGO_CRATE_DEPENDS+= const_fn-0.4.5
+CARGO_CRATE_DEPENDS+= const_fn-0.4.8
+CARGO_CRATE_DEPENDS+= convert_case-0.4.0
CARGO_CRATE_DEPENDS+= crc32fast-1.2.1
CARGO_CRATE_DEPENDS+= criterion-0.3.4
CARGO_CRATE_DEPENDS+= criterion-plot-0.4.3
-CARGO_CRATE_DEPENDS+= crossbeam-channel-0.5.0
+CARGO_CRATE_DEPENDS+= crossbeam-channel-0.5.1
CARGO_CRATE_DEPENDS+= crossbeam-deque-0.8.0
-CARGO_CRATE_DEPENDS+= crossbeam-epoch-0.9.1
-CARGO_CRATE_DEPENDS+= crossbeam-utils-0.8.1
+CARGO_CRATE_DEPENDS+= crossbeam-epoch-0.9.5
+CARGO_CRATE_DEPENDS+= crossbeam-utils-0.8.5
CARGO_CRATE_DEPENDS+= cssparser-0.27.2
CARGO_CRATE_DEPENDS+= cssparser-macros-0.6.0
-CARGO_CRATE_DEPENDS+= csv-1.1.5
+CARGO_CRATE_DEPENDS+= csv-1.1.6
CARGO_CRATE_DEPENDS+= csv-core-0.1.10
CARGO_CRATE_DEPENDS+= data-url-0.1.0
CARGO_CRATE_DEPENDS+= deflate-0.8.6
-CARGO_CRATE_DEPENDS+= derive_more-0.99.11
+CARGO_CRATE_DEPENDS+= derive_more-0.99.14
CARGO_CRATE_DEPENDS+= difference-2.0.0
CARGO_CRATE_DEPENDS+= discard-1.0.4
CARGO_CRATE_DEPENDS+= doc-comment-0.3.3
-CARGO_CRATE_DEPENDS+= dtoa-0.4.7
+CARGO_CRATE_DEPENDS+= dtoa-0.4.8
CARGO_CRATE_DEPENDS+= dtoa-short-0.3.3
CARGO_CRATE_DEPENDS+= either-1.6.1
CARGO_CRATE_DEPENDS+= encoding-0.2.33
@@ -48,23 +49,23 @@
CARGO_CRATE_DEPENDS+= encoding-index-singlebyte-1.20141219.5
CARGO_CRATE_DEPENDS+= encoding-index-tradchinese-1.20141219.5
CARGO_CRATE_DEPENDS+= encoding_index_tests-0.1.4
-CARGO_CRATE_DEPENDS+= flate2-1.0.19
+CARGO_CRATE_DEPENDS+= flate2-1.0.20
CARGO_CRATE_DEPENDS+= float-cmp-0.8.0
-CARGO_CRATE_DEPENDS+= form_urlencoded-1.0.0
+CARGO_CRATE_DEPENDS+= form_urlencoded-1.0.1
CARGO_CRATE_DEPENDS+= futf-0.1.4
-CARGO_CRATE_DEPENDS+= futures-channel-0.3.12
-CARGO_CRATE_DEPENDS+= futures-core-0.3.12
-CARGO_CRATE_DEPENDS+= futures-executor-0.3.12
-CARGO_CRATE_DEPENDS+= futures-io-0.3.12
-CARGO_CRATE_DEPENDS+= futures-macro-0.3.12
-CARGO_CRATE_DEPENDS+= futures-task-0.3.12
-CARGO_CRATE_DEPENDS+= futures-util-0.3.12
+CARGO_CRATE_DEPENDS+= futures-channel-0.3.15
+CARGO_CRATE_DEPENDS+= futures-core-0.3.15
+CARGO_CRATE_DEPENDS+= futures-executor-0.3.15
+CARGO_CRATE_DEPENDS+= futures-io-0.3.15
+CARGO_CRATE_DEPENDS+= futures-macro-0.3.15
+CARGO_CRATE_DEPENDS+= futures-task-0.3.15
+CARGO_CRATE_DEPENDS+= futures-util-0.3.15
CARGO_CRATE_DEPENDS+= fxhash-0.2.1
CARGO_CRATE_DEPENDS+= gdk-pixbuf-0.8.0
CARGO_CRATE_DEPENDS+= gdk-pixbuf-sys-0.9.1
-CARGO_CRATE_DEPENDS+= generic-array-0.13.2
+CARGO_CRATE_DEPENDS+= generic-array-0.13.3
CARGO_CRATE_DEPENDS+= getrandom-0.1.16
-CARGO_CRATE_DEPENDS+= getrandom-0.2.2
+CARGO_CRATE_DEPENDS+= getrandom-0.2.3
CARGO_CRATE_DEPENDS+= gio-0.8.1
CARGO_CRATE_DEPENDS+= gio-sys-0.9.1
CARGO_CRATE_DEPENDS+= glib-0.9.3
@@ -72,14 +73,14 @@
CARGO_CRATE_DEPENDS+= gobject-sys-0.9.1
CARGO_CRATE_DEPENDS+= half-1.7.1
CARGO_CRATE_DEPENDS+= hermit-abi-0.1.18
-CARGO_CRATE_DEPENDS+= idna-0.2.0
+CARGO_CRATE_DEPENDS+= idna-0.2.3
CARGO_CRATE_DEPENDS+= itertools-0.9.0
CARGO_CRATE_DEPENDS+= itertools-0.10.0
CARGO_CRATE_DEPENDS+= itoa-0.4.7
-CARGO_CRATE_DEPENDS+= js-sys-0.3.47
+CARGO_CRATE_DEPENDS+= js-sys-0.3.51
CARGO_CRATE_DEPENDS+= language-tags-0.2.2
CARGO_CRATE_DEPENDS+= lazy_static-1.4.0
-CARGO_CRATE_DEPENDS+= libc-0.2.83
+CARGO_CRATE_DEPENDS+= libc-0.2.95
CARGO_CRATE_DEPENDS+= libm-0.2.1
CARGO_CRATE_DEPENDS+= linked-hash-map-0.5.4
CARGO_CRATE_DEPENDS+= locale_config-0.3.0
@@ -88,13 +89,13 @@
CARGO_CRATE_DEPENDS+= lzw-0.10.0
CARGO_CRATE_DEPENDS+= mac-0.1.1
CARGO_CRATE_DEPENDS+= malloc_buf-0.0.6
-CARGO_CRATE_DEPENDS+= markup5ever-0.10.0
+CARGO_CRATE_DEPENDS+= markup5ever-0.10.1
CARGO_CRATE_DEPENDS+= matches-0.1.8
CARGO_CRATE_DEPENDS+= matrixmultiply-0.2.4
-CARGO_CRATE_DEPENDS+= memchr-2.3.4
-CARGO_CRATE_DEPENDS+= memoffset-0.6.1
+CARGO_CRATE_DEPENDS+= memchr-2.4.0
+CARGO_CRATE_DEPENDS+= memoffset-0.6.4
CARGO_CRATE_DEPENDS+= miniz_oxide-0.3.7
-CARGO_CRATE_DEPENDS+= miniz_oxide-0.4.3
+CARGO_CRATE_DEPENDS+= miniz_oxide-0.4.4
CARGO_CRATE_DEPENDS+= nalgebra-0.21.1
CARGO_CRATE_DEPENDS+= new_debug_unreachable-1.0.4
CARGO_CRATE_DEPENDS+= nodrop-0.1.14
@@ -107,7 +108,7 @@
CARGO_CRATE_DEPENDS+= objc-0.2.7
CARGO_CRATE_DEPENDS+= objc-foundation-0.1.1
CARGO_CRATE_DEPENDS+= objc_id-0.1.1
-CARGO_CRATE_DEPENDS+= once_cell-1.5.2
+CARGO_CRATE_DEPENDS+= once_cell-1.7.2
CARGO_CRATE_DEPENDS+= oorandom-11.1.3
CARGO_CRATE_DEPENDS+= pango-0.8.0
CARGO_CRATE_DEPENDS+= pango-sys-0.9.1
@@ -116,106 +117,110 @@
CARGO_CRATE_DEPENDS+= paste-0.1.18
CARGO_CRATE_DEPENDS+= paste-impl-0.1.18
CARGO_CRATE_DEPENDS+= percent-encoding-2.1.0
+CARGO_CRATE_DEPENDS+= pest-2.1.3
CARGO_CRATE_DEPENDS+= phf-0.8.0
CARGO_CRATE_DEPENDS+= phf_codegen-0.8.0
CARGO_CRATE_DEPENDS+= phf_generator-0.8.0
CARGO_CRATE_DEPENDS+= phf_macros-0.8.0
CARGO_CRATE_DEPENDS+= phf_shared-0.8.0
-CARGO_CRATE_DEPENDS+= pin-project-lite-0.2.4
+CARGO_CRATE_DEPENDS+= pin-project-lite-0.2.6
CARGO_CRATE_DEPENDS+= pin-utils-0.1.0
CARGO_CRATE_DEPENDS+= pkg-config-0.3.19
-CARGO_CRATE_DEPENDS+= plotters-0.3.0
+CARGO_CRATE_DEPENDS+= plotters-0.3.1
CARGO_CRATE_DEPENDS+= plotters-backend-0.3.0
CARGO_CRATE_DEPENDS+= plotters-svg-0.3.0
CARGO_CRATE_DEPENDS+= png-0.16.8
CARGO_CRATE_DEPENDS+= pom-3.2.0
CARGO_CRATE_DEPENDS+= ppv-lite86-0.2.10
CARGO_CRATE_DEPENDS+= precomputed-hash-0.1.1
-CARGO_CRATE_DEPENDS+= predicates-1.0.6
-CARGO_CRATE_DEPENDS+= predicates-core-1.0.1
-CARGO_CRATE_DEPENDS+= predicates-tree-1.0.1
+CARGO_CRATE_DEPENDS+= predicates-1.0.8
+CARGO_CRATE_DEPENDS+= predicates-core-1.0.2
+CARGO_CRATE_DEPENDS+= predicates-tree-1.0.2
CARGO_CRATE_DEPENDS+= proc-macro-hack-0.5.19
CARGO_CRATE_DEPENDS+= proc-macro-nested-0.1.7
-CARGO_CRATE_DEPENDS+= proc-macro2-1.0.24
-CARGO_CRATE_DEPENDS+= quote-1.0.8
+CARGO_CRATE_DEPENDS+= proc-macro2-1.0.27
+CARGO_CRATE_DEPENDS+= quote-1.0.9
CARGO_CRATE_DEPENDS+= rand-0.7.3
CARGO_CRATE_DEPENDS+= rand-0.8.3
CARGO_CRATE_DEPENDS+= rand_chacha-0.2.2
CARGO_CRATE_DEPENDS+= rand_chacha-0.3.0
CARGO_CRATE_DEPENDS+= rand_core-0.5.1
-CARGO_CRATE_DEPENDS+= rand_core-0.6.1
+CARGO_CRATE_DEPENDS+= rand_core-0.6.2
CARGO_CRATE_DEPENDS+= rand_distr-0.2.2
CARGO_CRATE_DEPENDS+= rand_hc-0.2.0
CARGO_CRATE_DEPENDS+= rand_hc-0.3.0
CARGO_CRATE_DEPENDS+= rand_pcg-0.2.1
CARGO_CRATE_DEPENDS+= rawpointer-0.2.1
-CARGO_CRATE_DEPENDS+= rayon-1.5.0
-CARGO_CRATE_DEPENDS+= rayon-core-1.9.0
+CARGO_CRATE_DEPENDS+= rayon-1.5.1
+CARGO_CRATE_DEPENDS+= rayon-core-1.9.1
CARGO_CRATE_DEPENDS+= rctree-0.3.3
-CARGO_CRATE_DEPENDS+= redox_syscall-0.2.4
-CARGO_CRATE_DEPENDS+= regex-1.4.3
-CARGO_CRATE_DEPENDS+= regex-automata-0.1.9
-CARGO_CRATE_DEPENDS+= regex-syntax-0.6.22
+CARGO_CRATE_DEPENDS+= redox_syscall-0.2.8
+CARGO_CRATE_DEPENDS+= regex-1.5.4
+CARGO_CRATE_DEPENDS+= regex-automata-0.1.10
+CARGO_CRATE_DEPENDS+= regex-syntax-0.6.25
CARGO_CRATE_DEPENDS+= remove_dir_all-0.5.3
-CARGO_CRATE_DEPENDS+= rgb-0.8.25
+CARGO_CRATE_DEPENDS+= rgb-0.8.27
CARGO_CRATE_DEPENDS+= rustc_version-0.2.3
+CARGO_CRATE_DEPENDS+= rustc_version-0.3.3
CARGO_CRATE_DEPENDS+= ryu-1.0.5
CARGO_CRATE_DEPENDS+= same-file-1.0.6
CARGO_CRATE_DEPENDS+= scopeguard-1.1.0
CARGO_CRATE_DEPENDS+= selectors-0.22.0
CARGO_CRATE_DEPENDS+= semver-0.9.0
+CARGO_CRATE_DEPENDS+= semver-0.11.0
CARGO_CRATE_DEPENDS+= semver-parser-0.7.0
-CARGO_CRATE_DEPENDS+= serde-1.0.123
+CARGO_CRATE_DEPENDS+= semver-parser-0.10.2
+CARGO_CRATE_DEPENDS+= serde-1.0.126
CARGO_CRATE_DEPENDS+= serde_cbor-0.11.1
-CARGO_CRATE_DEPENDS+= serde_derive-1.0.123
-CARGO_CRATE_DEPENDS+= serde_json-1.0.61
+CARGO_CRATE_DEPENDS+= serde_derive-1.0.126
+CARGO_CRATE_DEPENDS+= serde_json-1.0.64
CARGO_CRATE_DEPENDS+= servo_arc-0.1.1
CARGO_CRATE_DEPENDS+= sha1-0.6.0
CARGO_CRATE_DEPENDS+= simba-0.1.5
-CARGO_CRATE_DEPENDS+= siphasher-0.3.3
-CARGO_CRATE_DEPENDS+= slab-0.4.2
+CARGO_CRATE_DEPENDS+= siphasher-0.3.5
+CARGO_CRATE_DEPENDS+= slab-0.4.3
CARGO_CRATE_DEPENDS+= smallvec-1.6.1
CARGO_CRATE_DEPENDS+= stable_deref_trait-1.2.0
-CARGO_CRATE_DEPENDS+= standback-0.2.14
+CARGO_CRATE_DEPENDS+= standback-0.2.17
CARGO_CRATE_DEPENDS+= stdweb-0.4.20
CARGO_CRATE_DEPENDS+= stdweb-derive-0.5.3
CARGO_CRATE_DEPENDS+= stdweb-internal-macros-0.2.9
CARGO_CRATE_DEPENDS+= stdweb-internal-runtime-0.1.5
CARGO_CRATE_DEPENDS+= string_cache-0.8.1
CARGO_CRATE_DEPENDS+= string_cache_codegen-0.5.1
-CARGO_CRATE_DEPENDS+= syn-1.0.60
+CARGO_CRATE_DEPENDS+= syn-1.0.72
CARGO_CRATE_DEPENDS+= tempfile-3.2.0
CARGO_CRATE_DEPENDS+= tendril-0.4.2
CARGO_CRATE_DEPENDS+= textwrap-0.11.0
CARGO_CRATE_DEPENDS+= thin-slice-0.1.1
-CARGO_CRATE_DEPENDS+= thread_local-1.1.2
CARGO_CRATE_DEPENDS+= time-0.1.43
-CARGO_CRATE_DEPENDS+= time-0.2.25
+CARGO_CRATE_DEPENDS+= time-0.2.26
CARGO_CRATE_DEPENDS+= time-macros-0.1.1
CARGO_CRATE_DEPENDS+= time-macros-impl-0.1.1
-CARGO_CRATE_DEPENDS+= tinytemplate-1.2.0
+CARGO_CRATE_DEPENDS+= tinytemplate-1.2.1
CARGO_CRATE_DEPENDS+= tinyvec-0.3.4
-CARGO_CRATE_DEPENDS+= tinyvec-1.1.1
+CARGO_CRATE_DEPENDS+= tinyvec-1.2.0
CARGO_CRATE_DEPENDS+= tinyvec_macros-0.1.0
CARGO_CRATE_DEPENDS+= treeline-0.1.0
-CARGO_CRATE_DEPENDS+= typenum-1.12.0
-CARGO_CRATE_DEPENDS+= unicode-bidi-0.3.4
-CARGO_CRATE_DEPENDS+= unicode-normalization-0.1.16
+CARGO_CRATE_DEPENDS+= typenum-1.13.0
+CARGO_CRATE_DEPENDS+= ucd-trie-0.1.3
+CARGO_CRATE_DEPENDS+= unicode-bidi-0.3.5
+CARGO_CRATE_DEPENDS+= unicode-normalization-0.1.19
CARGO_CRATE_DEPENDS+= unicode-width-0.1.8
-CARGO_CRATE_DEPENDS+= unicode-xid-0.2.1
-CARGO_CRATE_DEPENDS+= url-2.2.0
-CARGO_CRATE_DEPENDS+= utf-8-0.7.5
-CARGO_CRATE_DEPENDS+= version_check-0.9.2
+CARGO_CRATE_DEPENDS+= unicode-xid-0.2.2
+CARGO_CRATE_DEPENDS+= url-2.2.2
+CARGO_CRATE_DEPENDS+= utf-8-0.7.6
+CARGO_CRATE_DEPENDS+= version_check-0.9.3
CARGO_CRATE_DEPENDS+= wait-timeout-0.2.0
-CARGO_CRATE_DEPENDS+= walkdir-2.3.1
Home |
Main Index |
Thread Index |
Old Index