Subject: CVS commit: [pkgsrc-2005Q2] pkgsrc/devel/zlib
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 07/27/2005 04:30:25
Module Name: pkgsrc
Committed By: snj
Date: Wed Jul 27 04:30:25 UTC 2005
Modified Files:
pkgsrc/devel/zlib [pkgsrc-2005Q2]: Makefile buildlink3.mk distinfo
Removed Files:
pkgsrc/devel/zlib/patches [pkgsrc-2005Q2]: patch-ab
Log Message:
Pullup ticket 626 - requested by Matthias Drochner
security update for zlib
Revisions pulled up:
- pkgsrc/devel/zlib/Makefile 1.31
- pkgsrc/devel/zlib/buildlink3.mk 1.20
- pkgsrc/devel/zlib/distinfo 1.14
- pkgsrc/devel/zlib/patches/patch-ab removed
Module Name: pkgsrc
Committed By: drochner
Date: Fri Jul 22 16:04:44 UTC 2005
Modified Files:
pkgsrc/devel/zlib: Makefile buildlink3.mk distinfo
Removed Files:
pkgsrc/devel/zlib/patches: patch-ab
Log Message:
update to 1.2.3
this fixes (at least) another security problem (DoS, CAN-2005-1849)
changes:
-Eliminate a potential security vulnerability when decoding invalid
compressed data
-Eliminate a potential security vulnerability when decoding specially
crafted compressed data
-Fix a bug when decompressing dynamic blocks with no distance codes
-Fix crc check bug in gzread() after gzungetc()
-Do not return an error when using gzread() on an empty file
To generate a diff of this commit:
cvs rdiff -r1.29.2.1 -r1.29.2.2 pkgsrc/devel/zlib/Makefile
cvs rdiff -r1.18.6.1 -r1.18.6.2 pkgsrc/devel/zlib/buildlink3.mk
cvs rdiff -r1.12.2.1 -r1.12.2.2 pkgsrc/devel/zlib/distinfo
cvs rdiff -r1.4.6.1 -r0 pkgsrc/devel/zlib/patches/patch-ab
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.