pkgsrc-changes: CVS commit: pkgsrc/graphics/xli

Subject: CVS commit: pkgsrc/graphics/xli
To: None <pkgsrc-changes@NetBSD.org>
From: Lubomir Sedlacik <salo@netbsd.org>
List: pkgsrc-changes
Date: 10/30/2005 17:58:58

Module Name:	pkgsrc
Committed By:	salo
Date:		Sun Oct 30 17:58:58 UTC 2005

Modified Files:
	pkgsrc/graphics/xli: Makefile distinfo
Added Files:
	pkgsrc/graphics/xli/patches: patch-ae patch-af

Log Message:
Security fix for CVE-2005-3178:

"Buffer overflow in xli might allow user-complicit attackers to execute
arbitrary code via a long title name in a NIFF file, which triggers the
overflow during zoom, reduce, or rotate operations."

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3178

Patch from Debian.


To generate a diff of this commit:
cvs rdiff -r1.30 -r1.31 pkgsrc/graphics/xli/Makefile
cvs rdiff -r1.17 -r1.18 pkgsrc/graphics/xli/distinfo
cvs rdiff -r0 -r1.1 pkgsrc/graphics/xli/patches/patch-ae \
    pkgsrc/graphics/xli/patches/patch-af

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.