pkgsrc-changes: CVS commit: [pkgsrc-2005Q3] pkgsrc/graphics/xli

Subject: CVS commit: [pkgsrc-2005Q3] pkgsrc/graphics/xli
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 10/30/2005 22:24:11
Module Name:	pkgsrc
Committed By:	snj
Date:		Sun Oct 30 22:24:11 UTC 2005

Modified Files:
	pkgsrc/graphics/xli [pkgsrc-2005Q3]: Makefile distinfo
Added Files:
	pkgsrc/graphics/xli/patches [pkgsrc-2005Q3]: patch-ad patch-ae patch-af

Log Message:
Pullup ticket 867 - requested by Lubomir Sedlacik
security fix for xli

Revisions pulled up:
- pkgsrc/graphics/xli/Makefile		1.30-1.31
- pkgsrc/graphics/xli/distinfo		1.16-1.18
- pkgsrc/graphics/xli/patches/patch-ad	1.1-1.2
- pkgsrc/graphics/xli/patches/patch-ae	1.1
- pkgsrc/graphics/xli/patches/patch-af	1.1

   Module Name:    pkgsrc
   Committed By:   reed
   Date:           Mon Oct 10 19:54:13 UTC 2005

   Modified Files:
           pkgsrc/graphics/xli: Makefile

   Log Message:
   Use INSTALLATION_DIRS to create lib/X11/app-defaults.
   (Shoujld this be created by something else?)
---
   Module Name:    pkgsrc
   Committed By:   reed
   Date:           Mon Oct 10 19:56:07 UTC 2005

   Modified Files:
           pkgsrc/graphics/xli: distinfo
   Added Files:
           pkgsrc/graphics/xli/patches: patch-ad

   Log Message:
   Add patch-ad:
   It undefines _BSD_SOURCE if on Linux system
   to avoid a parse error on GLIBC /usr/include/string.h.
   This hack is from gentoo.
---
   Module Name:    pkgsrc
   Committed By:   rillig
   Date:           Sun Oct 23 20:02:57 UTC 2005

   Modified Files:
           pkgsrc/graphics/xli: distinfo
           pkgsrc/graphics/xli/patches: patch-ad

   Log Message:
   Added RCS Id to patch-ad.
---
   Module Name:    pkgsrc
   Committed By:   salo
   Date:           Sun Oct 30 17:58:58 UTC 2005

   Modified Files:
           pkgsrc/graphics/xli: Makefile distinfo
   Added Files:
           pkgsrc/graphics/xli/patches: patch-ae patch-af

   Log Message:
   Security fix for CVE-2005-3178:

   "Buffer overflow in xli might allow user-complicit attackers to execute
   arbitrary code via a long title name in a NIFF file, which triggers the
   overflow during zoom, reduce, or rotate operations."

   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-3178

   Patch from Debian.


To generate a diff of this commit:
cvs rdiff -r1.29 -r1.29.4.1 pkgsrc/graphics/xli/Makefile
cvs rdiff -r1.15 -r1.15.6.1 pkgsrc/graphics/xli/distinfo
cvs rdiff -r0 -r1.2.2.1 pkgsrc/graphics/xli/patches/patch-ad
cvs rdiff -r0 -r1.1.2.1 pkgsrc/graphics/xli/patches/patch-ae \
    pkgsrc/graphics/xli/patches/patch-af

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.