Subject: CVS commit: [pkgsrc-2006Q1] pkgsrc/graphics/gd
To: None <pkgsrc-changes@NetBSD.org>
From: Geert Hendrickx <ghen@netbsd.org>
List: pkgsrc-changes
Date: 06/15/2006 12:56:55
Module Name: pkgsrc
Committed By: ghen
Date: Thu Jun 15 12:56:54 UTC 2006
Modified Files:
pkgsrc/graphics/gd [pkgsrc-2006Q1]: Makefile distinfo
Added Files:
pkgsrc/graphics/gd/patches [pkgsrc-2006Q1]: patch-ac
Log Message:
Pullup ticket 1702 - requested by salo
security fix for gd
Revisions pulled up:
- pkgsrc/graphics/gd/Makefile 1.68, 1.69, 1.70
- pkgsrc/graphics/gd/distinfo 1.23
- pkgsrc/graphics/gd/patches/patch-ac 1.3
Module Name: pkgsrc
Committed By: minskim
Date: Sun May 14 18:19:08 UTC 2006
Modified Files:
pkgsrc/graphics/gd: Makefile
Log Message:
Fix a pkglint warning.
---
Module Name: pkgsrc
Committed By: minskim
Date: Sun May 14 18:22:38 UTC 2006
Modified Files:
pkgsrc/graphics/gd: Makefile
Log Message:
This package installs a perl script. Add a dependency on perl using
USE_TOOLS.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: salo
Date: Wed Jun 14 21:42:33 UTC 2006
Modified Files:
pkgsrc/graphics/gd: Makefile distinfo
Added Files:
pkgsrc/graphics/gd/patches: patch-ac
Log Message:
Security fix for CVE-2006-2906:
"The LZW decoding in the gdImageCreateFromGifPtr function in the Thomas
Boutell graphics draw (GD) library (aka libgd) 2.0.33 allows remote
attackers to cause a denial of service (CPU consumption) via malformed
GIF data that causes an infinite loop."
Patch from Xavier Roche via Ubuntu.
To generate a diff of this commit:
cvs rdiff -r1.66 -r1.66.2.1 pkgsrc/graphics/gd/Makefile
cvs rdiff -r1.22 -r1.22.8.1 pkgsrc/graphics/gd/distinfo
cvs rdiff -r0 -r1.2.20.1 pkgsrc/graphics/gd/patches/patch-ac
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.