CVS commit: pkgsrc/textproc/py-ujson

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/textproc/py-ujson
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Sat, 2 Jul 2022 07:57:30 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Sat Jul  2 07:57:30 UTC 2022

Modified Files:
        pkgsrc/textproc/py-ujson: Makefile distinfo

Log Message:
py-ujson: updated to 5.4.0

5.4.0

Added

Add support for arbitrary size integers

Fixed

CVE-2022-31116:
Replace wchar_t string decoding implementation with a uint32_t-based one
Fix handling of surrogates on decoding
CVE-2022-31117: Potential double free of buffer during string decoding @JustAnotherArchivist
Fix memory leak on encoding errors when the buffer was resized
Integer parsing: always detect overflows
Fix handling of surrogates on encoding


To generate a diff of this commit:
cvs rdiff -u -r1.14 -r1.15 pkgsrc/textproc/py-ujson/Makefile \
    pkgsrc/textproc/py-ujson/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/textproc/py-ujson/Makefile
diff -u pkgsrc/textproc/py-ujson/Makefile:1.14 pkgsrc/textproc/py-ujson/Makefile:1.15
--- pkgsrc/textproc/py-ujson/Makefile:1.14      Wed May 18 21:52:39 2022
+++ pkgsrc/textproc/py-ujson/Makefile   Sat Jul  2 07:57:29 2022
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.14 2022/05/18 21:52:39 wiz Exp $
+# $NetBSD: Makefile,v 1.15 2022/07/02 07:57:29 adam Exp $
 
-DISTNAME=      ujson-5.3.0
+DISTNAME=      ujson-5.4.0
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=    textproc python
 MASTER_SITES=  ${MASTER_SITE_PYPI:=u/ujson/}
Index: pkgsrc/textproc/py-ujson/distinfo
diff -u pkgsrc/textproc/py-ujson/distinfo:1.14 pkgsrc/textproc/py-ujson/distinfo:1.15
--- pkgsrc/textproc/py-ujson/distinfo:1.14      Wed May 18 21:52:39 2022
+++ pkgsrc/textproc/py-ujson/distinfo   Sat Jul  2 07:57:29 2022
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/05/18 21:52:39 wiz Exp $
+$NetBSD: distinfo,v 1.15 2022/07/02 07:57:29 adam Exp $
 
-BLAKE2s (ujson-5.3.0.tar.gz) = 3f321a4e8d18a83440bb100db63abd1d94a43bc2c2e406682efbe6abd17ea32b
-SHA512 (ujson-5.3.0.tar.gz) = 7342ab3548980e14ff7a931b40aa9886703c167b3f079d01e1d07c9f6408b2994a84cf157ff8966400af057cdd8f332d6f47e2747b918efcd67129727434c501
-Size (ujson-5.3.0.tar.gz) = 7137499 bytes
+BLAKE2s (ujson-5.4.0.tar.gz) = 4a96446c33e848d5c34cbad45e1427d90b44fc37d3479d5560c60f769c11647b
+SHA512 (ujson-5.4.0.tar.gz) = 9622e872391d5467455b32e324d7b680487664ca486bfc56ba8c3969853e5db94725cd45e81b535dca80af4a3c718af171ce7adb6dcb9b98a37a8068824f89c6
+Size (ujson-5.4.0.tar.gz) = 7139576 bytes

Prev by Date: CVS commit: pkgsrc/textproc/py-lxml
Next by Date: CVS commit: pkgsrc/www/py-websocket-client
Previous by Thread: CVS commit: pkgsrc/textproc/py-lxml
Next by Thread: CVS commit: pkgsrc/www/py-websocket-client
Indexes:

Home | Main Index | Thread Index | Old Index