CVS commit: pkgsrc/devel/jq

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/devel/jq
From: "Adam Ciarcinski" <adam%netbsd.org@localhost>
Date: Thu, 14 Dec 2023 08:08:04 +0000

Module Name:    pkgsrc
Committed By:   adam
Date:           Thu Dec 14 08:08:03 UTC 2023

Modified Files:
        pkgsrc/devel/jq: Makefile distinfo
        pkgsrc/devel/jq/patches: patch-Makefile.in

Log Message:
jq: updated to 1.7.1

1.7.1

Security

CVE-2023-50246: Fix heap buffer overflow in jvp_literal_number_literal
CVE-2023-50268: fix stack-buffer-overflow if comparing nan with payload

CLI changes

Make the default background color more suitable for bright backgrounds.
Allow passing the inline jq script after --.
Restrict systems operations on OpenBSD and remove unused mkstemp.
Fix possible uninitialised value dereference if jq_init() fails.

Language changes

Simplify paths/0 and paths/1.
Reject U+001F in string literals.
Remove unused nref accumulator in block_bind_library.
Remove a bunch of unused variables, and useless assignments.
main.c: Remove unused EXIT_STATUS_EXACT option.
Actually use the number correctly casted from double to int as index.
src/builtin.c: remove unnecessary jv_copy-s in type_error/type_error2.
Remove undefined behavior caught by LLVM 10 UBSAN.
Convert decnum to binary64 (double) instead of decimal64. This makes jq behave like the JSON specification suggests and more similar to other languages.
Fix memory leaks on invalid input for ltrimstr/1 and rtrimstr/1.
Fix memory leak on failed get for setpath/2.
Fix nan from json parsing also for nans with payload that start with 'n'.
Allow carriage return characters in comments.

Documentation changes

Generate links in the man page.
Standardize arch types to AMD64 & ARM64 from index page download dropdown.


To generate a diff of this commit:
cvs rdiff -u -r1.19 -r1.20 pkgsrc/devel/jq/Makefile
cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/jq/distinfo
cvs rdiff -u -r1.3 -r1.4 pkgsrc/devel/jq/patches/patch-Makefile.in

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/devel/jq/Makefile
diff -u pkgsrc/devel/jq/Makefile:1.19 pkgsrc/devel/jq/Makefile:1.20
--- pkgsrc/devel/jq/Makefile:1.19       Sat Sep  9 19:52:53 2023
+++ pkgsrc/devel/jq/Makefile    Thu Dec 14 08:08:03 2023
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.19 2023/09/09 19:52:53 wiz Exp $
+# $NetBSD: Makefile,v 1.20 2023/12/14 08:08:03 adam Exp $
 
-DISTNAME=      jq-1.7
+DISTNAME=      jq-1.7.1
 CATEGORIES=    devel
 MASTER_SITES=  ${MASTER_SITE_GITHUB:=jqlang/}
 GITHUB_RELEASE=        ${DISTNAME}

Index: pkgsrc/devel/jq/distinfo
diff -u pkgsrc/devel/jq/distinfo:1.16 pkgsrc/devel/jq/distinfo:1.17
--- pkgsrc/devel/jq/distinfo:1.16       Sat Sep  9 19:52:53 2023
+++ pkgsrc/devel/jq/distinfo    Thu Dec 14 08:08:03 2023
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.16 2023/09/09 19:52:53 wiz Exp $
+$NetBSD: distinfo,v 1.17 2023/12/14 08:08:03 adam Exp $
 
-BLAKE2s (jq-1.7.tar.gz) = 185d736bb910d644bd3075806bbc7239e71ab9fac04455d3c1c138d2e538e201
-SHA512 (jq-1.7.tar.gz) = 4f8a6b0401e6c881dcb97d948fe38871062599a43fff667ede21cf185ec9de33e61878f0a6ea12786d0a632eea592ea0ff860520ba02dbb32f2fa2d2b5db7a0a
-Size (jq-1.7.tar.gz) = 1905863 bytes
-SHA1 (patch-Makefile.in) = b07a388dc5ca2cd966a41b5bb1ebae07c5c10aa8
+BLAKE2s (jq-1.7.1.tar.gz) = ff4a9505b42b62ef0efd45fab9fd2b4b560596f9779f41f93e6893b67fb20435
+SHA512 (jq-1.7.1.tar.gz) = 464861fb2e0d6934b616f1dc7f8002d7dae727c8c0c07b385b813e7522ba1ada8ead4165e1d99c892e3ea76e238c55a15b718c738805419721920f88f8d8478c
+Size (jq-1.7.1.tar.gz) = 1950645 bytes
+SHA1 (patch-Makefile.in) = 657b308e7276a687ffdcdf86b0b70bd805dd9947

Index: pkgsrc/devel/jq/patches/patch-Makefile.in
diff -u pkgsrc/devel/jq/patches/patch-Makefile.in:1.3 pkgsrc/devel/jq/patches/patch-Makefile.in:1.4
--- pkgsrc/devel/jq/patches/patch-Makefile.in:1.3       Sat Sep  9 19:52:53 2023
+++ pkgsrc/devel/jq/patches/patch-Makefile.in   Thu Dec 14 08:08:03 2023
@@ -1,16 +1,16 @@
-$NetBSD: patch-Makefile.in,v 1.3 2023/09/09 19:52:53 wiz Exp $
+$NetBSD: patch-Makefile.in,v 1.4 2023/12/14 08:08:03 adam Exp $
 
 Do dynamic linking of libtool libraries too (otherwise bin/jq can
 end up being statically linked).
 
---- Makefile.in.orig   2023-09-06 20:00:52.000000000 +0000
+--- Makefile.in.orig   2023-12-13 19:24:21.000000000 +0000
 +++ Makefile.in
-@@ -761,7 +761,7 @@ generate_ver = ver="`{ $(srcdir)/scripts
+@@ -760,7 +760,7 @@ generate_ver = ver="`{ $(srcdir)/scripts
  CLEANFILES = src/version.h .remake-version-h src/builtin.inc \
        src/config_opts.inc jq.1
  jq_SOURCES = src/main.c src/version.h
--jq_LDFLAGS = -static-libtool-libs $(am__append_9)
-+jq_LDFLAGS = $(am__append_9)
- jq_LDADD = libjq.la -lm $(am__append_8)
+-jq_LDFLAGS = -static-libtool-libs $(am__append_8)
++jq_LDFLAGS = $(am__append_8)
+ jq_LDADD = libjq.la -lm
  
  ### Tests (make check)

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/sysutils/ansible-core
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/sysutils/ansible-core
Indexes:

Home | Main Index | Thread Index | Old Index