Subject: More detailed commit messages (was: CVS commit: pkgsrc/lang/tcl)
To: Adam Ciarcinski <>
From: Bernd Ernesti <>
List: tech-pkg
Date: 07/19/2005 19:20:12

On Tue, Jul 19, 2005 at 11:11:58AM +0000, Adam Ciarcinski wrote:
> Module Name:	pkgsrc
> Committed By:	adam
> Date:		Tue Jul 19 11:11:58 UTC 2005
> Modified Files:
> 	pkgsrc/lang/tcl: Makefile.version PLIST distinfo
> 	pkgsrc/lang/tcl/patches: patch-aa patch-ab patch-ac patch-ae patch-af
> Log Message:
> Changes 8.4.11:
> * Bug fixes

It would be nice to have a more detailed commit log.

This is what I found on the sf page:

Summary of Changes since Tcl/Tk 8.4.10:

The following were the main changes in Tcl/Tk 8.4.11.  A complete list
can be found in the changes file at the root of the source tree.  The
more complete ChangeLog is also included with each source release.  This
is a patch release, so it primarily included bug fixes and corrections
to erratic behavior.  Below are only the most notable changes.

  * Corrected compile failure on unix in thread-enabled configuration.
  * Stopped crash in stack tests on Windows/gcc.
  * Stopped crashes in execution traces.
  * Stopped crash due to [file split] error on Windows.
  * Stopped crash/UMR in pipe close/finalization on Windows.
  * Fixed UID thread-safety in canvas.
  * Eliminate buffer overflow in GIF decoder.
  * Aqua: better default [entry] border width

Hmm, this sounds like we need to add an entry to the vulnerable list,
because of this entry:
* Eliminate buffer overflow in GIF decoder

2005-06-20  Donal K. Fellows  <>
 * generic/tkImgGIF.c (mInit,Mgetc,Fread): Stop anyone from reading
   off the end of a buffer.