[pkgsrc/pkgsrc-2018Q4]: pkgsrc/textproc/uriparser Pullup ticket #5893 - reque...

[bsiegert <bsiegert%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/30714d8e54fd
branches:  pkgsrc-2018Q4
changeset: 318754:30714d8e54fd
user:      bsiegert <bsiegert%pkgsrc.org@localhost>
date:      Tue Jan 29 10:20:39 2019 +0000

description:
Pullup ticket #5893 - requested by taca
textproc/uriparser: security fix

Revisions pulled up:
- textproc/uriparser/Makefile                                   1.12
- textproc/uriparser/distinfo                                   1.10

---
   Module Name: pkgsrc
   Committed By:        bsiegert
   Date:                Sun Jan  6 13:47:20 UTC 2019

   Modified Files:
        pkgsrc/textproc/uriparser: Makefile distinfo

   Log Message:
   Update uriparser to 0.9.1.

   >>>>>>>>>>>>> SECURITY >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
     * Fixed:
         Out-of-bounds read in uriParse*Ex* for incomplete URIs with IPv6
         addresses with embedded IPv4 address, e.g. "//[::44.1";
         mitigated if passed parameter <afterLast> points to readable memory
         containing a '\0' byte.
         Thanks to Joergen Ibsen for the report!
   >>>>>>>>>>>>> SECURITY >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
     * Fixed: When parsing a malformed URI with an IPvFuture address
         (e.g. "http://[vA.123456"; missing "]"), errorPos would point to the first
         character after "v" than the actual position of the error (here: the end
         of the string)
     * Fixed: uriToStringCharsRequired* reported 1 more byte than actually needed
         for IPv4 address URIs (GitHub #41); Thanks to @gyh007 for the patch!
     * Fixed: Compilation with MinGW
         Thanks to Sandro Mani for the patch!
     * Fixed: Drop use of asprintf from the test suite for MinGW (GitHub #40)
     * Improved: For parse errors, waterproof errorPos <= afterLast
     * Soname: 1:24:0

   Via email from Sebastian Pipping.

diffstat:

 textproc/uriparser/Makefile |   4 ++--
 textproc/uriparser/distinfo |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (28 lines):

diff -r 94811f3a0ea7 -r 30714d8e54fd textproc/uriparser/Makefile
--- a/textproc/uriparser/Makefile       Sat Jan 19 21:58:01 2019 +0000
+++ b/textproc/uriparser/Makefile       Tue Jan 29 10:20:39 2019 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.11 2018/10/29 16:17:25 bsiegert Exp $
+# $NetBSD: Makefile,v 1.11.2.1 2019/01/29 10:20:39 bsiegert Exp $
 
-DISTNAME=      uriparser-0.9.0
+DISTNAME=      uriparser-0.9.1
 CATEGORIES=    textproc
 MASTER_SITES=  ${MASTER_SITE_GITHUB:=uriparser/}
 GITHUB_RELEASE=        ${DISTNAME}
diff -r 94811f3a0ea7 -r 30714d8e54fd textproc/uriparser/distinfo
--- a/textproc/uriparser/distinfo       Sat Jan 19 21:58:01 2019 +0000
+++ b/textproc/uriparser/distinfo       Tue Jan 29 10:20:39 2019 +0000
@@ -1,7 +1,7 @@
-$NetBSD: distinfo,v 1.9 2018/10/29 16:17:25 bsiegert Exp $
+$NetBSD: distinfo,v 1.9.2.1 2019/01/29 10:20:39 bsiegert Exp $
 
-SHA1 (uriparser-0.9.0.tar.bz2) = 9b5d849e2fc8f96c1b832c4510ca05d092d02ba6
-RMD160 (uriparser-0.9.0.tar.bz2) = f4d1c357b1ca6c79acc2a657ddd822bf4bc7f1d4
-SHA512 (uriparser-0.9.0.tar.bz2) = 8ad631726c59d244b945221e803dcb13daa6df6550b3de94da19745f4b4d53a5ce17dba54280273181479f2803dea4ca7b0154ac3b54ca39fc4eda2c8a03e3f7
-Size (uriparser-0.9.0.tar.bz2) = 371895 bytes
+SHA1 (uriparser-0.9.1.tar.bz2) = 35b0f326bad6749c6a08da854e8ad0638d2fd198
+RMD160 (uriparser-0.9.1.tar.bz2) = 894281bcd38afd582e8f277f08346f9dc3d24ec6
+SHA512 (uriparser-0.9.1.tar.bz2) = c6a4f3b737d4c53ba14148a5be363d93947c8c32755b369726ccdd6e01e8a2293d2c94d448700fc97bb56092696b67965646ae07c9ef31be253e2279d0bc3821
+Size (uriparser-0.9.1.tar.bz2) = 372722 bytes
 SHA1 (patch-aa) = 71f3582a2988c6c35a1a2b1995d50f47f22939bd