[pkgsrc/trunk]: pkgsrc/textproc/py-ujson py-ujson: updated to 5.4.0

[adam <adam%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/7f074bbe2553
branches:  trunk
changeset: 381205:7f074bbe2553
user:      adam <adam%pkgsrc.org@localhost>
date:      Sat Jul 02 07:57:29 2022 +0000

description:
py-ujson: updated to 5.4.0

5.4.0

Added

Add support for arbitrary size integers

Fixed

CVE-2022-31116:
Replace wchar_t string decoding implementation with a uint32_t-based one
Fix handling of surrogates on decoding
CVE-2022-31117: Potential double free of buffer during string decoding @JustAnotherArchivist
Fix memory leak on encoding errors when the buffer was resized
Integer parsing: always detect overflows
Fix handling of surrogates on encoding

diffstat:

 textproc/py-ujson/Makefile |  4 ++--
 textproc/py-ujson/distinfo |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (25 lines):

diff -r a906345532a4 -r 7f074bbe2553 textproc/py-ujson/Makefile
--- a/textproc/py-ujson/Makefile        Sat Jul 02 07:55:31 2022 +0000
+++ b/textproc/py-ujson/Makefile        Sat Jul 02 07:57:29 2022 +0000
@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.14 2022/05/18 21:52:39 wiz Exp $
+# $NetBSD: Makefile,v 1.15 2022/07/02 07:57:29 adam Exp $
 
-DISTNAME=      ujson-5.3.0
+DISTNAME=      ujson-5.4.0
 PKGNAME=       ${PYPKGPREFIX}-${DISTNAME}
 CATEGORIES=    textproc python
 MASTER_SITES=  ${MASTER_SITE_PYPI:=u/ujson/}
diff -r a906345532a4 -r 7f074bbe2553 textproc/py-ujson/distinfo
--- a/textproc/py-ujson/distinfo        Sat Jul 02 07:55:31 2022 +0000
+++ b/textproc/py-ujson/distinfo        Sat Jul 02 07:57:29 2022 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.14 2022/05/18 21:52:39 wiz Exp $
+$NetBSD: distinfo,v 1.15 2022/07/02 07:57:29 adam Exp $
 
-BLAKE2s (ujson-5.3.0.tar.gz) = 3f321a4e8d18a83440bb100db63abd1d94a43bc2c2e406682efbe6abd17ea32b
-SHA512 (ujson-5.3.0.tar.gz) = 7342ab3548980e14ff7a931b40aa9886703c167b3f079d01e1d07c9f6408b2994a84cf157ff8966400af057cdd8f332d6f47e2747b918efcd67129727434c501
-Size (ujson-5.3.0.tar.gz) = 7137499 bytes
+BLAKE2s (ujson-5.4.0.tar.gz) = 4a96446c33e848d5c34cbad45e1427d90b44fc37d3479d5560c60f769c11647b
+SHA512 (ujson-5.4.0.tar.gz) = 9622e872391d5467455b32e324d7b680487664ca486bfc56ba8c3969853e5db94725cd45e81b535dca80af4a3c718af171ce7adb6dcb9b98a37a8068824f89c6
+Size (ujson-5.4.0.tar.gz) = 7139576 bytes