Subject: CVS commit: pkgsrc/graphics/imlib
To: None <pkgsrc-changes@NetBSD.org>
From: Lubomir Sedlacik <salo@netbsd.org>
List: pkgsrc-changes
Date: 12/10/2004 09:30:42
Module Name:	pkgsrc
Committed By:	salo
Date:		Fri Dec 10 09:30:42 UTC 2004

Modified Files:
	pkgsrc/graphics/imlib: Makefile buildlink3.mk distinfo
	pkgsrc/graphics/imlib/patches: patch-ab patch-ai
Added Files:
	pkgsrc/graphics/imlib/patches: patch-aj patch-ak patch-al patch-am
	    patch-an patch-ao

Log Message:
Bump PKGREVISION, security fix:

"Multiple buffer overflows in imlib 1.9.14 and earlier, which is used by
gkrellm and several window managers, allow remote attackers to execute
arbitrary code via certain image files."  (1.9.15 is also affected)

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1026

Patch from Pavel Kankovsky.


To generate a diff of this commit:
cvs rdiff -r1.89 -r1.90 pkgsrc/graphics/imlib/Makefile
cvs rdiff -r1.5 -r1.6 pkgsrc/graphics/imlib/buildlink3.mk
cvs rdiff -r1.15 -r1.16 pkgsrc/graphics/imlib/distinfo
cvs rdiff -r1.5 -r1.6 pkgsrc/graphics/imlib/patches/patch-ab
cvs rdiff -r1.1 -r1.2 pkgsrc/graphics/imlib/patches/patch-ai
cvs rdiff -r0 -r1.1 pkgsrc/graphics/imlib/patches/patch-aj \
    pkgsrc/graphics/imlib/patches/patch-ak \
    pkgsrc/graphics/imlib/patches/patch-al \
    pkgsrc/graphics/imlib/patches/patch-am \
    pkgsrc/graphics/imlib/patches/patch-an \
    pkgsrc/graphics/imlib/patches/patch-ao

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.