p5-Imager: update to 1.012.

To: pkgsrc-wip-changes%NetBSD.org@localhost
Subject: p5-Imager: update to 1.012.
From: Thomas Klausner <tk%giga.or.at@localhost>
Date: Mon, 07 Sep 2020 19:04:26 +0000
Module Name:	pkgsrc-wip
Committed By:	Thomas Klausner <tk%giga.or.at@localhost>
Pushed By:	wiz
Date:		Mon Sep 7 21:04:26 2020 +0200
Changeset:	4df3baf7cef5405b06e1c409f7fa30f52ac36f83

Modified Files:
	p5-Imager/Makefile
	p5-Imager/distinfo

Log Message:
p5-Imager: update to 1.012.

Imager 1.012 - 14 Jun 2020
============

 - Imager has moved to github.

 - T1lib support is deprecated

 - added guassian2 filter which allows separate filter radii for vertical
   and horizontal.  Thanks to Leolo.
   https://rt.cpan.org/Ticket/Display.html?id=129769

 - freetype2 support can now use pkg-config to configure itself.

 - added red, green, blue, alpha methods to color objects.

 - eliminate use vars.

Imager 1.011 - 7 Mar 2019
============

General changes:

 - correct the type of the data parameter for im_decode_exif().

 - fix the release date listed below for 1.010

 - add missing change entry for RT #128142

 - binmode the correct handle in t/200-file/010-iolayer.t, this may fix some test
   failures on one CPAN smoker.

 - add the mymeta check (AUTHOR testing only) to MANIFEST

More Coverity fixes:

 - translate_errdiff() could leak memory on failure (introduced in
   1.009) CID 185565.

 - i_img_make_palette() could leak memory on failure (introduced in
   1.009) CID 185566.

 - DSO_open(), from the original dynamic loading API, could leak
   dlopen() handles on failure.  CID 185309.  DSO_close() now releases
   the memory associated with the internal DSO handle, rather than
   only releasing the dlopen() handle.

Imager 1.010 - 13 Feb 2019
============

General changes:

 - added the add_file_magic() class method for adding magic for new
   file types to Imager's fairly primitive file magic detection.

 - fixed an embarassing documentation typo in Imager::Test.

 - trying to read from a GIF file with no images now sets an error
   message.  Thanks to Peter Sergeant for reporting this.
   https://rt.cpan.org/Ticket/Display.html?id=128481

 - use undeprecated encoding symbols for FT2.  This should fix the
   build on the badly patched CentOS 7 Freetype 2.  Thanks to Slaven
   Rezic for the report.
   https://rt.cpan.org/Ticket/Display.html?id=128142

Coverity has come back up read-only, a few more changes:

 - add missing va_end() for bmp.c's write_packed().  CID 185320.

 - similarly for read_packed().  CID 185329.

 - add a NOTREACHED lint comment for pixel_coverage().  Compilers
   complained about a missing return, Coverity complains about the
   return.  CID 185325.

 - avoid a possible sign extension in imsgi.c. CID 185326.

 - add some FALLTHROUGH lint comments to i_readtga_wiol() where we
   deliberately fall through switch cases.  CID 185328.

 - add assertions in callers to i_new_hatch_low() since Coverity
   complained about some possible inconsistent NULL checks.  CID
   185339.  I ended up rearranging this function later.

 - remove pointless NULL checks from i_flipxy() and i_img_destroy().

Imager 1.009 - 11 Jan 2019
============

Critical issue:

 - drawing a filled, anti-aliased circle to the left or right of the
   image (not within the image at all) would cause a buffer overflow.
   https://rt.cpan.org/Ticket/Display.html?id=128208

General changes:

 - to_paletted() and make_palette() now fail (with an error in
   errstr()) if invalid quantization parameters are supplied.

 - map() would corrupt a channel if there was a gap in the arrayref of
   channels.  Detected by Coverity.  CID 185300.

 - most numeric parameters to the XS implementation now throw an
   exception if supplied an unoverloaded reference.
   https://rt.cpan.org/Ticket/Display.html?id=128208

Coverity finally finished a build[1], fixed several of the problems
found.  Coverity went down before I could finish working through them.

High severity:

 - reading a color-mapped TGA file with an id string would cause a
   double-free if the palette was truncated. CID 185317.

 - mixing scaling to sizes where the accumulator row, the working
   output row or the working input row didn't fit into the address
   space could result in memory leaks.  This can probably only be
   reproduced on very wide floating-point sample images. CID 185318.

 - convert an array style function parameter pointer to pointer style
   to prevent confusing Coverity in the T1 bounding box implementation.
   CID 185343.

 - Similarly in the FT1 bounding box implementation. CID 185338.

 - Similarly for the i_tt_rasterize() function in the FT1
   implementation.  CID 185303.

 - initialize a pointer to prevent Coverity complaining in polygon
   drawing (it should always end up being set.) CID 185341.

 - addi style makemap could potentially read one past the end of an
   array. CID 185337.

 - supplying a numeric hatch of 32 to Imager::Fill->new(hatch => ...)
   would result in read beyond the end of the built-in hatch array.
   Negative values (which Coverity didn't complain about) could also
   cause problems.  CID 185331.

 - the Imager::Color set_internal() interal method no longer
   calls the over-complicated ICL_set_internal() (which is retained
   only for the old API.)  Coverity complained that this leaked, but
   this could only occur with an invalid (NULL pointer) color object.
   CID 185323.

 - the underlying implementation of the map() method could read before
   the beginning on an allocated array if supplied with inconsistent
   parameters, which Coverity complained about.  No Imager code calls
   that function with inconsistent parameters, but a
   belt-and-suspenders check was added. CID 185315.

 - Coverity complained a call to i_getcolors(), used by the
   implementation of the is_bilevel() method could leave the fetched
   colors uninitialized.  Added a return value check. CID 185308.

 - a numeric combining mode of 13 (eg. as a parameter to
   Imager::Fill->new())could cause an invalid array read in
   i_get_combine() due to a fencepost error in validating the combine
   number.  CID 185299.

Lower severity (according to Coverity):

 - avoid an unneeded EXTEND() call when the FT1 has_chars()
   implementation returns 0. CID 185350.

 - avoid accessing a possibly NULL map from MakeMapObject() in a
   logging call. (GIF) CID 185296.

 - gradgen() allocated the wrong amount of space (always too much) for
   the color array.  CID 185291.

 - avoid dead code in i_tt_glyph_names(). CID 185321.

 - avoid dead code in i_get_anonymous_color_histo(), which is the
   implementation of getcolorusage().  CID 185327.

 - avoid dead code in i_ft2_glyph_name(), which is the implementation
   of glyph_names() for FT2.  CID 185342.

 - avoid dead code in i_t1_glyph_names(), which is the implementation
   of glyph_names() for T1.  CID 185322.

 - avoid an unneeded EXTEND() call when the FT2 has_chars()
   implementation returns 0. CID 185292.

 - the unpack code for ICO/CUR file handling could extend 32-bit
   unsigned values to 64-bit signed.  I believe this is harmless. CID
   185319.

 - remove an unneeded check when terminating the stream for JPEG
   writing.  CID 185347.

 - skip an unneeded check when freeing the combine temp buffer in the
   fountain filter.  CID 185286.

 - check the combine function pointer consistently rather than the
   combine code in one place in the fountain filter.

 - error diffusion now validates a custom error diffusion map and reports
   an error if it's bad.  CID 185288.

 - avoid discarding the value of i_io_getc() when scanning numbers in
   pnm.c.  CID 185293.

 - handle failure to clone the log filehandle when cloning the Imager
   context object on thread creation.  CID 185294.

 - fix an unsigned comparison when converting character code to a
   glyph index with a NULL character map when calculating the glyph
   for display for FT1.  This should be rare.  CID 185297.

 - fix a similar bug when calculating whether a glyph is present for
   has_chars() for FT1.  CID 185302.

 - i_img_info() (C API) no longer tries to handle a NULL image object
   pointer.  CID 185298.

 - re-work testing for size_t overflow for circle/random
   super-sampling for fountain fills.  CID 185304.

 - don't check if the unsigned size passed to Imager's malloc wrapper
   (mymalloc) is negative.  Left from when that parameter was signed.
   CID 185305.

 - make some types larger and add a cast to prevent integer overflows
   when calculating a palette with median cut for extraordinarily
   large images.  CID 185306.

 - don't check if the unsigned size supplied to
   im_set_image_file_limits() is negative.  CID 185307.

[1] The first two build submissions ended up at the end of a ~400 item
build queue, and seemed to have been cancelled by Coverity.  A build
submitted on NYE went through in minutes.

Imager 1.008 - 31 Dec 2018
============

 - moved EXIF handling from Imager::File::JPEG to core Imager
   This allows file formats that store EXIF data as blobs similarly
   to JPEG to re-use this code. (such as Imager::File::WEBP)

 - added some more file extensions to image file type mappings

 - added add_type_extensions() class method

 - Imager::Files now links to Imager::Install when discussing
   appropriate libraries.
   https://rt.cpan.org/Ticket/Display.html?id=127575

Imager 1.007 - 24 Nov 2018
============

 - add png_compression_level tag for writing PNG files.

 - avoid flooring a second time in matrix transform interpolation.
   https://rt.cpan.org/Ticket/Display.html?id=124001

 - produce v2 metadata.
   Includes change from the ticket and updates to sub-modules.
   https://rt.cpan.org/Ticket/Display.html?id=127216

 - improve error reporting for the polygon() method

To see a diff of this commit:
https://wip.pkgsrc.org/cgi-bin/gitweb.cgi?p=pkgsrc-wip.git;a=commitdiff;h=4df3baf7cef5405b06e1c409f7fa30f52ac36f83

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

diffstat:
 p5-Imager/Makefile | 2 +-
 p5-Imager/distinfo | 8 ++++----
 2 files changed, 5 insertions(+), 5 deletions(-)

diffs:
diff --git a/p5-Imager/Makefile b/p5-Imager/Makefile
index c0f62a4f80..a330cf8f79 100644
--- a/p5-Imager/Makefile
+++ b/p5-Imager/Makefile
@@ -1,6 +1,6 @@
 # $NetBSD: Makefile,v 1.15 2015/07/14 15:45:29 fhajny Exp $
 
-DISTNAME=		Imager-1.006
+DISTNAME=		Imager-1.012
 PKGNAME=		p5-${DISTNAME}
 CATEGORIES=		graphics perl5
 MASTER_SITES=		${MASTER_SITE_PERL_CPAN:=Imager/}
diff --git a/p5-Imager/distinfo b/p5-Imager/distinfo
index 38beb415ae..ea3fc373d6 100644
--- a/p5-Imager/distinfo
+++ b/p5-Imager/distinfo
@@ -1,6 +1,6 @@
 $NetBSD: distinfo,v 1.7 2015/07/14 15:45:29 fhajny Exp $
 
-SHA1 (Imager-1.006.tar.gz) = 4ef06a5769718e34d47f4500cbff492a41e36b93
-RMD160 (Imager-1.006.tar.gz) = 4bb856a29e3010283d07fa0ca36e6e08fa395143
-SHA512 (Imager-1.006.tar.gz) = 53e1044fd13c0f2da61159c8ba08b0e5ab70b7da2abac70c420de95bdf64dd37cd9cd82534d4038b21c43867845a63fe74367bf7a1cdb0ff56df52f61c58c887
-Size (Imager-1.006.tar.gz) = 1230141 bytes
+SHA1 (Imager-1.012.tar.gz) = 446763e19e708cd2f360eaa0dbca3db630abdc59
+RMD160 (Imager-1.012.tar.gz) = f66590e227ad3d37557c76dcc835ee4008ef8be4
+SHA512 (Imager-1.012.tar.gz) = dba16affc7cd0277fd1af72b767e21555fb39f7d8a73ea2485065ede5b67b77c0ec8145329207cfa5a6034f9387a1de4acbf5061fb3a3ea1b23dd4231b920261
+Size (Imager-1.012.tar.gz) = 1242653 bytes
Prev by Date: p5-File-Map: update to 0.67.
Next by Date: p5-FFI-Platypus: update to 1.31.
Previous by Thread: p5-File-Map: update to 0.67.
Next by Thread: p5-FFI-Platypus: update to 1.31.
Indexes:
Home | Main Index | Thread Index | Old Index