FreeBSD Bugzilla – Attachment 227749 Details for
Bug 258354
graphics/libpano13: Update to 2.9.20
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
graphics/libpano13: update to 2.9.20
0002-graphics-libpano13-update-to-2.9.20.patch (text/plain), 2.98 KB, created by
Robert Clausecker
on 2021-09-07 22:16:35 UTC
(
hide
)
Description:
graphics/libpano13: update to 2.9.20
Filename:
MIME Type:
Creator:
Robert Clausecker
Created:
2021-09-07 22:16:35 UTC
Size:
2.98 KB
patch
obsolete
>From 8c8523ea623cd09f515cc0598caeecd78f9143c4 Mon Sep 17 00:00:00 2001 >From: Robert Clausecker <fuz@fuz.su> >Date: Tue, 7 Sep 2021 15:10:42 +0200 >Subject: [PATCH 2/3] graphics/libpano13: update to 2.9.20 > >--- > graphics/libpano13/Makefile | 7 +++---- > graphics/libpano13/distinfo | 5 +++-- > security/vuxml/vuln-2021.xml | 26 ++++++++++++++++++++++++++ > 3 files changed, 32 insertions(+), 6 deletions(-) > >diff --git a/graphics/libpano13/Makefile b/graphics/libpano13/Makefile >index d924cb43954a..cc80d573882e 100644 >--- a/graphics/libpano13/Makefile >+++ b/graphics/libpano13/Makefile >@@ -1,12 +1,11 @@ > # Created by: Vasil Dimov <vd@FreeBSD.org> > > PORTNAME= libpano13 >-PORTVERSION= 2.9.19 >-PORTREVISION= 1 >+PORTVERSION= 2.9.20 > CATEGORIES= graphics java > MASTER_SITES= SF/panotools/${PORTNAME}/${PORTNAME}-${PORTVERSION} > >-MAINTAINER= ports@FreeBSD.org >+MAINTAINER= fuz@fuz.su > COMMENT= Cross-platform library behind Panorama Tools and other photo stitchers > > LICENSE= GPLv2+ >@@ -15,9 +14,9 @@ LICENSE_FILE= ${WRKSRC}/COPYING > LIB_DEPENDS= libpng.so:graphics/png \ > libtiff.so:graphics/tiff > >+USES= autoreconf gnome jpeg libtool pathfix > USE_GNOME= gtk20 glib20 pango atk > >-USES= autoreconf gnome jpeg libtool pathfix > GNU_CONFIGURE= yes > CPPFLAGS+= -I${LOCALBASE}/include/gtk-2.0 \ > -I${LOCALBASE}/include/glib-2.0 \ >diff --git a/graphics/libpano13/distinfo b/graphics/libpano13/distinfo >index 9e795421d8ea..4178d274f261 100644 >--- a/graphics/libpano13/distinfo >+++ b/graphics/libpano13/distinfo >@@ -1,2 +1,3 @@ >-SHA256 (libpano13-2.9.19.tar.gz) = 037357383978341dea8f572a5d2a0876c5ab0a83dffda431bd393357e91d95a8 >-SIZE (libpano13-2.9.19.tar.gz) = 3527845 >+TIMESTAMP = 1631016195 >+SHA256 (libpano13-2.9.20.tar.gz) = 3b532836c37b8cd75cd2227fd9207f7aca3fdcbbd1cce3b9749f056a10229b89 >+SIZE (libpano13-2.9.20.tar.gz) = 3564544 >diff --git a/security/vuxml/vuln-2021.xml b/security/vuxml/vuln-2021.xml >index 09525e60d803..669af439620f 100644 >--- a/security/vuxml/vuln-2021.xml >+++ b/security/vuxml/vuln-2021.xml >@@ -1,3 +1,29 @@ >+ <vuln vid="15e74795-0fd7-11ec-9f2e-dca632b19f10"> >+ <topic>libpano13 -- arbitrary memory access through format string vulnerability</topic> >+ <affects> >+ <package> >+ <name>libpano13</name> >+ <range><lt>2.9.20</lt></range> >+ </package> >+ </affects> >+ <description> >+ <body xmlns="http://www.w3.org/1999/xhtml"> >+ <p>libpano13-2.9.20 release notes state:</p> >+ <blockquote cite="https://sourceforge.net/projects/panotools/files/libpano13/libpano13-2.9.20/README.txt"> >+ <p>Fix crash and security issue caused by malformed filename prefix</p> >+ </blockquote> >+ </body> >+ </description> >+ <references> >+ <cvename>CVE-2021-20307</cvename> >+ <url>https://nvd.nist.gov/vuln/detail/CVE-2021-20307</url> >+ </references> >+ <dates> >+ <discovery>2021-05-04</discovery> >+ <entry>2021-09-07</entry> >+ </dates> >+ </vuln> >+ > <vuln vid="0e561173-0fa9-11ec-a2fa-080027948c12"> > <topic>Python -- multiple vulnerabilities</topic> > <affects> >-- >2.32.0 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=227749">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 258354
:
227749
|
227857