View | Details | Raw Unified | Return to bug 200980 | Differences between
and this patch

Collapse All | Expand All

(-)lang/chicken/Makefile (-6 / +11 lines)
Lines 2-11 Link Here
2
# $FreeBSD$
2
# $FreeBSD$
3
3
4
PORTNAME=	chicken
4
PORTNAME=	chicken
5
PORTVERSION=	4.9.0.1
5
PORTVERSION=	4.10.0rc1
6
PORTREVISION=	1
7
CATEGORIES=	lang scheme
6
CATEGORIES=	lang scheme
8
MASTER_SITES=	http://code.call-cc.org/releases/4.9.0/
7
MASTER_SITES=	http://code.call-cc.org/dev-snapshots/2015/06/07/
9
8
10
MAINTAINER=	vmagerya@gmail.com
9
MAINTAINER=	vmagerya@gmail.com
11
COMMENT=	Scheme-to-C compiler
10
COMMENT=	Scheme-to-C compiler
Lines 14-25 Link Here
14
CPE_VENDOR=	call-cc
13
CPE_VENDOR=	call-cc
15
MAKEFILE=	GNUmakefile
14
MAKEFILE=	GNUmakefile
16
USE_LDCONFIG=	yes
15
USE_LDCONFIG=	yes
17
MAKE_ARGS+=	PLATFORM=bsd PREFIX=${PREFIX} \
16
MAKE_ARGS+=	PLATFORM=bsd \
18
		TOPMANDIR=${PREFIX}/man ARCH=${NEW_ARCH} \
17
		PREFIX=${PREFIX} \
18
		MANDIR=${PREFIX}/man \
19
		LIBDIR="${PREFIX}/lib" \
20
		DOCDIR="${DOCSDIR}" \
21
		ARCH=${NEW_ARCH} \
19
		C_COMPILER="${CC}" \
22
		C_COMPILER="${CC}" \
20
		CXX_COMPILER="${CXX}" \
23
		CXX_COMPILER="${CXX}" \
21
		LIBRARIAN="${AR}" \
24
		LIBRARIAN="${AR}" \
22
		DOCDIR="${DOCSDIR}" \
23
		C_COMPILER_OPTIMIZATION_OPTIONS="${CFLAGS}"
25
		C_COMPILER_OPTIMIZATION_OPTIONS="${CFLAGS}"
24
26
25
NEW_ARCH=	${ARCH:S/i386/x86/:S/amd64/x86-64/}
27
NEW_ARCH=	${ARCH:S/i386/x86/:S/amd64/x86-64/}
Lines 34-39 Link Here
34
36
35
post-install:
37
post-install:
36
	${INSTALL_DATA} ${WRKSRC}/NEWS ${STAGEDIR}${DOCSDIR}
38
	${INSTALL_DATA} ${WRKSRC}/NEWS ${STAGEDIR}${DOCSDIR}
39
	${STRIP_CMD} ${STAGEDIR}${PREFIX}/bin/*
40
	${STRIP_CMD} ${STAGEDIR}${PREFIX}/lib/chicken/7/*.so
41
	${STRIP_CMD} ${STAGEDIR}${PREFIX}/lib/libchicken*
37
42
38
# This only works *after* chicken is installed.
43
# This only works *after* chicken is installed.
39
regression-test: build
44
regression-test: build
(-)lang/chicken/distinfo (-2 / +2 lines)
Lines 1-2 Link Here
1
SHA256 (chicken-4.9.0.1.tar.gz) = 04df7c439c36fc16446bdfa186e7a70258f911d2d826b5216a8e6b1cb2aa2815
1
SHA256 (chicken-4.10.0rc1.tar.gz) = b5cc7c2d270d11f56a52da1b78950ada27d9bce2496b8ba230542d104b5477f0
2
SIZE (chicken-4.9.0.1.tar.gz) = 4023371
2
SIZE (chicken-4.10.0rc1.tar.gz) = 4033834
(-)security/vuxml/vuln.xml (+33 lines)
Lines 57-62 Link Here
57
57
58
-->
58
-->
59
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
59
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
60
  <vuln vid="e7b7f2b5-177a-11e5-ad33-f8d111029e6a">
61
    <topic>chicken -- Potential buffer overrun in string-translate*</topic>
62
    <affects>
63
      <package>
64
	<name>chicken</name>
65
	<range><lt>4.10.0rc1</lt></range>
66
      </package>
67
    </affects>
68
    <description>
69
      <body xmlns="http://www.w3.org/1999/xhtml">
70
	<p>chicken developer Peter Bex reports:</p>
71
	<blockquote cite="http://lists.nongnu.org/archive/html/chicken-announce/2015-06/msg00010.html">
72
	  <p>Using gcc's Address Sanitizer, it was discovered that the string-translate*
73
	    procedure from the data-structures unit can scan beyond the input string's
74
	    length up to the length of the source strings in the map that's passed to
75
	    string-translate*.	This issue was fixed in master 8a46020, and it will
76
	    make its way into CHICKEN 4.10.</p>
77
78
	  <p>This bug is present in all released versions of CHICKEN.</p>
79
	</blockquote>
80
      </body>
81
    </description>
82
    <references>
83
      <cvename>CVE-2015-4556</cvename>
84
      <mlist>http://lists.nongnu.org/archive/html/chicken-announce/2015-06/msg00010.html</mlist>
85
      <mlist>http://lists.nongnu.org/archive/html/chicken-hackers/2015-06/msg00037.html</mlist>
86
    </references>
87
    <dates>
88
      <discovery>2010-09-15</discovery>
89
      <entry>2015-06-20</entry>
90
    </dates>
91
  </vuln>
92
60
  <vuln vid="968d1e74-1740-11e5-a643-40a8f0757fb4">
93
  <vuln vid="968d1e74-1740-11e5-a643-40a8f0757fb4">
61
    <topic>p5-Dancer -- possible to abuse session cookie values</topic>
94
    <topic>p5-Dancer -- possible to abuse session cookie values</topic>
62
    <affects>
95
    <affects>

Return to bug 200980