@@ -, +, @@ --- graphics/libpano13/Makefile | 7 +++---- graphics/libpano13/distinfo | 5 +++-- security/vuxml/vuln-2021.xml | 26 ++++++++++++++++++++++++++ 3 files changed, 32 insertions(+), 6 deletions(-) --- b/graphics/libpano13/Makefile +++ b/graphics/libpano13/Makefile @@ -1,12 +1,11 @@ # Created by: Vasil Dimov PORTNAME= libpano13 -PORTVERSION= 2.9.19 -PORTREVISION= 1 +PORTVERSION= 2.9.20 CATEGORIES= graphics java MASTER_SITES= SF/panotools/${PORTNAME}/${PORTNAME}-${PORTVERSION} -MAINTAINER= ports@FreeBSD.org +MAINTAINER= fuz@fuz.su COMMENT= Cross-platform library behind Panorama Tools and other photo stitchers LICENSE= GPLv2+ @@ -15,9 +14,9 @@ LICENSE_FILE= ${WRKSRC}/COPYING LIB_DEPENDS= libpng.so:graphics/png \ libtiff.so:graphics/tiff +USES= autoreconf gnome jpeg libtool pathfix USE_GNOME= gtk20 glib20 pango atk -USES= autoreconf gnome jpeg libtool pathfix GNU_CONFIGURE= yes CPPFLAGS+= -I${LOCALBASE}/include/gtk-2.0 \ -I${LOCALBASE}/include/glib-2.0 \ --- b/graphics/libpano13/distinfo +++ b/graphics/libpano13/distinfo @@ -1,2 +1,3 @@ -SHA256 (libpano13-2.9.19.tar.gz) = 037357383978341dea8f572a5d2a0876c5ab0a83dffda431bd393357e91d95a8 -SIZE (libpano13-2.9.19.tar.gz) = 3527845 +TIMESTAMP = 1631016195 +SHA256 (libpano13-2.9.20.tar.gz) = 3b532836c37b8cd75cd2227fd9207f7aca3fdcbbd1cce3b9749f056a10229b89 +SIZE (libpano13-2.9.20.tar.gz) = 3564544 --- b/security/vuxml/vuln-2021.xml +++ b/security/vuxml/vuln-2021.xml @@ -1,3 +1,29 @@ + + libpano13 -- arbitrary memory access through format string vulnerability + + + libpano13 + 2.9.20 + + + + +

libpano13-2.9.20 release notes state:

+
Fix crash and security issue caused by malformed filename prefix
+

+ + + + CVE-2021-20307 + https://nvd.nist.gov/vuln/detail/CVE-2021-20307 + + + 2021-05-04 + 2021-09-07 + + + Python -- multiple vulnerabilities --