Summary: | [exp-run] devel/json-c: Update to 0.14 | ||
---|---|---|---|
Product: | Ports & Packages | Reporter: | Po-Chuan Hsieh <sunpoet> |
Component: | Ports Framework | Assignee: | Po-Chuan Hsieh <sunpoet> |
Status: | Closed FIXED | ||
Severity: | Affects Only Me | CC: | diizzy, i.dani, info, leres, mandree, pascal.christen, ports-bugs |
Priority: | --- | Flags: | info:
merge-quarterly?
antoine: exp-run+ |
Version: | Latest | ||
Hardware: | Any | ||
OS: | Any | ||
URL: | https://people.FreeBSD.org/~sunpoet/patch/devel-json-c-v3.txt | ||
Bug Depends on: | |||
Bug Blocks: | 246145, 247089 |
Description
Po-Chuan Hsieh
2020-05-11 20:36:30 UTC
Hi, I have a PR about this which retains test target and also fixes a bug (PR 585) as include/json-c/config.h shouldn't be installed. https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=246145 Best regards, Daniel I've updated my PR to fix https://nvd.nist.gov/vuln/detail/CVE-2020-12762 Patch updated with more patches from upstream for security fix, bug fix and static library. Please use this one instead. Thanks! Some new failures on 11.3 i386: http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/frr5-5.0.2_3.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/frr6-6.0.2_4.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/frr7-7.3_1.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/zmap-2.1.1_2.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/libu2f-host-1.1.10.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/razorback-api-0.5.0_7.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/ykpers-1.19.0.log http://package23.nyi.freebsd.org/data/113i386-default-PR244008/2020-05-12_16h04m39s/logs/newsboat-2.19_1.log Patch updated with fixes. Thanks! A commit references this bug: Author: sunpoet Date: Sun May 17 20:18:32 UTC 2020 New revision: 535672 URL: https://svnweb.freebsd.org/changeset/ports/535672 Log: Update json-c vulnerability - While I'm here, fix format json-c 0.14 will land the ports tree along with the fix, thus I change it to 0.14. PR: 246389 Changes: head/security/vuxml/vuln.xml (In reply to Sunpoet Po-Chuan Hsieh from comment #5) Hey Sunpoet, any plan when this will land? Thanks for a fast commit! Bump - it would be really appreciated if this could be pushed a bit as this is security relevant! Thanks! Exp-run looks fine A commit references this bug: Author: sunpoet Date: Thu May 21 20:46:08 UTC 2020 New revision: 536171 URL: https://svnweb.freebsd.org/changeset/ports/536171 Log: Update to 0.14 Changes: https://github.com/json-c/json-c/blob/master/ChangeLog PR: 246389 Exp-run by: antoine Changes: head/devel/json-c/Makefile head/devel/json-c/distinfo head/devel/json-c/files/patch-CMakeLists.txt head/devel/json-c/files/patch-arraylist.c head/devel/json-c/files/patch-json_object.c head/devel/json-c/files/patch-linkhash.c head/devel/json-c/files/patch-printbuf.c head/devel/json-c/files/patch-tests-test_parse.c head/devel/json-c/pkg-plist Committed. Thanks! |