According to http://www.FreeBSD.org/ports/portaudit/4cb9c513-03ef-11dc-a51d-0019b95d4f14.html a DoS was discovered in the libpng code. New libpng 1.2.17 is out and http://www.mirrorservice.org/sites/download.sourceforge.net/pub/sourceforge/l/li/libpng/libpng-1.2.17-ADVISORY.txt says that the 1.2.17 had received the fix. Fix: The quick patch that has no new features, but just updates the port and fixes its compilation follows. The patch files/patch-ae fixes the very strange code at the pnggccrd.c that I can classify only as incorrect. It is very strange to see it in the release: sources just should not compile. How-To-Repeat: Look at the above URLs.
Responsible Changed From-To: freebsd-ports-bugs->ache Over to maintainer
Thu, May 17, 2007 at 07:00:11AM +0000, FreeBSD-gnats-submit@FreeBSD.org wrote: > Thank you very much for your problem report. > It has the internal identification `ports/112728'. > The individual assigned to look at your > report is: freebsd-ports-bugs. > > You can access the state of your problem report at any time > via this link: > > http://www.freebsd.org/cgi/query-pr.cgi?pr=112728 Seems like this PR is outdated by ports/112725. Moving the discuission there. This PR can be safely closed, sorry for the noise. -- Eygene
State Changed From-To: open->closed See ports/112725.