cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
132,336 Commits 1 Branch 0 Tags
Commit Graph

94 Commits

Author SHA1 Message Date
ajacoutot
cbe7a68a39 PORTROACH: ignore version gd-2.2.5. 2018-06-24 12:22:51 +00:00
sthen
b9064dc0ff Handle pthread-stubs removal. 2017-10-23 17:10:49 +00:00
sthen
73457b1982 update to libgd-2.2.5 
### Security
- Double-free in gdImagePngPtr(). (CVE-2017-6362)
- Buffer over-read into uninitialized memory. (CVE-2017-7890)

### Fixed
- Fix #109: XBM reading fails with printed error
- Fix #338: Fatal and normal libjpeg/ibpng errors not distinguishable
- Fix #357: 2.2.4: Segfault in test suite
- Fix #386: gdImageGrayScale() may produce colors
- Fix #406: webpng -i removes the transparent color
- Fix Coverity #155475: Failure to restore alphaBlendingFlag
- Fix Coverity #155476: potential resource leak
- Fix several build issues and test failures
- Fix and reenable optimized support for reading 1 bps TIFFs
 2017-08-31 16:35:44 +00:00
sthen
5e964ab0df bump LIBCXX/LIBECXX/COMPILER_LIBCXX ports. 2017-07-26 22:45:14 +00:00
espie
8ac47fd9c6 use COMPILER_LIBCXX where applicable 2017-07-16 19:18:47 +00:00
rsadowski
31661be5f3 update to gd-2.2.4 
SECURITY fix for:
CVE-2016-9317,CVE-2016-6912,CVE-2016-10166,CVE-2016-10167,
CVE-2016-5767,CVE-2016-10168,CVE-2015-8874,CVE-2016-9933

Initial diff from me, diff to replace multimedia/libvpx with
graphics/libwebp from Brad Smith

ok sthen@, "looks okay" @landry
 2017-05-15 19:54:22 +00:00
sthen
bcbf44ab87 use LIBCXX 2017-04-10 11:46:18 +00:00
naddy
6ba202c932 replace libiconv module 2016-09-13 15:29:01 +00:00
jasper
39fb0257fc Fix for CVE-2016-6161; from upstream 2016-07-06 08:46:01 +00:00
jasper
8670738917 Security fix for CVE-2016-6128 (libgd does not properly handle invalid color 
index which could lead to a denial of service against applications using the
libgd library).
 2016-06-30 13:27:42 +00:00
ajacoutot
bee4ca34e8 SECURITY: gd2: handle corrupt images better (CVE-2016-3074) 
from Brad
 2016-05-09 06:29:18 +00:00
sthen
2f7f96c6e6 ENOTENOUGHCOFFEE: actually bump gd's shared library minor like I intended to. 2015-11-14 12:54:19 +00:00
sthen
20fe3432e7 remove SEPARATE_BUILD that I added in previous commit, build is ok with it 
but tests don't find a .h
 2015-11-14 12:45:46 +00:00
sthen
e7bd8a49fa update to gd-2.1.1, based on a diff from Rafael Sadowski 2015-11-14 12:41:53 +00:00
sthen
d8e24bbded sync WANTLIB 2015-08-17 19:52:39 +00:00
ajacoutot
a183b75553 "/usr/local/lib/pkgconfig/" is part of mtree(8). 
Packages should not own this dir to prevent its deletion or a warning that it
cannot be removed because it's not empty at pkg_delete(1) time.
 2015-05-22 11:31:10 +00:00
sthen
39a87c3390 Allow gd to build with newer libvpx, from Brad. 2015-04-18 09:16:36 +00:00
jasper
1d65bb8554 Security fix for CVE-2014-9709, gd: buffer read overflow in gd_gif_in.c 
php-gd was already fixed
 2015-03-26 09:16:31 +00:00
sthen
438db325ad update to libgd 2.1.0; ok brad@. wantlib syncs to follow. 2014-03-17 23:20:57 +00:00
ajacoutot
58f1a6f9f6 USE_LIBTOOL=Yes is the default now. 2013-03-21 08:45:11 +00:00
espie
e4fa65e765 PERMIT_* / REGRESS -> TEST sweep 2013-03-11 11:10:51 +00:00
sthen
6eacdb91e8 bump various packages with static libs which frequently get pulled in; 
this is to force pkg_add -u to pick them up because moving to PIE does change
these files but since there are no library bumps, the package signature stays
the same.

there are probably others, these are just ones I've run into. not a great
fix, and needs to be repeated when other arch move, but it's the simplest low
impact fix and I'm fed up with "relocation R_X86_64_32S can not be used
when making a shared object; recompile with -fPIC"
 2012-10-12 14:53:39 +00:00
espie
88d20077a4 new depends 2010-11-17 08:05:12 +00:00
ajacoutot
ff07e285bc Remove USE_X11. 2010-10-24 20:58:58 +00:00
naddy
3d990673e6 * fix timestamps to prevent autotools cascade from triggering 
* switch to REVISION and new LIB_DEPENDS/WANTLIB while here
 2010-09-27 19:54:28 +00:00
naddy
8d07663180 remove -Lxxx/.libs workarounds required with GNU libtool 2010-09-26 13:40:11 +00:00
jasper
023b5d3d20 SECURITY FIX for CVE-2009-3546 
buffer overflow or buffer over-read attacks via a crafted GD file
 2010-01-04 15:05:49 +00:00
simon
68a2007cc1 remove surrounding quotes from COMMENT/BROKEN/PERMIT_* 2007-09-15 20:09:40 +00:00
steven
d6995d6f70 update to 2.0.35 
ok simon@
 2007-07-02 10:46:04 +00:00
rui
b9d6e0e5b4 roll in a distribution patch which fixes: 
CVE-2007-2756 gdPngReadData function allows user-assisted attackers to cause a denial of service
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2756

ok naddy@
 2007-05-31 18:32:06 +00:00
sturm
a11f08faad fix WANTLIB after switch to xenocara 2007-04-08 15:31:01 +00:00
espie
9eafbbfb35 base64 checksums. 2007-04-05 16:19:55 +00:00
bernd
83202226e6 Security update to gd-2.0.34. (CVE-2007-0455) 
This update fixes multiple security vulnerabilities.

More info:
http://www.libgd.org/ReleaseNote020034
http://secunia.com/advisories/23916/

Tested in a bulk build by steven@. Thanks!

ok espie@
 2007-02-17 16:30:11 +00:00
espie
367a30f74c more new lib specs 2006-08-02 10:10:35 +00:00
bernd
6cb9a7ea81 Security fix for gd-2.0.33. (CVE-2006-2906) 
Fixes an infinite loop error within the handling of GIF images.

Detailed information: http://secunia.com/advisories/20500/

Fix from Xavier Roche via Ubuntu via NetBSD

ok naddy@
 2006-06-15 22:18:25 +00:00
steven
928e3c9466 remove MODGNU_SHARED_LIBS, LIBname_ALIAS and related patches 2006-01-08 01:38:36 +00:00
steven
112cc21528 SHARED_LIBS 2005-12-26 14:40:13 +00:00
fgsch
b4aa799d4b try again: remove ttf, X11, Xpm and pthreads dependencies. 
use libtool, from bernd@.
sturm@ ok.
 2005-10-24 05:02:40 +00:00
fgsch
ab7d19441b revert ttf removal until all the gd ports that depend on it are also 
aware of this. report by sturm@. sorry about this.
 2005-10-16 16:48:14 +00:00
fgsch
c997e6d13b remove ttf from dependencies; pointed out by patrick 
(sidsrr at yahoo dot com).
 2005-10-13 06:55:22 +00:00
fgsch
460ce94c0a update to gd 2.0.33; brings gif back between many other things. 
reviewed by several ppl, many thanks.
 2005-10-12 05:37:43 +00:00
naddy
a8817eabcc SIZE 2005-01-05 16:50:35 +00:00
espie
8f74a67bd1 WANTLIB markers 2004-11-30 01:06:33 +00:00
espie
6ad2640218 new plists 2004-09-15 00:46:07 +00:00
naddy
2276d3b230 remove WWW lines 2003-12-15 21:42:08 +00:00
espie
338b4b5036 move freetype1 includes in a separate subdirectory. 2003-04-19 13:30:47 +00:00
fgsch
dbbbdb40da guess what? more NEED_VERSION rm. 2002-12-29 20:08:46 +00:00
brad
0212f79760 png header path change 2002-04-26 14:48:19 +00:00
brad
c148a6e2fe rip out no_x11 FLAVOR and make it the default. 2002-03-25 14:52:21 +00:00
brad
abce87cc8e - bump NEED_VERSION 
- rename checksums file
- add regress
 2002-02-03 19:45:46 +00:00