head 1.2; access; symbols pkgsrc-2013Q2:1.2.0.8 pkgsrc-2013Q2-base:1.2 pkgsrc-2012Q4:1.2.0.6 pkgsrc-2012Q4-base:1.2 pkgsrc-2011Q4:1.2.0.4 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q2:1.2.0.2 pkgsrc-2011Q2-base:1.2 pkgsrc-2010Q1:1.1.0.4 pkgsrc-2010Q1-base:1.1 pkgsrc-2009Q4:1.1.0.2; locks; strict; comment @# @; 1.2 date 2010.05.31.17.57.37; author drochner; state dead; branches; next 1.1; 1.1 date 2010.03.27.15.59.34; author taca; state Exp; branches 1.1.2.1; next ; 1.1.2.1 date 2010.03.27.15.59.34; author tron; state dead; branches; next 1.1.2.2; 1.1.2.2 date 2010.03.27.17.51.38; author tron; state Exp; branches; next ; desc @@ 1.2 log @update to 1.28.0 this switches to the gnome-2.30 branch @ text @$NetBSD: patch-am,v 1.1 2010/03/27 15:59:34 taca Exp $ Fix for CVE-2010-0421. --- pango/opentype/hb-ot-layout.cc.orig 2009-11-26 00:44:17.000000000 +0000 +++ pango/opentype/hb-ot-layout.cc @@@@ -44,6 +44,8 @@@@ _hb_ot_layout_init (hb_face_t *face) { hb_ot_layout_t *layout = &face->ot_layout; + memset (layout, 0, sizeof (*layout)); + layout->gdef_blob = Sanitizer::sanitize (hb_face_get_table (face, HB_OT_TAG_GDEF)); layout->gdef = &Sanitizer::lock_instance (layout->gdef_blob); @@@@ -293,7 +295,7 @@@@ hb_ot_layout_build_glyph_classes (hb_fac return; if (layout->new_gdef.len == 0) { - layout->new_gdef.klasses = (unsigned char *) calloc (num_total_glyphs, sizeof (unsigned char)); + layout->new_gdef.klasses = (unsigned char *) calloc (count, sizeof (unsigned char)); layout->new_gdef.len = count; } @ 1.1 log @Add a patch to fix CVE-2010-0421, DoS security fix. Bump PKGREVISION. @ text @d1 1 a1 1 $NetBSD$ @ 1.1.2.1 log @file patch-am was added on branch pkgsrc-2009Q4 on 2010-03-27 17:51:38 +0000 @ text @d1 24 @ 1.1.2.2 log @Pullup ticket #3066 - requested by taca pango: security patch Revisions pulled up: - devel/pango/Makefile 1.140-1.141 - devel/pango/distinfo 1.82-1.83 - devel/pango/patches/patch-ae 1.5 - devel/pango/patches/patch-am 1.1 --- Module Name: pkgsrc Committed By: tron Date: Sun Feb 21 23:51:26 UTC 2010 Modified Files: pkgsrc/devel/pango: Makefile distinfo pkgsrc/devel/pango/patches: patch-ae Log Message: Change very questionable C++ code slightly to avoid high CPU usage under Mac OS X. (see https://bugzilla.gnome.org/show_bug.cgi?id=593240 for more details). Tested with XChat and Wireshark under Mac OS 10.6.2 and NetBSD/amd64 5.0_STABLE. --- Module Name: pkgsrc Committed By: taca Date: Sat Mar 27 15:59:34 UTC 2010 Modified Files: pkgsrc/devel/pango: Makefile distinfo Added Files: pkgsrc/devel/pango/patches: patch-am Log Message: Add a patch to fix CVE-2010-0421, DoS security fix. Bump PKGREVISION. @ text @a0 24 $NetBSD: patch-am,v 1.1 2010/03/27 15:59:34 taca Exp $ Fix for CVE-2010-0421. --- pango/opentype/hb-ot-layout.cc.orig 2009-11-26 00:44:17.000000000 +0000 +++ pango/opentype/hb-ot-layout.cc @@@@ -44,6 +44,8 @@@@ _hb_ot_layout_init (hb_face_t *face) { hb_ot_layout_t *layout = &face->ot_layout; + memset (layout, 0, sizeof (*layout)); + layout->gdef_blob = Sanitizer::sanitize (hb_face_get_table (face, HB_OT_TAG_GDEF)); layout->gdef = &Sanitizer::lock_instance (layout->gdef_blob); @@@@ -293,7 +295,7 @@@@ hb_ot_layout_build_glyph_classes (hb_fac return; if (layout->new_gdef.len == 0) { - layout->new_gdef.klasses = (unsigned char *) calloc (num_total_glyphs, sizeof (unsigned char)); + layout->new_gdef.klasses = (unsigned char *) calloc (count, sizeof (unsigned char)); layout->new_gdef.len = count; } @