head 1.2; access; symbols pkgsrc-2026Q1:1.2.0.176 pkgsrc-2026Q1-base:1.2 pkgsrc-2025Q4:1.2.0.174 pkgsrc-2025Q4-base:1.2 pkgsrc-2025Q3:1.2.0.172 pkgsrc-2025Q3-base:1.2 pkgsrc-2025Q2:1.2.0.170 pkgsrc-2025Q2-base:1.2 pkgsrc-2025Q1:1.2.0.168 pkgsrc-2025Q1-base:1.2 pkgsrc-2024Q4:1.2.0.166 pkgsrc-2024Q4-base:1.2 pkgsrc-2024Q3:1.2.0.164 pkgsrc-2024Q3-base:1.2 pkgsrc-2024Q2:1.2.0.162 pkgsrc-2024Q2-base:1.2 pkgsrc-2024Q1:1.2.0.160 pkgsrc-2024Q1-base:1.2 pkgsrc-2023Q4:1.2.0.158 pkgsrc-2023Q4-base:1.2 pkgsrc-2023Q3:1.2.0.156 pkgsrc-2023Q3-base:1.2 pkgsrc-2023Q2:1.2.0.154 pkgsrc-2023Q2-base:1.2 pkgsrc-2023Q1:1.2.0.152 pkgsrc-2023Q1-base:1.2 pkgsrc-2022Q4:1.2.0.150 pkgsrc-2022Q4-base:1.2 pkgsrc-2022Q3:1.2.0.148 pkgsrc-2022Q3-base:1.2 pkgsrc-2022Q2:1.2.0.146 pkgsrc-2022Q2-base:1.2 pkgsrc-2022Q1:1.2.0.144 pkgsrc-2022Q1-base:1.2 pkgsrc-2021Q4:1.2.0.142 pkgsrc-2021Q4-base:1.2 pkgsrc-2021Q3:1.2.0.140 pkgsrc-2021Q3-base:1.2 pkgsrc-2021Q2:1.2.0.138 pkgsrc-2021Q2-base:1.2 pkgsrc-2021Q1:1.2.0.136 pkgsrc-2021Q1-base:1.2 pkgsrc-2020Q4:1.2.0.134 pkgsrc-2020Q4-base:1.2 pkgsrc-2020Q3:1.2.0.132 pkgsrc-2020Q3-base:1.2 pkgsrc-2020Q2:1.2.0.128 pkgsrc-2020Q2-base:1.2 pkgsrc-2020Q1:1.2.0.108 pkgsrc-2020Q1-base:1.2 pkgsrc-2019Q4:1.2.0.130 pkgsrc-2019Q4-base:1.2 pkgsrc-2019Q3:1.2.0.126 pkgsrc-2019Q3-base:1.2 pkgsrc-2019Q2:1.2.0.124 pkgsrc-2019Q2-base:1.2 pkgsrc-2019Q1:1.2.0.122 pkgsrc-2019Q1-base:1.2 pkgsrc-2018Q4:1.2.0.120 pkgsrc-2018Q4-base:1.2 pkgsrc-2018Q3:1.2.0.118 pkgsrc-2018Q3-base:1.2 pkgsrc-2018Q2:1.2.0.116 pkgsrc-2018Q2-base:1.2 pkgsrc-2018Q1:1.2.0.114 pkgsrc-2018Q1-base:1.2 pkgsrc-2017Q4:1.2.0.112 pkgsrc-2017Q4-base:1.2 pkgsrc-2017Q3:1.2.0.110 pkgsrc-2017Q3-base:1.2 pkgsrc-2017Q2:1.2.0.106 pkgsrc-2017Q2-base:1.2 pkgsrc-2017Q1:1.2.0.104 pkgsrc-2017Q1-base:1.2 pkgsrc-2016Q4:1.2.0.102 pkgsrc-2016Q4-base:1.2 pkgsrc-2016Q3:1.2.0.100 pkgsrc-2016Q3-base:1.2 pkgsrc-2016Q2:1.2.0.98 pkgsrc-2016Q2-base:1.2 pkgsrc-2016Q1:1.2.0.96 pkgsrc-2016Q1-base:1.2 pkgsrc-2015Q4:1.2.0.94 pkgsrc-2015Q4-base:1.2 pkgsrc-2015Q3:1.2.0.92 pkgsrc-2015Q3-base:1.2 pkgsrc-2015Q2:1.2.0.90 pkgsrc-2015Q2-base:1.2 pkgsrc-2015Q1:1.2.0.88 pkgsrc-2015Q1-base:1.2 pkgsrc-2014Q4:1.2.0.86 pkgsrc-2014Q4-base:1.2 pkgsrc-2014Q3:1.2.0.84 pkgsrc-2014Q3-base:1.2 pkgsrc-2014Q2:1.2.0.82 pkgsrc-2014Q2-base:1.2 pkgsrc-2014Q1:1.2.0.80 pkgsrc-2014Q1-base:1.2 pkgsrc-2013Q4:1.2.0.78 pkgsrc-2013Q4-base:1.2 pkgsrc-2013Q3:1.2.0.76 pkgsrc-2013Q3-base:1.2 pkgsrc-2013Q2:1.2.0.74 pkgsrc-2013Q2-base:1.2 pkgsrc-2013Q1:1.2.0.72 pkgsrc-2013Q1-base:1.2 pkgsrc-2012Q4:1.2.0.70 pkgsrc-2012Q4-base:1.2 pkgsrc-2012Q3:1.2.0.68 pkgsrc-2012Q3-base:1.2 pkgsrc-2012Q2:1.2.0.66 pkgsrc-2012Q2-base:1.2 pkgsrc-2012Q1:1.2.0.64 pkgsrc-2012Q1-base:1.2 pkgsrc-2011Q4:1.2.0.62 pkgsrc-2011Q4-base:1.2 pkgsrc-2011Q3:1.2.0.60 pkgsrc-2011Q3-base:1.2 pkgsrc-2011Q2:1.2.0.58 pkgsrc-2011Q2-base:1.2 pkgsrc-2011Q1:1.2.0.56 pkgsrc-2011Q1-base:1.2 pkgsrc-2010Q4:1.2.0.54 pkgsrc-2010Q4-base:1.2 pkgsrc-2010Q3:1.2.0.52 pkgsrc-2010Q3-base:1.2 pkgsrc-2010Q2:1.2.0.50 pkgsrc-2010Q2-base:1.2 pkgsrc-2010Q1:1.2.0.48 pkgsrc-2010Q1-base:1.2 pkgsrc-2009Q4:1.2.0.46 pkgsrc-2009Q4-base:1.2 pkgsrc-2009Q3:1.2.0.44 pkgsrc-2009Q3-base:1.2 pkgsrc-2009Q2:1.2.0.42 pkgsrc-2009Q2-base:1.2 pkgsrc-2009Q1:1.2.0.40 pkgsrc-2009Q1-base:1.2 pkgsrc-2008Q4:1.2.0.38 pkgsrc-2008Q4-base:1.2 pkgsrc-2008Q3:1.2.0.36 pkgsrc-2008Q3-base:1.2 cube-native-xorg:1.2.0.34 cube-native-xorg-base:1.2 pkgsrc-2008Q2:1.2.0.32 pkgsrc-2008Q2-base:1.2 cwrapper:1.2.0.30 pkgsrc-2008Q1:1.2.0.28 pkgsrc-2008Q1-base:1.2 pkgsrc-2007Q4:1.2.0.26 pkgsrc-2007Q4-base:1.2 pkgsrc-2007Q3:1.2.0.24 pkgsrc-2007Q3-base:1.2 pkgsrc-2007Q2:1.2.0.22 pkgsrc-2007Q2-base:1.2 pkgsrc-2007Q1:1.2.0.20 pkgsrc-2007Q1-base:1.2 pkgsrc-2006Q4:1.2.0.18 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.16 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.14 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.12 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.2.0.10 pkgsrc-2005Q4-base:1.2 pkgsrc-2005Q3:1.2.0.8 pkgsrc-2005Q3-base:1.2 pkgsrc-2005Q2:1.2.0.6 pkgsrc-2005Q2-base:1.2 pkgsrc-2005Q1:1.2.0.4 pkgsrc-2005Q1-base:1.2 pkgsrc-2004Q4:1.2.0.2 pkgsrc-2004Q4-base:1.2 pkgsrc-2004Q3:1.1.0.6 pkgsrc-2004Q3-base:1.1 pkgsrc-2004Q2:1.1.0.4 pkgsrc-2004Q2-base:1.1 pkgsrc-2004Q1:1.1.0.2 pkgsrc-2004Q1-base:1.1; locks; strict; comment @# @; 1.2 date 2004.12.10.09.30.42; author salo; state Exp; branches; next 1.1; 1.1 date 2004.03.13.17.35.54; author cube; state Exp; branches 1.1.6.1; next ; 1.1.6.1 date 2004.12.13.18.03.27; author salo; state Exp; branches; next ; desc @@ 1.2 log @Bump PKGREVISION, security fix: "Multiple buffer overflows in imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to execute arbitrary code via certain image files." (1.9.15 is also affected) http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1026 Patch from Pavel Kankovsky. @ text @$NetBSD$ --- gdk_imlib/io-ppm.c.orig 2002-03-04 18:06:29.000000000 +0100 +++ gdk_imlib/io-ppm.c 2004-12-10 10:00:56.000000000 +0100 @@@@ -50,15 +50,15 @@@@ if (s[0] != '#') { done = 0; - sscanf(s, "%i %i", w, h); + sscanf(s, "%d %d", w, h); a = *w; b = *h; - if (a > 32767) + if (a <= 0 || a > 32767) { fprintf(stderr, "gdk_imlib ERROR: Image width > 32767 pixels for file\n"); return NULL; } - if (b > 32767) + if (b <= 0 || b > 32767) { fprintf(stderr, "gdk_imlib ERROR: Image height > 32767 pixels for file\n"); return NULL; @@@@ -66,7 +66,7 @@@@ if (!bw) { fgets(s, 256, f); - sscanf(s, "%i", &scale); + sscanf(s, "%d", &scale); } else scale = 99999; @ 1.1 log @io-ppm uses '%i' with sscanf in order to parse what should always be a decimal number, according to the specification. As a result, it fails to correctly parse file created with numbers printed with leading 0. Reported and fix provided in PR 24759 by Enami Tsugutomo. @ text @d4 2 a5 2 +++ gdk_imlib/io-ppm.c @@@@ -50,7 +50,7 @@@@ loader_ppm (FILE * f, int *w, int *h, in d13 12 a24 2 if (a > 32767) @@@@ -66,7 +66,7 @@@@ loader_ppm (FILE * f, int *w, int *h, in @ 1.1.6.1 log @Pullup ticket 171 - requested by Havard Eidnes security fix for imlib Module Name: pkgsrc Committed By: tron Date: Sat Nov 27 08:09:38 UTC 2004 Modified Files: pkgsrc/graphics/imlib: Makefile Log Message: Remove me as maintainer of this package. --- Module Name: pkgsrc Committed By: adam Date: Fri Dec 3 13:42:47 UTC 2004 Modified Files: pkgsrc/graphics/imlib: Makefile distinfo pkgsrc/graphics/imlib/patches: patch-ag patch-ah Log Message: Changes 1.9.15: * Minor bug fixes --- Module Name: pkgsrc Committed By: salo Date: Fri Dec 10 09:30:42 UTC 2004 Modified Files: pkgsrc/graphics/imlib: Makefile buildlink3.mk distinfo pkgsrc/graphics/imlib/patches: patch-ab patch-ai Added Files: pkgsrc/graphics/imlib/patches: patch-aj patch-ak patch-al patch-am patch-an patch-ao Log Message: Bump PKGREVISION, security fix: "Multiple buffer overflows in imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to execute arbitrary code via certain image files." (1.9.15 is also affected) http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1026 Patch from Pavel Kankovsky. @ text @d1 1 a1 1 $NetBSD: patch-ai,v 1.2 2004/12/10 09:30:42 salo Exp $ d4 2 a5 2 +++ gdk_imlib/io-ppm.c 2004-12-10 10:00:56.000000000 +0100 @@@@ -50,15 +50,15 @@@@ d13 2 a14 12 - if (a > 32767) + if (a <= 0 || a > 32767) { fprintf(stderr, "gdk_imlib ERROR: Image width > 32767 pixels for file\n"); return NULL; } - if (b > 32767) + if (b <= 0 || b > 32767) { fprintf(stderr, "gdk_imlib ERROR: Image height > 32767 pixels for file\n"); return NULL; @@@@ -66,7 +66,7 @@@@ @