![[BACK]](/icons/back.gif){kind=icon}
Return to Makefile CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / devel / p5-subversion|
Return to Makefile CVS log | Up to [cvs.NetBSD.org] / pkgsrc / devel / p5-subversion |
subversion: update to 1.14.4 This is a security release but the issue is Windows-only AFAICT. This is a stable bugfix and security release of the Apache Subversion open source version control system. Among regular bug fixes, this release fixes CVE-2024-45720: Subversion command line argument injection on Windows platforms On Windows platforms, a "best fit" character encoding conversion of command line arguments to Subversion's executables (e.g., svn.exe, etc.) may lead to unexpected command line argument interpretation, including argument injection and execution of other programs, if a specially crafted command line argument string is processed. UNIX-like platforms are not affected. Reported by: Orange Tsai and splitline from DEVCORE Research Team Full advisory: https://subversion.apache.org/security/CVE-2024-45720-advisory.txt https://subversion.apache.org/security/CVE-2024-45720-advisory.txt.asc
# $NetBSD: Makefile,v 1.133 2024/10/09 21:15:42 bsiegert Exp $
PKGNAME= p5-subversion-${SVNVER}
COMMENT= Perl bindings for Subversion
.include "../../devel/subversion/Makefile.common"
SHLIBTOOL_OVERRIDE= # empty
USE_TOOLS+= perl
PERL5_CONFIGURE= no
PERL5_OPTIONS+= threads
PERL5_PACKLIST= auto/SVN/_Core/.packlist
BUILD_TARGET= swig-pl
INSTALL_TARGET= install-swig-pl
TEST_TARGET= check-swig-pl
MAKE_ENV+= SUBVERSION_BASE_PREFIX=${BUILDLINK_PREFIX.subversion-base}
post-patch:
${RM} ${WRKSRC}/build-outputs.mk
${CP} ${FILESDIR}/build-outputs.mk ${WRKSRC}/build-outputs.mk
.include "../../devel/subversion-base/buildlink3.mk"
.include "../../lang/perl5/module.mk"
.include "../../mk/bsd.pkg.mk"