The NetBSD Project

CVS log for pkgsrc/devel/zlib/patches/Attic/patch-ab

[BACK] Up to [cvs.NetBSD.org] / pkgsrc / devel / zlib / patches

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.4.6.2, Wed Jul 27 04:30:25 2005 UTC (16 years, 10 months ago) by snj
Branch: pkgsrc-2005Q2
Changes since 1.4.6.1: +1 -1 lines
FILE REMOVED

Pullup ticket 626 - requested by Matthias Drochner
security update for zlib

Revisions pulled up:
- pkgsrc/devel/zlib/Makefile		1.31
- pkgsrc/devel/zlib/buildlink3.mk	1.20
- pkgsrc/devel/zlib/distinfo		1.14
- pkgsrc/devel/zlib/patches/patch-ab	removed

    Module Name:    pkgsrc
    Committed By:   drochner
    Date:           Fri Jul 22 16:04:44 UTC 2005

    Modified Files:
            pkgsrc/devel/zlib: Makefile buildlink3.mk distinfo
    Removed Files:
            pkgsrc/devel/zlib/patches: patch-ab

    Log Message:
    update to 1.2.3
    this fixes (at least) another security problem (DoS, CAN-2005-1849)
    changes:
    -Eliminate a potential security vulnerability when decoding invalid
     compressed data
    -Eliminate a potential security vulnerability when decoding specially
     crafted compressed data
    -Fix a bug when decompressing dynamic blocks with no distance codes
    -Fix crc check bug in gzread() after gzungetc()
    -Do not return an error when using gzread() on an empty file

Revision 1.6, Fri Jul 22 16:04:44 2005 UTC (16 years, 10 months ago) by drochner
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base, pkgsrc-2013Q2, pkgsrc-2012Q4-base, pkgsrc-2012Q4, pkgsrc-2011Q4-base, pkgsrc-2011Q4, pkgsrc-2011Q2-base, pkgsrc-2011Q2, pkgsrc-2009Q4-base, pkgsrc-2009Q4, pkgsrc-2008Q4-base, pkgsrc-2008Q4, pkgsrc-2008Q3-base, pkgsrc-2008Q3, pkgsrc-2008Q2-base, pkgsrc-2008Q2, pkgsrc-2008Q1-base, pkgsrc-2008Q1, pkgsrc-2007Q4-base, pkgsrc-2007Q4, pkgsrc-2007Q3-base, pkgsrc-2007Q3, pkgsrc-2007Q2-base, pkgsrc-2007Q2, pkgsrc-2007Q1-base, pkgsrc-2007Q1, pkgsrc-2006Q4-base, pkgsrc-2006Q4, pkgsrc-2006Q3-base, pkgsrc-2006Q3, pkgsrc-2006Q2-base, pkgsrc-2006Q2, pkgsrc-2006Q1-base, pkgsrc-2006Q1, pkgsrc-2005Q4-base, pkgsrc-2005Q4, pkgsrc-2005Q3-base, pkgsrc-2005Q3, cube-native-xorg-base, cube-native-xorg, HEAD
Changes since 1.5: +1 -1 lines
FILE REMOVED

update to 1.2.3
this fixes (at least) another security problem (DoS, CAN-2005-1849)
changes:
-Eliminate a potential security vulnerability when decoding invalid
 compressed data
-Eliminate a potential security vulnerability when decoding specially
 crafted compressed data
-Fix a bug when decompressing dynamic blocks with no distance codes
-Fix crc check bug in gzread() after gzungetc()
-Do not return an error when using gzread() on an empty file

Revision 1.4.6.1 / (download) - annotate - [select for diffs], Thu Jul 7 20:52:10 2005 UTC (16 years, 10 months ago) by snj
Branch: pkgsrc-2005Q2
Changes since 1.4: +11 -12 lines
Diff to previous 1.4 (colored)

Pullup ticket 590 - requested by Matthias Drochner
security fix for zlib

Revisions pulled up:
- pkgsrc/devel/zlib/Makefile		1.30
- pkgsrc/devel/zlib/distinfo		1.13
- pkgsrc/devel/zlib/patches/patch-ab	1.5
- pkgsrc/devel/zlib/buildlink3.mk	1.19

    Module Name:    pkgsrc
    Committed By:   drochner
    Date:           Thu Jul  7 10:43:19 UTC 2005

    Modified Files:
            pkgsrc/devel/zlib: Makefile distinfo
    Added Files:
            pkgsrc/devel/zlib/patches: patch-ab

    Log Message:
    add a patch for CAN-2005-2096, from Debian
----
    Module Name:    pkgsrc
    Committed By:   tron
    Date:           Thu Jul  7 11:46:55 UTC 2005

    Modified Files:
            pkgsrc/devel/zlib: buildlink3.mk

    Log Message:
    Bump recommented version to 1.2.2nb1 because of CAN-2005-2096.

Revision 1.5 / (download) - annotate - [select for diffs], Thu Jul 7 10:43:19 2005 UTC (16 years, 10 months ago) by drochner
Branch: MAIN
Changes since 1.4: +11 -12 lines
Diff to previous 1.4 (colored)

add a patch for CAN-2005-2096, from Debian

Revision 1.4, Thu Nov 4 14:17:55 2004 UTC (17 years, 6 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2005Q2-base, pkgsrc-2005Q1-base, pkgsrc-2005Q1, pkgsrc-2004Q4-base, pkgsrc-2004Q4
Branch point for: pkgsrc-2005Q2
Changes since 1.3: +1 -1 lines
FILE REMOVED

Changes 1.2.2:
* Eliminate a potential security vulnerability when decoding invalid compressed data
* Fix bug when decompressing dynamic blocks with no distance codes
* Do not return error when using gzread() on an empty file

Revision 1.3 / (download) - annotate - [select for diffs], Tue Aug 31 23:16:23 2004 UTC (17 years, 8 months ago) by reed
Branch: MAIN
CVS Tags: pkgsrc-2004Q3-base, pkgsrc-2004Q3
Changes since 1.2: +13 -35 lines
Diff to previous 1.2 (colored)

Added two patches for fixing possible security issue.
The CVS security ID is CAN-2004-0797.

The fix is same as used by OpenBSD, Debian and Gentoo.
(Didn't see any reference to issue on zlib webpages.)

The OpenBSD announcement "zlib reliabilty fix" says:
"could allow an attacker to crash programs linked
with it."

And the Gentoo announcement says "zlib contains a bug in the handling
of errors in the inflate() and inflateBack() functions. ... An
attacker could exploit this vulnerability to launch a Denial of
Service attack on any application using the zlib library."

PKGREVISION is bumped and BUILDLINK_RECOMMENDED.zlib added to
buildlink3.mk file.

Revision 1.2, Mon Jan 12 21:19:50 2004 UTC (18 years, 4 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2004Q2-base, pkgsrc-2004Q2, pkgsrc-2004Q1-base, pkgsrc-2004Q1
Changes since 1.1: +1 -1 lines
FILE REMOVED

Changes 1.2.1:
	* inflate is about 20% faster and minimizes memory allocation
	* crc32 is about 50% faster
	* new functions and functionality
	* more supported architectures

Revision 1.1 / (download) - annotate - [select for diffs], Fri Sep 24 14:37:40 1999 UTC (22 years, 8 months ago) by agc
Branch: MAIN
CVS Tags: pkgviews-base, pkgviews, pkgsrc-2003Q4-base, pkgsrc-2003Q4, netbsd-1-6-RELEASE-base, netbsd-1-6-1-base, netbsd-1-6-1, netbsd-1-6, netbsd-1-5-RELEASE, netbsd-1-5-PATCH003, netbsd-1-5-PATCH001, netbsd-1-4-PATCH003, netbsd-1-4-PATCH002, comdex-fall-1999, buildlink2-base, buildlink2

Simplify this package, and build and install shared libs, by using a
version of the libz Makefile from basesrc to build this package.
Mark this package as only for Solaris platforms.

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>