![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / graphics / libexif
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
libexif: update to 0.6.25.
libexif-0.6.25 (2025-01-08):
* REUSE compatibility (all files declare their license)
* Translation updates: ro, de, es, ka, pl, sr, sv, uk, vi, zh_CN,
* Disabled Apple Makernote support, as its not complete
* various bugfixes
* handle JPEG APP10
* EXIF_TAG_COMPOSITE_IMAGE, EXIF_TAG_STANDARD_OUTPUT_SENSITIVITY,
EXIF_TAG_RECOMMENDED_EXPOSURE_INDEX, EXIF_TAG_ISO_SPEED,
EXIF_TAG_ISO_SPEEDLatitudeYYY, EXIF_TAG_ISO_SPEEDLatitudeZZZ,
EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE,
EXIF_TAG_LENS_SPECIFICATION, EXIF_TAG_GAMMA, EXIF_TAG_OFFSET_TIME,
EXIF_TAG_OFFSET_TIME_ORIGINAL, EXIF_TAG_OFFSET_TIME_DIGITIZED,
EXIF_TAG_CAMERA_OWNER_NAME, EXIF_TAG_BODY_SERIAL_NUMBER,
EXIF_TAG_LENS_MAKE, EXIF_TAG_LENS_MODEL, EXIF_TAG_LENS_SERIAL_NUMBER:
better decoding
libexif: needs _POSIX_C_SOURCE for localtime_r(3)
*: Use FORCE_C_STD=c99 for C packages that use for loop initial declarations without setting -std=c99.
libexif: Update to 0.6.24 Changelog: libexif-0.6.24 (2021-11-25): * Translation updates: sr, vi, pl, uk, french * fixed regression in exif_data_load_data which could not load EXIF in JPEG data anymore * Decode lots of Canon tag names * removed empty strings from translation (empty string would translate to the PO info header) * various warning removals and code improvements * added sample "persistent" afl fuzzer (100x faster than normal afl fuzzer)
libexif: needs wrappers to add std=c99...
Pullup ticket #6502 - requested by wiz
graphics/libexif: security fix
Revisions pulled up:
- graphics/libexif/Makefile 1.49
- graphics/libexif/distinfo 1.33
---
Module Name: pkgsrc
Committed By: wiz
Date: Wed Sep 29 08:42:57 UTC 2021
Modified Files:
pkgsrc/graphics/libexif: Makefile distinfo
Log Message:
libexif: update to 0.6.23.
libexif-0.6.23 (2021-09-12):
* Translation updates: es, pl, uk, fr
* EXIF_TAG_SENSITIVITY_TYPE decoder added, added some more Exif 2.3 tags:
- EXIF_TAG_STANDARD_OUTPUT_SENSITIVITY
- EXIF_TAG_RECOMMENDED_EXPOSURE_INDEX
- EXIF_TAG_ISO_SPEED
- EXIF_TAG_ISO_SPEEDLatitudeYYY
- EXIF_TAG_ISO_SPEEDLatitudeZZZ
- EXIF_TAG_OFFSET_TIME
- EXIF_TAG_OFFSET_TIME_ORIGINAL
- EXIF_TAG_OFFSET_TIME_DIGITIZED
- EXIF_TAG_IMAGE_DEPTH
* be more relaxed to out of order JPG / EXIF dataheaders in files generated by some tools
* default GPS IFD table added
* Decode more Nikon Makernote tag names
* Added Apple iOS Makernote
* Security fixes:
* CVE-2020-0198: unsigned integer overflow in exif_data_load_data_content
* CVE-2020-0452: compiler optimization could remove an a
bufferoverflow check, making a buffer overflow possible with some
EXIF tags
* some more denial of service (compute time or stack exhaustion) counter-measures
added that avoid minutes of decoding time with malformed files found
by OSS-Fuzz
libexif: update to 0.6.23.
libexif-0.6.23 (2021-09-12):
* Translation updates: es, pl, uk, fr
* EXIF_TAG_SENSITIVITY_TYPE decoder added, added some more Exif 2.3 tags:
- EXIF_TAG_STANDARD_OUTPUT_SENSITIVITY
- EXIF_TAG_RECOMMENDED_EXPOSURE_INDEX
- EXIF_TAG_ISO_SPEED
- EXIF_TAG_ISO_SPEEDLatitudeYYY
- EXIF_TAG_ISO_SPEEDLatitudeZZZ
- EXIF_TAG_OFFSET_TIME
- EXIF_TAG_OFFSET_TIME_ORIGINAL
- EXIF_TAG_OFFSET_TIME_DIGITIZED
- EXIF_TAG_IMAGE_DEPTH
* be more relaxed to out of order JPG / EXIF dataheaders in files generated by some tools
* default GPS IFD table added
* Decode more Nikon Makernote tag names
* Added Apple iOS Makernote
* Security fixes:
* CVE-2020-0198: unsigned integer overflow in exif_data_load_data_content
* CVE-2020-0452: compiler optimization could remove an a
bufferoverflow check, making a buffer overflow possible with some
EXIF tags
* some more denial of service (compute time or stack exhaustion) counter-measures
added that avoid minutes of decoding time with malformed files found
by OSS-Fuzz
Pullup ticket #6205 - requested by nia
graphics/libexif: security fix
Revisions pulled up:
- graphics/libexif/Makefile 1.48
- graphics/libexif/PLIST 1.22
- graphics/libexif/distinfo 1.32
- graphics/libexif/patches/patch-libexif_exif-data.c deleted
---
Module Name: pkgsrc
Committed By: nia
Date: Tue May 19 11:20:01 UTC 2020
Modified Files:
pkgsrc/graphics/libexif: Makefile PLIST distinfo
Removed Files:
pkgsrc/graphics/libexif/patches: patch-libexif_exif-data.c
Log Message:
libexif: Update to 0.6.22
libexif-0.6.22 (2020-05-18):
* New translations: ms
* Updated translations for most languages
* Fixed C89 compatibility
* Fixed warnings on recent versions of autoconf
* Some useful EXIF 2.3 tag added:
* EXIF_TAG_GAMMA
* EXIF_TAG_COMPOSITE_IMAGE
* EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
* EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
* EXIF_TAG_GPS_H_POSITIONING_ERROR
* EXIF_TAG_CAMERA_OWNER_NAME
* EXIF_TAG_BODY_SERIAL_NUMBER
* EXIF_TAG_LENS_SPECIFICATION
* EXIF_TAG_LENS_MAKE
* EXIF_TAG_LENS_MODEL
* EXIF_TAG_LENS_SERIAL_NUMBER
* Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
* CVE-2018-20030: Fix for recursion DoS
* CVE-2020-13114: Time consumption DoS when parsing canon array markers
* CVE-2020-13113: Potential use of uninitialized memory
* CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes
* CVE-2020-0093: read overflow
* CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs
* CVE-2020-12767: fixed division by zero
* CVE-2016-6328: fixed integer overflow when parsing maker notes
* CVE-2017-7544: fixed buffer overread
libexif: Update to 0.6.22
libexif-0.6.22 (2020-05-18):
* New translations: ms
* Updated translations for most languages
* Fixed C89 compatibility
* Fixed warnings on recent versions of autoconf
* Some useful EXIF 2.3 tag added:
* EXIF_TAG_GAMMA
* EXIF_TAG_COMPOSITE_IMAGE
* EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
* EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
* EXIF_TAG_GPS_H_POSITIONING_ERROR
* EXIF_TAG_CAMERA_OWNER_NAME
* EXIF_TAG_BODY_SERIAL_NUMBER
* EXIF_TAG_LENS_SPECIFICATION
* EXIF_TAG_LENS_MAKE
* EXIF_TAG_LENS_MODEL
* EXIF_TAG_LENS_SERIAL_NUMBER
* Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
* CVE-2018-20030: Fix for recursion DoS
* CVE-2020-13114: Time consumption DoS when parsing canon array markers
* CVE-2020-13113: Potential use of uninitialized memory
* CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes
* CVE-2020-0093: read overflow
* CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs
* CVE-2020-12767: fixed division by zero
* CVE-2016-6328: fixed integer overflow when parsing maker notes
* CVE-2017-7544: fixed buffer overread
libexif: Apply upstream's fix for CVE-2019-9278
libexif: Update HOMEPAGE
all: migrate several HOMEPAGEs to https pkglint --only "https instead of http" -r -F With manual adjustments afterwards since pkglint 19.4.4 fixed a few indentations in unrelated lines. This mainly affects projects hosted at SourceForce, as well as freedesktop.org, CTAN and GNU.
libexif: Add a patch from upstream to address CVE-2017-7544 Bump PKGREVISION
Remove pkgviews: don't set PKG_INSTALLATION_TYPES in Makefiles.
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
libexif-0.6.21 (2012-07-12):
* New translations: en_AU, uk
* Updated translations: cs, da, de, en_CA, nl, pl, sk, sv, vi
* Added more supported lens in Canon MakerNote
* Added some defensive NULL pointer checks
* Fixed a number of security and stability issues due to buffer overflows,
bad pointer dereferences and division-by-zero including bug 3434540
and bug 3434545 (CVE-2012-2812, CVE-2012-2813, CVE-2012-2814,
CVE-2012-2836, CVE-2012-2837, CVE-2012-2840, CVE-2012-2841,
CVE-2012-2845)
recursive bump from gettext-lib shlib bump.
Changes 0.6.20: * New translations: bs, tr * Updated translations: be, cs, da, de, en_GB, en_CA, it, ja, nl, pl, pt_BR, pt, ru, sk, sq, sr, sv, vi, zh_CN * Fixed some problems in the write-exif.c example program * Stop listing -lm as a required library for dynamic linking in libexif.pc * Turned on the --enable-silent-rules configure option * Changed a lot of strings to make the case of the text more consistent * exif_entry_dump() now displays the correct tag name for GPS tags * Fixed some invalid format specifiers that caused problems on some platforms * Display rational numbers with the right number of significant figures
Added LICENSE information.
Changes 0.6.19: * New translations: be, en_GB, it, ja, pt, sq, zh_CN * Updated translations: da, sv, vi * Now using a binary search to make searching through the tag table faster * Fixed a heap buffer overflow during tag format conversion
update to 0.6.18 changes: -bugfixes -sped up exif_content_fix() -improved MakerNote support for Pentax, Casio, Epson, Olympus/Sanyo -New API entry point: exif_loader_get_buf() -documentation improvements -thread safety improvements -translation updates
add another Canon set lens to the table used to decode "maker notes" (this one is arguably too poor to be used on a digital body, but anyway)
Changes 0.6.17: * Updated translations: cs, de, pl, sk, vi * New translations: nl, se, en_CA * Enabled sv translation by default * Bug fixes * Enhanced support of Canon and Olympus makernotes * Added support for Fuji and Sanyo makernotes * Added support for the NO_VERBOSE_TAG_STRINGS and NO_VERBOSE_TAG_DATA macros to reduce size for embedded applications * Added support for more tags
The location of libexif.pc.in has changed.
update to 0.6.16 changes: -security fix for integer overflow leading to possible code injection (CVE-2006-4168) -translation updates
Update to 0.6.15:
New in 0.6.15 (2007-05-23) since 0.6.14 (2007-05-10):
* Added support for 2 new types of Pentax makernotes & Casio type2 makernote
* Added support for Win XP metadata (Author, Comment, KeyWords, Title,
Subject) tags
* Bug fixes:
[ 1443183 ] install error when doxygen is not present.
* New translations: Czech, Slovak.
* Improved doxygen generated API and code internals
documentation. Made building of code internals docs optional
(--enable-internal-docs) as the call graphs take quite long to
build. Made building any docs optional (--disable-docs).
New in 0.6.14 (2007-05-10) since 0.6.13 (2005-12-27):
* Bug fixes: #1457501, #1471060, #1525770, #1617991, #1703284, #1716196
* Extended support of Canon, Nikon, Olympus makernotes
* Added option EXIF_DATA_OPTION_DONT_CHANGE_MAKER_NOTE to prevent
modification of maker notes
* Other fixes and improvements which include API/ABI additions.
DESTDIR support.
Recursive revision bump / recommended bump for gettext ABI change.
Tell configure we really do not want doxygen (breaks installation, and would break PLIST if it succeeded). Reported by veego.
Update to 0.6.13.
New in 0.6.13:
* Bug fixes: #803191, #1051994, #1054321, #1054323, #1196787
* For pkg-config users, force usage of #include <libexif/exif-*.h>
(disable #include <exif-.h>)
* Updated German translation
* Build system tuning
* Misc changes:
Fix COPYRIGHT tag, fix memory corruption, use qsort.
Add patch to fix a braino which leads to crash in GIMP when opening JPEG pictures with certain EXIF data, like those from SONY, Nikon or Canon digital cameras. Obtained from libexif CVS, exif-data.c, rev. 1.68, via FreeBSD. Noted by Leonard Schmidt on tech-pkg.
Pullup ticket 500 - requested by Lubomir Sedlacik
security fix for libexif
Revisions pulled up:
- pkgsrc/graphics/libexif/Makefile 1.24, 1.25
- pkgsrc/graphics/libexif/PLIST 1.12
- pkgsrc/graphics/libexif/distinfo 1.13, 1.14, 1.15
- pkgsrc/graphics/libexif/buildlink3.mk 1.7
- pkgsrc/graphics/libexif/patches/patch-aa 1.3
- pkgsrc/graphics/libexif/patches/patch-ab 1.3
- pkgsrc/graphics/libexif/patches/patch-ac 1.1
Module Name: pkgsrc
Committed By: adam
Date: Wed Apr 20 12:40:41 UTC 2005
Modified Files:
pkgsrc/graphics/libexif: Makefile PLIST distinfo
Removed Files:
pkgsrc/graphics/libexif/patches: patch-aa patch-ab
Log Message:
Changes 0.6.12:
* Final fix of Ubuntu Security Notice USN-91-1 (CAN-2005-0664)
https://bugzilla.ubuntulinux.org/show_bug.cgi?id=7152
* Updated build system with cross compile capabilities
* Small fixes:
Fix tag order, use even offsets, improve Nikon&Olympus mnote tags.
----
Module Name: pkgsrc
Committed By: minskim
Date: Mon May 9 13:21:16 UTC 2005
Modified Files:
pkgsrc/graphics/libexif: distinfo
Added Files:
pkgsrc/graphics/libexif/patches: patch-aa patch-ab
Log Message:
Declare a static function in .c, not in .h.
----
Module Name: pkgsrc
Committed By: salo
Date: Fri May 13 11:58:00 UTC 2005
Modified Files:
pkgsrc/graphics/libexif: Makefile buildlink3.mk distinfo
Added Files:
pkgsrc/graphics/libexif/patches: patch-ac
Log Message:
Security fix:
"Matthias Clasen has reported a vulnerability in libexif, which can be
exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an infinite recursion in the
"exif_data_load_data_content()" function and can be exploited to
cause a stack overflow when parsing a specially crafted image.
Successful exploitation may crash an application linked against the
vulnerable library."
Bump PKGREVISION. Patch from:
http://sourceforge.net/tracker/index.php?func=detail&aid=1196787&group_id=12272&atid=112272
Security fix: "Matthias Clasen has reported a vulnerability in libexif, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an infinite recursion in the "exif_data_load_data_content()" function and can be exploited to cause a stack overflow when parsing a specially crafted image. Successful exploitation may crash an application linked against the vulnerable library." Bump PKGREVISION. Patch from: http://sourceforge.net/tracker/index.php?func=detail&aid=1196787&group_id=12272&atid=112272
Changes 0.6.12:
* Final fix of Ubuntu Security Notice USN-91-1 (CAN-2005-0664)
https://bugzilla.ubuntulinux.org/show_bug.cgi?id=7152
* Updated build system with cross compile capabilities
* Small fixes:
Fix tag order, use even offsets, improve Nikon&Olympus mnote tags.
Remove USE_BUILDLINK3 and NO_BUILDLINK; these are no longer used.
Pullup ticket 349 - requested by Lubomir Sedlacik
security fix for libexif
Revisions pulled up:
- pkgsrc/graphics/libexif/Makefile 1.22
- pkgsrc/graphics/libexif/buildlink3.mk 1.6
- pkgsrc/graphics/libexif/distinfo 1.12
- pkgsrc/graphics/libexif/patches/patch-ab 1.1
Module Name: pkgsrc
Committed By: adam
Date: Thu Mar 10 19:22:22 UTC 2005
Modified Files:
pkgsrc/graphics/libexif: distinfo
Added Files:
pkgsrc/graphics/libexif/patches: patch-ab
Log Message:
Added a patch to fix buffer overflow:
* SECURITY UPDATE: Fix buffer overflow.
* libexif/exif-data.c: Add buffer size checks in several places before
trying to access it.
* Thanks to Sylvain Defresne for spotting this and the patch.
* References:
https://bugzilla.ubuntulinux.org/show_bug.cgi?id=7152
Thanks to wiz@ for heads-up. :)
----
Module Name: pkgsrc
Committed By: salo
Date: Thu Mar 10 22:21:56 UTC 2005
Modified Files:
pkgsrc/graphics/libexif: Makefile buildlink3.mk
Log Message:
Bump PKGREVISION and BUILDLINK_RECOMMENDED for the security fix. (hi adam!)
Bump PKGREVISION and BUILDLINK_RECOMMENDED for the security fix. (hi adam!)
update to 0.6.11 There is a major step between 0.5.x and 0.6.x; I couldn't find a useful changelog.
Libtool fix for PR pkg/26633, and other issues. Update libtool to 1.5.10 in the process. (More information on tech-pkg.) Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and installing .la files. Bump PKGREVISION (only) of all packages depending directly on the above via a buildlink3 include.
Enable pkgviews installation.
LIBTOOL_OVERRIDE and SHLIBTOOL_OVERRIDE are now lists of shell globs
relative to ${WRKSRC}. Remove redundant LIBTOOL_OVERRIDE settings that
are automatically handled by the default setting in bsd.pkg.mk.
bl3ify
Add missing PKGCONFIG_OVERRIDE. Bump PKGREVISION because of the changed *.pc files. ok'ed by wiz@
Changes 0.5.12: Some build fixes. 'make distcheck' now works.
Changes 0.5.10: A few updates all over the place, a new exif-loader, etc.
s/netbsd.org/NetBSD.org/
PKGREVISION bump for libiconv update.
Use tech-pkg@ in favor of packages@ as MAINTAINER for orphaned packages. Should anybody feel like they could be the maintainer for any of thewe packages, please adjust.
Updated to libexif-0.5.9 Changes in pkgsrc : - fmt on DESCR - fetch .tar.bz2 Changes since libexif-0.5.8 - add USER_COMMENT support - some documents fixed
Update to 0.5.8: Without the MakerNote stuff which is now in libmnote, and some bugfixes.
Update to 0.5.7, mostly bugfixes and more translations. * libexif/exif-data.h: Introduce an array of ExifContents. This doesn't break binary compatibility, but it breaks compilation. Do something like "%s/->ifd_0/->ifd[EXIF_IFD_0]" in your source code to make it compile again.
USE_PKGLOCALEDIR, remove unnecessary patch, delint.
buildlink1 -> buildlink2
Merge changes in packages from the buildlink2 branch that have buildlink2.mk files back into the main trunk.
Merge changes from pkgsrc-current into the buildlink2 branch for the packages that have buildlink2.mk files.
Update to 0.5.3, inspired by pkg/17324 by Wada Keiji. Changes: EXIF-2.2 support, i18n support (de for now). Pkg changes: Fix maintainer email, use .tar.bz2, use gettext-lib buildlink.
Updated libexif to 0.5.0 (provided by Amitai Schlair in pkg/15722) * libexif/configure.in: Introduce proper versionning. * libexif: There's only one ByteOrder per ExifData. * libexif/libexif-entry.c: More tags implemented in (exif_entry_get_value).
Use USE_LIBTOOL and LTCONFIG_OVERRIDE
Created package for libexif-0.4. Most digital cameras produce EXIF files, which are JPEG files with extra tags that contain information about the image. The EXIF library allows you to parse an EXIF file and read the data from those tags.
Initial revision