Up to [cvs.NetBSD.org] / pkgsrc / security / py-yara
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
yara py-yara: updated to 4.5.1 YARA v4.5.1 Allow spaces in regexp repetition operators (e.g: {n, m}). BUGFIX: matches operator was not matching empty strings BUGFIX: Several bugs in array type handling in dotnet module BUGFIX: Fix issue while parsing .NET files (5bf72f2). BUGFIX: Fix issues while parsing PE resources (c009195, 4793b49). BUGFIX: Infinite loop while parsing corrupt PE files (e453eb1). BUGFIX: OOM errors while parsing corrupt PE files (4b9b4c0, 1be9811). BUGFIX: Build issue in Alpine Linux due to pread64 not found BUGFIX: Issue while parsing rich header in some PE files
yara py-yara: updated to 4.2.3 YARA v4.2.3 BUGFIX: Fix security issue that can lead to arbitrary code execution. BUGFIX: Fix incorrect logic in expressions like <quantifier> of <string_set> in (start..end
*: bump PKGREVISION for egg.mk users They now have a tool dependency on py-setuptools instead of a DEPENDS
{,py-}yara: update to version 4.1.0 Since version 3.11.0: YARA v4.1.0 * New operators icontains, endswith, iendswith, startswith, istartswith. * Accept \t escape sequence in text strings. * Add --no-follow-links command-line option to yara. * Prevent yara from following links to "." (@1D2D). * Implemented non-blocking scanning API (@simonhf). * When a string causes too many matches, YARA raises a warning instead of failing (@wxsBSD). * BUGFIX: The use of --timeout could hang yara when scanning directories or lists of files (#1481). * BUGFIX: Incorrect parsing of PE certificates (#1443). * BUGFIX: Short-circuit evaluation not working fine with undefined expressions. YARA v4.1.0-rc2 * Don't raise warnings for non-ASCII strings. YARA v4.1.0-rc1 * New operators icontains, endswith, iendswith, startswith, istartswith. * Raise warnings for non-ascii strings. * Accept \t escape sequence in text strings. * Add --no-follow-links command-line option to yara. * Prevent yara from following links to "." (@1D2D). * Implemented non-blocking scanning API (@simonhf). * When a string causes too many matches, YARA raises a warning instead of failing. YARA v4.0.5 * BUGFIX: Fix bug in "macho" module introduced in v4.0.4. YARA v4.0.4 * BUGFIX: Multiple out-of-bounds reads in "macho" module. Credits to Luis Merino from X41 D-SEC GmbH for reporting these issues. YARA v4.0.3 * BUGFIX: Multiple out-of-bounds read in "dotnet" module. YARA v4.0.2 * BUGFIX: Use-after-free bug in PE module (#1287). * BUGFIX: Incorrect errors in rules when a single rule is badly formatted (#1294). * BUGFIX: Assertion failed with rules that have invalid syntax (#1295). * BUGFIX: Integer overflow causing missed matches on files larger than 2GB (#1304). * BUGFIX: Crashes in Mac OS while scanning binaries with a signature that can't be verified (#1309). YARA v4.0.1 * Update sandboxed API (#1276). * BUGFIX: Fix regression in exports parsing in PE module (2bf67e6). * BUGFIX: Fix unaligned accesses in ARM (e1654ae). YARA v4.0.0 * New string modifiers base64 and base64wide (#1185). * New string modifier private (#1096). * Iterators for dictionaries and arrays (#1141). * Multiple API changes. * Memory footprint greatly reduced, specially when compiling large numbers of rules. * New commmand-line option --scan-list (#1261). * Added pdb_path field to "pe" module. * Added export_details array to "pe" module. * Added exports_index functions to "pe" module. * Improvements to "cuckoo" module. * BUGFIX: PE files with multiple signatures are parsed correctly (#940). * BUGFIX: Fix PE rich header parsing (#1164). * BUGFIX: Buffer overruns in "dotnet" module (#1167, #1173).
security: align variable assignments pkglint -Wall -F --only aligned --only indent -r No manual corrections.
Changed PYTHON_VERSIONS_INCOMPATIBLE to PYTHON_VERSIONS_ACCEPTED; needed for future Python 3.8
Omit mentions of python 34 and 35, after those were removed. - Includes some whitespace changes, to be handled in a separate commit.
extend PYTHON_VERSIONS_ for Python 3.7
Pullup ticket #5475 - requested by khorben security/py-yara: security fix security/yara: security fix Revisions pulled up: - security/py-yara/Makefile 1.5 - security/py-yara/PLIST 1.2 - security/py-yara/distinfo 1.5-1.7 - security/yara/Makefile 1.3 - security/yara/Makefile.common 1.5-1.8 - security/yara/PLIST 1.3 - security/yara/distinfo 1.6-1.8 --- Module Name: pkgsrc Committed By: khorben Date: Mon May 15 15:27:31 UTC 2017 Modified Files: pkgsrc/security/py-yara: Makefile PLIST distinfo pkgsrc/security/yara: Makefile Makefile.common PLIST distinfo Log Message: Update security/{,py-yara} to version 3.5.0 The release notes mention: * Match length operator (http://yara.readthedocs.io/en/v3.5.0/writingrules.html#match-length) * Performance improvements * Less memory consumption while scanning processes * Exception handling when scanning memory blocks * Negative integers in meta fields * Added the --stack-size command-argument * Functions import_ordinal, is_dll, is_32bit and is_64bit added to PE module * Functions rich_signature.toolid and rich_signature.version added to PE module * Lots of bug fixes The Python bindings are now released from a different tree, with the same versioning apparently though. "welcome to update" pettai@ --- Module Name: pkgsrc Committed By: khorben Date: Mon May 15 15:34:12 UTC 2017 Modified Files: pkgsrc/security/yara: Makefile.common Log Message: Set myself as the maintainer --- Module Name: pkgsrc Committed By: khorben Date: Wed Jun 7 20:11:42 UTC 2017 Modified Files: pkgsrc/security/py-yara: distinfo pkgsrc/security/yara: Makefile.common distinfo Log Message: Package yara 3.6.0 In the release notes: * .NET module (Wesley Shields) * New features for ELF module (Jacob Baines) * Fix endianness issues (Hilko Bengen) * Function yr_compiler_add_fd added to libyara * MAX_THREADS limit can be arbitrarily increased (Emerson R. Wiley) * Added --fail-on-warnings command-line option * Multiple bug fixes --- Module Name: pkgsrc Committed By: khorben Date: Wed Jun 7 20:27:37 UTC 2017 Modified Files: pkgsrc/security/py-yara: distinfo pkgsrc/security/yara: Makefile.common distinfo Log Message: Package yara 3.6.1 In the release notes: * BUGFIX: Stack overflow caused by uncontrolled recursiveness (CVE-2017-9304) * BUGFIX: pe.overlay.size was undefined if the PE didn't have an overlay. Now it's set to 0 in those cases. * BUGFIX: Fix initalization issue that could cause a crash if rules compiled with a 32bit yarac is used with a 64bit yara.
Simplify *yara packages.
Update security/{,py-yara} to version 3.5.0 The release notes mention: * Match length operator (http://yara.readthedocs.io/en/v3.5.0/writingrules.html#match-length) * Performance improvements * Less memory consumption while scanning processes * Exception handling when scanning memory blocks * Negative integers in meta fields * Added the --stack-size command-argument * Functions import_ordinal, is_dll, is_32bit and is_64bit added to PE module * Functions rich_signature.toolid and rich_signature.version added to PE module * Lots of bug fixes The Python bindings are now released from a different tree, with the same versioning apparently though. "welcome to update" pettai@
Add python-3.6 to incompatible versions.
Remove python33: adapt all packages that refer to it.
Extend PYTHON_VERSIONS_INCOMPATIBLE to 35
Yara python bindings