Next | Query returned 1 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2012-07-13 11:03:26 by Matthias Scheler | Files touched by this commit (4) | Package updated
Log message:
Pullup ticket #3859 - requested by wiz
graphics/openjpeg: security update

Revisions pulled up:
- graphics/openjpeg/DESCR                                       1.2
- graphics/openjpeg/Makefile                                    1.3
- graphics/openjpeg/distinfo                                    1.3
- graphics/openjpeg/patches/patch-libopenjpeg_j2k.c             1.1

---
   Module Name:	pkgsrc
   Committed By:	wiz
   Date:		Wed Jul 11 09:07:21 UTC 2012

   Modified Files:
   	pkgsrc/graphics/openjpeg: DESCR Makefile distinfo
   Added Files:
   	pkgsrc/graphics/openjpeg/patches: patch-libopenjpeg_j2k.c

   Log message:
   CVE-2012-3358:
   A heap-based buffer overflow was found in the way OpenJPEG, an
   open-source JPEG 2000 codec written in C language, performed parsing of
   JPEG2000 having certain number of tiles and tilesizes. A remote
   attacker could provide a specially crafted JPEG 2000 file, which when
   opened in an application linked against openjpeg would lead to that
   application crash, or, potentially arbitrary code execution with the
   privileges of the user running the application.

   http://code.google.com/p/openjpeg/source/detail?r=1727

   Bump PKGREVISION.

   pkglint cleanups while here.

Next | Query returned 1 messages, browsing 1 to 10 | previous