Subject: CVS commit: pkgsrc/graphics
From: Nia Alarie
Date: 2024-09-19 01:02:59
Message id: 20240918230259.E3DA1FC74@cvs.NetBSD.org
Log Message:
giflib[-util]: Update to 5.2.2. Libtoolize.

This is a point release intended to clear up a couple of CVEs and
apply point fixes that have been accumulating since 5.2.1

There are a few unresolved (but minor) memory leaks related to design
issues in the API that still need to be resolved. Expect those fixes
in the next release.

Code Fixes
----------

* Fixes for CVE-2023-48161, CVE-2022-28506,

* Address SF issue #138 Documentation for obsolete utilities still installed

* Address SF issue #139: Typo in "LZW image data" page ("110_2 = \ 
4_10")

* Address SF issue #140: Typo in "LZW image data" page ("LWZ")

* Address SF issue #141: Typo in "Bits and bytes" page ("filed")

* Note as already fixed SF issue #143: cannot compile under mingw

* Address SF issue #144: giflib-5.2.1 cannot be build on windows and other \ 
platforms using c89

* Address SF issue #145: Remove manual pages installation for binaries that are \ 
not installed too

* Address SF issue #146: [PATCH] Limit installed man pages to binaries, move \ 
giflib to section 7

* Address SF issue #147 [PATCH] Fixes to doc/whatsinagif/ content

* Address SF issue #148: heap Out of Bound Read in gif2rgb.c:298 DumpScreen2RGB

* Declared no-info on SF issue #150: There is a denial of service vulnerability \ 
in GIFLIB 5.2.1

* Declared Won't-fix on SF issue 149: Out of source builds no longer possible

* Address SF issue #151: A heap-buffer-overflow in gif2rgb.c:294:45

* Address SF issue #152: Fix some typos on the html documentation and man pages

* Address SF issue #153: Fix segmentation faults due to non correct checking for args

* Address SF issue #154: Recover the giffilter manual page

* Address SF issue #155: Add gifsponge docs

* Address SF issue #157: An OutofMemory-Exception or Memory Leak in gif2rgb

* Address SF issue #158: There is a null pointer problem in gif2rgb

* Address SF issue #159 A heap-buffer-overflow in GIFLIB5.2.1 DumpScreen2RGB() \ 
in gif2rgb.c:298:45

* Address SF issue #163: detected memory leaks in openbsd_reallocarray \ 
giflib/openbsd-reallocarray.c

* Address SF issue #164: detected memory leaks in GifMakeMapObject giflib/gifalloc.c

* Address SF issue #166: a read zero page leads segment fault in getarg.c and \ 
memory leaks in gif2rgb.c and gifmalloc.c

* Address SF issue #167: Heap-Buffer Overflow during Image Saving in \ 
DumpScreen2RGB Function at Line 321 of gif2rgb.c
Files:
RevisionActionfile
1.59modifypkgsrc/graphics/giflib/Makefile
1.15modifypkgsrc/graphics/giflib/Makefile.common
1.10modifypkgsrc/graphics/giflib/PLIST
1.29modifypkgsrc/graphics/giflib/distinfo
1.15modifypkgsrc/graphics/giflib-util/Makefile
1.6modifypkgsrc/graphics/giflib-util/PLIST
1.8modifypkgsrc/graphics/giflib/patches/patch-Makefile
1.1removepkgsrc/graphics/giflib/patches/patch-CVE-2022-28506