Path to this page:
Next | Query returned 1 messages, browsing 1 to 10 | previous
CVS Commit History:
2008-08-10 19:02:26 by Matthias Scheler | Files touched by this commit (15) |
Log message:
Pullup ticket 2480 - requested by drochner
Security patches for python24
Revisions pulled up:
- lang/python24/Makefile 1.44-1.45
- lang/python24/distinfo 1.29-1.31
- lang/python24/patches/patch-ba 1.1
- lang/python24/patches/patch-bb 1.1
- lang/python24/patches/patch-bc 1.1
- lang/python24/patches/patch-bd 1.1
- lang/python24/patches/patch-be 1.1
- lang/python24/patches/patch-bf 1.1
- lang/python24/patches/patch-bg 1.1
- lang/python24/patches/patch-bh 1.1
- lang/python24/patches/patch-bi 1.1
- lang/python24/patches/patch-bj 1.1
- lang/python24/patches/patch-bk 1.1
- lang/python24/patches/patch-bl 1.1
- lang/python24/patches/patch-bm 1.1
---
Module Name: pkgsrc
Committed By: joerg
Date: Mon Jul 14 14:42:51 UTC 2008
Modified Files:
pkgsrc/lang/python24: Makefile
Log message:
Always build depend on readline, so that devel/py-readline can pick up
the right config. Bump revision.
---
Module Name: pkgsrc
Committed By: drochner
Date: Tue Aug 5 10:13:34 UTC 2008
Modified Files:
pkgsrc/lang/python24: Makefile distinfo
Added Files:
pkgsrc/lang/python24/patches: patch-ba patch-bb patch-bc patch-bd
patch-be patch-bf patch-bg
Log message:
add patches from upstream svn rev.65333, fix integer overflows in
memory allocation (CVE-2008-2315)
---
Module Name: pkgsrc
Committed By: drochner
Date: Tue Aug 5 10:45:46 UTC 2008
Modified Files:
pkgsrc/lang/python24: distinfo
Added Files:
pkgsrc/lang/python24/patches: patch-bh patch-bi patch-bj patch-bk
patch-bl
Log message:
also apply upstream svn rev.65262, fixes overflow checks in memory
allocation (CVE-2008-3142), ride on PKGREVISION bump some minutes ago
---
Module Name: pkgsrc
Committed By: drochner
Date: Thu Aug 7 11:20:18 UTC 2008
Modified Files:
pkgsrc/lang/python24: distinfo
Added Files:
pkgsrc/lang/python24/patches: patch-bm
Log message:
Add a patch from the upstream 2.5 branch (svn rev.63883) to fix an
integer overflow in the vsnprintf replacement function.
This is likely not a real problem, and the patch wasn't pulled to
the upstream 2.4 branch, but so we can formally declare our 2.4
as not vulnerable now.
|
Next | Query returned 1 messages, browsing 1 to 10 | previous