head 1.5; access; symbols pkgsrc-2014Q4:1.4.0.60 pkgsrc-2014Q4-base:1.4 pkgsrc-2014Q3:1.4.0.58 pkgsrc-2014Q3-base:1.4 pkgsrc-2014Q2:1.4.0.56 pkgsrc-2014Q2-base:1.4 pkgsrc-2014Q1:1.4.0.54 pkgsrc-2014Q1-base:1.4 pkgsrc-2013Q4:1.4.0.52 pkgsrc-2013Q4-base:1.4 pkgsrc-2013Q3:1.4.0.50 pkgsrc-2013Q3-base:1.4 pkgsrc-2013Q2:1.4.0.48 pkgsrc-2013Q2-base:1.4 pkgsrc-2013Q1:1.4.0.46 pkgsrc-2013Q1-base:1.4 pkgsrc-2012Q4:1.4.0.44 pkgsrc-2012Q4-base:1.4 pkgsrc-2012Q3:1.4.0.42 pkgsrc-2012Q3-base:1.4 pkgsrc-2012Q2:1.4.0.40 pkgsrc-2012Q2-base:1.4 pkgsrc-2012Q1:1.4.0.38 pkgsrc-2012Q1-base:1.4 pkgsrc-2011Q4:1.4.0.36 pkgsrc-2011Q4-base:1.4 pkgsrc-2011Q3:1.4.0.34 pkgsrc-2011Q3-base:1.4 pkgsrc-2011Q2:1.4.0.32 pkgsrc-2011Q2-base:1.4 pkgsrc-2011Q1:1.4.0.30 pkgsrc-2011Q1-base:1.4 pkgsrc-2010Q4:1.4.0.28 pkgsrc-2010Q4-base:1.4 pkgsrc-2010Q3:1.4.0.26 pkgsrc-2010Q3-base:1.4 pkgsrc-2010Q2:1.4.0.24 pkgsrc-2010Q2-base:1.4 pkgsrc-2010Q1:1.4.0.22 pkgsrc-2010Q1-base:1.4 pkgsrc-2009Q4:1.4.0.20 pkgsrc-2009Q4-base:1.4 pkgsrc-2009Q3:1.4.0.18 pkgsrc-2009Q3-base:1.4 pkgsrc-2009Q2:1.4.0.16 pkgsrc-2009Q2-base:1.4 pkgsrc-2009Q1:1.4.0.14 pkgsrc-2009Q1-base:1.4 pkgsrc-2008Q4:1.4.0.12 pkgsrc-2008Q4-base:1.4 pkgsrc-2008Q3:1.4.0.10 pkgsrc-2008Q3-base:1.4 cube-native-xorg:1.4.0.8 cube-native-xorg-base:1.4 pkgsrc-2008Q2:1.4.0.6 pkgsrc-2008Q2-base:1.4 cwrapper:1.4.0.4 pkgsrc-2008Q1:1.4.0.2 pkgsrc-2008Q1-base:1.4 pkgsrc-2007Q4:1.3.0.8 pkgsrc-2007Q4-base:1.3 pkgsrc-2007Q3:1.3.0.6 pkgsrc-2007Q3-base:1.3 pkgsrc-2007Q2:1.3.0.4 pkgsrc-2007Q2-base:1.3 pkgsrc-2007Q1:1.3.0.2 pkgsrc-2007Q1-base:1.3 pkgsrc-2006Q4:1.2.0.24 pkgsrc-2006Q4-base:1.2 pkgsrc-2006Q3:1.2.0.22 pkgsrc-2006Q3-base:1.2 pkgsrc-2006Q2:1.2.0.20 pkgsrc-2006Q2-base:1.2 pkgsrc-2006Q1:1.2.0.18 pkgsrc-2006Q1-base:1.2 pkgsrc-2005Q4:1.2.0.16 pkgsrc-2005Q4-base:1.2 pkgsrc-2005Q3:1.2.0.14 pkgsrc-2005Q3-base:1.2 pkgsrc-2005Q2:1.2.0.12 pkgsrc-2005Q2-base:1.2 pkgsrc-2005Q1:1.2.0.10 pkgsrc-2005Q1-base:1.2 pkgsrc-2004Q4:1.2.0.8 pkgsrc-2004Q4-base:1.2 pkgsrc-2004Q3:1.2.0.6 pkgsrc-2004Q3-base:1.2 pkgsrc-2004Q2:1.2.0.4 pkgsrc-2004Q2-base:1.2 pkgsrc-2004Q1:1.2.0.2 pkgsrc-2004Q1-base:1.2 pkgsrc-2003Q4:1.1.0.4 pkgsrc-2003Q4-base:1.1 netbsd-1-6-1:1.1.0.2 netbsd-1-6-1-base:1.1; locks; strict; comment @# @; 1.5 date 2015.01.01.14.15.27; author he; state dead; branches; next 1.4; commitid PdStbIzr5wzRpk4y; 1.4 date 2008.03.20.19.58.16; author drochner; state Exp; branches 1.4.60.1; next 1.3; 1.3 date 2007.01.06.23.28.07; author wiz; state Exp; branches; next 1.2; 1.2 date 2004.03.02.10.28.18; author adam; state Exp; branches; next 1.1; 1.1 date 2002.11.13.14.24.22; author dillo; state Exp; branches; next ; 1.4.60.1 date 2015.02.19.21.18.52; author tron; state dead; branches; next ; commitid 9KM6NPHYSCRLbFay; desc @@ 1.5 log @Rename patches to conform to the "new" style. Add comments to the patches. Add fix for oCERT-2014-012, pulled from RedHat. Add fix from Debian bug 469786. Add LICENSE setting, I think modified-bsd is fitting. Bump PKGREVISION. @ text @$NetBSD: patch-ag,v 1.4 2008/03/20 19:58:16 drochner Exp $ --- ./src/libjasper/jpc/jpc_dec.c.orig 2007-01-19 22:43:07.000000000 +0100 +++ ./src/libjasper/jpc/jpc_dec.c @@@@ -1234,6 +1234,7 @@@@ static int jpc_dec_process_siz(jpc_dec_t } for (compno = 0, cmpt = dec->cmpts, tcomp = tile->tcomps; compno < dec->numcomps; ++compno, ++cmpt, ++tcomp) { + tcomp->numrlvls = 0; tcomp->rlvls = 0; tcomp->data = 0; tcomp->xstart = JPC_CEILDIV(tile->xstart, cmpt->hstep); @@@@ -1466,7 +1467,9 @@@@ static int jpc_dec_process_unk(jpc_dec_t dec = 0; jas_eprintf("warning: ignoring unknown marker segment\n"); - jpc_ms_dump(ms, stderr); + if (jas_getdbglevel() >= 1) { + jpc_ms_dump(ms, stderr); + } return 0; } @ 1.4 log @add a patch from Debian (bug #413041) to fix some heap corruption on malformed image input (CVE-2007-2721), also fix some initialisation which could cause random misbehaviour on cleanup, bump PKGREVISION @ text @d1 1 a1 1 $NetBSD$ @ 1.4.60.1 log @Pullup ticket #4624 - requested by taca graphics/jasper: security patch Revisions pulled up: - graphics/jasper/Makefile 1.39-1.40 - graphics/jasper/distinfo 1.16-1.17 - graphics/jasper/patches/patch-CVE-2014-9029 deleted - graphics/jasper/patches/patch-ad deleted - graphics/jasper/patches/patch-ae deleted - graphics/jasper/patches/patch-ag deleted - graphics/jasper/patches/patch-ah deleted - graphics/jasper/patches/patch-ai deleted - graphics/jasper/patches/patch-aj deleted - graphics/jasper/patches/patch-configure 1.1 - graphics/jasper/patches/patch-src_libjasper_jp2_jp2__cod.c 1.1 - graphics/jasper/patches/patch-src_libjasper_jp2_jp2__dec.c 1.1 - graphics/jasper/patches/patch-src_libjasper_jpc_jpc__cs.c 1.1 - graphics/jasper/patches/patch-src_libjasper_jpc_jpc__dec.c 1.1-1.2 - graphics/jasper/patches/patch-src_libjasper_jpc_jpc__qmfb.c 1.1 --- Module Name: pkgsrc Committed By: he Date: Thu Jan 1 14:15:27 UTC 2015 Modified Files: pkgsrc/graphics/jasper: Makefile distinfo Added Files: pkgsrc/graphics/jasper/patches: patch-configure patch-src_libjasper_jp2_jp2__cod.c patch-src_libjasper_jp2_jp2__dec.c patch-src_libjasper_jpc_jpc__cs.c patch-src_libjasper_jpc_jpc__dec.c Removed Files: pkgsrc/graphics/jasper/patches: patch-CVE-2014-9029 patch-ad patch-ae patch-ag patch-ah patch-ai patch-aj Log Message: Rename patches to conform to the "new" style. Add comments to the patches. Add fix for oCERT-2014-012, pulled from RedHat. Add fix from Debian bug 469786. Add LICENSE setting, I think modified-bsd is fitting. Bump PKGREVISION. --- Module Name: pkgsrc Committed By: snj Date: Sun Feb 8 23:04:22 UTC 2015 Modified Files: pkgsrc/graphics/jasper: Makefile distinfo pkgsrc/graphics/jasper/patches: patch-src_libjasper_jpc_jpc__dec.c Added Files: pkgsrc/graphics/jasper/patches: patch-src_libjasper_jpc_jpc__qmfb.c Log Message: Fix CVE-2014-8157 and CVE-2014-8158. Bump PKGREVISION to 10. @ text @d1 1 a1 1 $NetBSD: patch-ag,v 1.4 2008/03/20 19:58:16 drochner Exp $ @ 1.3 log @Update to 1.900.0: 1) The wavelet transform code has been rewritten in order to be more cache efficient (via loop tiling). As a few individuals have noted, the old code could often result in an excessive number of cache misses. 2) Some man pages have been added to the distribution as provided by Roland Stigge. 3) Some simple timer routines have been added to facilitate performance measurements. 4) Numerous bugs have been fixed (e.g., memory leaks, JP2 box processing problem, etc.). 5) Some name space pollution issues have been resolved. 6) A few compiler warnings have been fixed. @ text @d1 1 a1 1 $NetBSD: patch-ag,v 1.2 2004/03/02 10:28:18 adam Exp $ d3 11 a13 3 --- src/libjasper/jpc/jpc_dec.c.orig 2006-12-07 06:32:06.000000000 +0000 +++ src/libjasper/jpc/jpc_dec.c @@@@ -1466,7 +1466,9 @@@@ static int jpc_dec_process_unk(jpc_dec_t @ 1.2 log @Changes 1.701.0: * A preliminary attempt at a color management subsystem has been added to JasPer * Previously, the configure process did not generate a configuration header file * Temporary files created with the jas_stream_tmpfile function were not correctly removed upon file close under Microsoft Windows * An option has been added to the JPEG encoder to allow a quality factor to be specified * A new make target has been added for RPM building * The code now compiles with many fewer warnings on most platforms * The JasPer software license has been made slightly less restrictive * The configure-based build process has been updated to use newer versions of the GNU configure tools @ text @d1 1 a1 1 $NetBSD$ d3 1 a3 1 --- src/libjasper/jpc/jpc_dec.c.orig 2004-02-09 01:34:40.000000000 +0000 d5 1 a5 1 @@@@ -1472,7 +1472,9 @@@@ static int jpc_dec_process_unk(jpc_dec_t d8 1 a8 1 fprintf(stderr, "warning: ignoring unknown marker segment\n"); @ 1.1 log @fix warning in installed include file (jas_image.h) make debug output conditional on debug level > 0 bump PKGREVISION @ text @d3 1 a3 1 --- src/libjasper/jpc/jpc_dec.c.orig Fri Oct 18 21:48:51 2002 d5 3 a7 3 @@@@ -1502,7 +1502,9 @@@@ static int jpc_dec_process_com(jpc_dec_t static int jpc_dec_process_unk(jpc_dec_t *dec, jpc_ms_t *ms) { @