--- - branch: pkgsrc-2018Q3 date: Mon Oct 29 20:19:04 UTC 2018 files: - new: 1.10.2.1 old: '1.10' path: pkgsrc/textproc/uriparser/Makefile pathrev: pkgsrc/textproc/uriparser/Makefile@1.10.2.1 type: modified - new: 1.8.2.1 old: '1.8' path: pkgsrc/textproc/uriparser/distinfo pathrev: pkgsrc/textproc/uriparser/distinfo@1.8.2.1 type: modified id: 20181029T201904Z.3a170c98f9230c1123421ef00150e328a6a2c60d log: | Pullup ticket #5871 - requested by bsiegert textproc/uriparser: security update Revisions pulled up: - textproc/uriparser/Makefile 1.11 - textproc/uriparser/distinfo 1.9 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: bsiegert Date: Mon Oct 29 16:17:25 UTC 2018 Modified Files: pkgsrc/textproc/uriparser: Makefile distinfo Log Message: Update uriparser to 0.9.0. 2018-10-27 -- 0.9.0 >>>>>>>>>>>>> SECURITY >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> * Fixed: Out-of-bounds write in uriComposeQuery* and uriComposeQueryEx* Commit 864f5d4c127def386dd5cc926ad96934b297f04e Thanks to Google Autofuzz team for the report! * Fixed: Detect integer overflow in uriComposeQuery* and uriComposeQueryEx* Commit f76275d4a91b28d687250525d3a0c5509bbd666f Thanks to Google Autofuzz team for the report! * Fixed: Protect uriResetUri* against acting on NULL input Commit f58c25069cf4a986fe17a80c5b38687e31feb539 >>>>>>>>>>>>> SECURITY >>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>> * Fixed: Be fully compliant to C89 (GitHub #28) and C++98 in test code * Fixed: Fix off-by-one in uriComposeQueryCharsRequired* and ...Ex* Reported space requirements were 1 byte bigger than necessary * Changed: Marked as deprecated: Deprecated functions: uriNormalizeSyntaxMaskRequired[AW] uriParseUri[AW] uriParseUriEx[AW] * Added: Add convenience functions to ease user code to parse a single URI New functions: uriParseSingleUri[AW] uriParseSingleUriEx[AW] uriParseSingleUriExMm[AW] * Added: Support for custom memory managers (GitHub #26, #35), see Doxygen New functions (as extension of existing ones): uriAddBaseUriExMm[AW] uriComposeQueryMallocExMm[AW] uriDissectQueryMallocExMm[AW] uriFreeQueryListMm[AW] uriFreeUriMembersMm[AW] uriNormalizeSyntaxExMm[AW] uriParseSingleUriExMm[AW] uriRemoveBaseUriMm[AW] New functions (for convenience): uriCompleteMemoryManager uriEmulateCalloc uriEmulateReallocarray uriTestMemoryManager New error codes: URI_ERROR_MEMORY_MANAGER_FAULTY URI_ERROR_MEMORY_MANAGER_INCOMPLETE New types: UriFuncCalloc UriFuncFree UriFuncMalloc UriFuncRealloc UriFuncReallocarray UriMemoryManager * Added: Add non-void versions of uriNormalizeSyntaxMaskRequired* New functions: uriNormalizeSyntaxMaskRequiredEx[AW] * Changed: Migrate test suite from CppTest to GoogleTest 1.8.1 * Improved: Make test suite free of memory leaks (GitHub #31) Thanks to AddressSanitizer! * Removed: Support for pointless define URI_SIZEDOWN (GitHub #29) Related configure option --enable-sizedown has also been removed. * Soname: 1:23:0 To generate a diff of this commit: cvs rdiff -u -r1.10 -r1.11 pkgsrc/textproc/uriparser/Makefile cvs rdiff -u -r1.8 -r1.9 pkgsrc/textproc/uriparser/distinfo module: pkgsrc subject: 'CVS commit: [pkgsrc-2018Q3] pkgsrc/textproc/uriparser' unixtime: '1540844344' user: spz