Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11]) by www.NetBSD.org (Postfix) with ESMTP id A3F2063BD7C for ; Wed, 5 Aug 2009 20:58:57 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 0) id 590E963B11F; Wed, 5 Aug 2009 20:58:57 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 72B2A63B109 for ; Wed, 5 Aug 2009 20:58:56 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 65000175D0; Wed, 5 Aug 2009 20:58:56 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: binary Content-Type: text/plain Date: Wed, 5 Aug 2009 20:58:56 +0000 From: Matthias Drochner Subject: CVS commit: pkgsrc/x11/wxGTK28 To: pkgsrc-changes@NetBSD.org Reply-To: drochner@netbsd.org X-Mailer: log_accum Message-Id: <20090805205856.65000175D0@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes Precedence: list Module Name: pkgsrc Committed By: drochner Date: Wed Aug 5 20:58:56 UTC 2009 Modified Files: pkgsrc/x11/wxGTK28: Makefile distinfo Added Files: pkgsrc/x11/wxGTK28/patches: patch-ca Log Message: deal with CVE-2009-2369 -- neither the advisory nor anything it links to give useful information, just spotted an obvious case where data passed from subclasses are used for malloc() unchecked, so added a check. I can't claim that the CVE report is fixed because it is not clear what it is about, but it seems that this fixes an issue. bump PKGREVISION To generate a diff of this commit: cvs rdiff -u -r1.4 -r1.5 pkgsrc/x11/wxGTK28/Makefile cvs rdiff -u -r1.5 -r1.6 pkgsrc/x11/wxGTK28/distinfo cvs rdiff -u -r0 -r1.1 pkgsrc/x11/wxGTK28/patches/patch-ca Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.