Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11]) by www.NetBSD.org (Postfix) with ESMTP id D62DF63BAE8 for ; Wed, 24 Nov 2010 18:44:58 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id B543D19D557; Wed, 24 Nov 2010 18:44:58 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 8B6B119D5A5 for ; Wed, 24 Nov 2010 18:44:55 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 58419175DD; Wed, 24 Nov 2010 18:44:55 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" Date: Wed, 24 Nov 2010 18:44:55 +0000 From: "Matthias Drochner" Subject: CVS commit: pkgsrc/graphics/freetype2 To: pkgsrc-changes@NetBSD.org Reply-To: drochner@netbsd.org X-Mailer: log_accum Message-Id: <20101124184455.58419175DD@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: drochner Date: Wed Nov 24 18:44:55 UTC 2010 Modified Files: pkgsrc/graphics/freetype2: Makefile distinfo pkgsrc/graphics/freetype2/patches: patch-ab Added Files: pkgsrc/graphics/freetype2/patches: patch-ac Log Message: add patch from upstream CVS to fix handling the "SHZ" bytecode instruction which could be exploited to cause a crash and potentially execute arbitrary code via a specially crafted font (CVE-2010-3814) bump PKGREV being here, add CVE reference to an older patch To generate a diff of this commit: cvs rdiff -u -r1.76 -r1.77 pkgsrc/graphics/freetype2/Makefile cvs rdiff -u -r1.38 -r1.39 pkgsrc/graphics/freetype2/distinfo cvs rdiff -u -r1.14 -r1.15 pkgsrc/graphics/freetype2/patches/patch-ab cvs rdiff -u -r0 -r1.6 pkgsrc/graphics/freetype2/patches/patch-ac Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.