Received: by mail.netbsd.org (Postfix, from userid 605) id BF52284D69; Tue, 18 Jun 2019 13:30:54 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 4775F84D21 for ; Tue, 18 Jun 2019 13:30:54 +0000 (UTC) X-Virus-Scanned: amavisd-new at netbsd.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.netbsd.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id ji22ZwDjbExw for ; Tue, 18 Jun 2019 13:30:53 +0000 (UTC) Received: from cvs.NetBSD.org (ivanova.NetBSD.org [IPv6:2001:470:a085:999:28c:faff:fe03:5984]) by mail.netbsd.org (Postfix) with ESMTP id 453EA84CE3 for ; Tue, 18 Jun 2019 13:30:53 +0000 (UTC) Received: by cvs.NetBSD.org (Postfix, from userid 500) id 3F29EFBF4; Tue, 18 Jun 2019 13:30:53 +0000 (UTC) Content-Transfer-Encoding: 7bit Content-Type: multipart/mixed; boundary="_----------=_1560864653170570" MIME-Version: 1.0 Date: Tue, 18 Jun 2019 13:30:53 +0000 From: "Adam Ciarcinski" Subject: CVS commit: pkgsrc/graphics To: pkgsrc-changes@NetBSD.org Reply-To: adam@netbsd.org X-Mailer: log_accum Message-Id: <20190618133053.3F29EFBF4@cvs.NetBSD.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk List-Unsubscribe: This is a multi-part message in MIME format. --_----------=_1560864653170570 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" Module Name: pkgsrc Committed By: adam Date: Tue Jun 18 13:30:53 UTC 2019 Modified Files: pkgsrc/graphics/GraphicsMagick: Makefile Makefile.common PLIST distinfo pkgsrc/graphics/p5-GraphicsMagick: Makefile Log Message: {p5-}GraphicsMagick: updated to 1.3.32 1.3.32: Special Issues: It has been discovered that the 'ICU' library (a perhaps 30MB C++ library) which is now often a libxml2 dependendency causes huge process initialization overhead. This is noticed as unexpected slowness when GraphicsMagick utilities are used to process small to medium sized files. The time to initialize is often longer than the time to read the input file, process the image, and write the output file. If the 'ICU' dependency can not be avoided, then make sure to use the modules build. Please lobby the 'ICU' library developers to change their implementation to avoid long start-up times due to merely linking with the library. Security Fixes: GraphicsMagick is now participating in Google's oss-fuzz project due to the contributions and assistance of Alex Gaynor. Since February 4 2018, 343 issues have been opened by oss-fuzz and 331 of those issues have been resolved. The issues list is available at https://bugs.chromium.org/p/oss-fuzz/issues/list under search term "graphicsmagick". Issues are available for anyone to view and duplicate if they have been in "Verified" status for 30 days, or if they have been in "New" status for 90 days. There are too many fixes to list here. Please consult the GraphicsMagick ChangeLog file, Mercurial repository commit log, and the oss-fuzz issues list for details. BMP reader: Fix heap overflow in 32-bit build due to arithmetic overflow. Only happens if limits are changed from defaults. BMP reader/writer: Improve buffer-size calculations to guard against buffer overflows. DIB reader: Reject files which claim more than 8-bits per pixel but also claim to be colormapped. DIB reader/writer: Improve buffer-size calculations to guard against buffer overflows. MIFF reader: Detect end of file while reading RLE packets. MIFF reader: Fix heap overflow (for some files using RLE compression) caused by a typo in the code. MAT writer: Added missing error handling to avoid heap overflow. MNG reader: Fixed a small heap buffer overflow. SVG reader: Fixed a stack buffer overflow. TGA writer: Fix heap overflow when image rows/columns are larger than 65535. TIFF reader: Rationalize tile width/height to reject large tile sizes which are much larger than the image dimensions. TIFF reader: Apply memory resource limits to strip and tile allocations. WMF reader: Fixed a division by zero problem. XWD reader: Many heap buffer overflows and uses of uninitialized data were fixed. Pixel cache: Now apply resource limits to pixel nexus allocations using the same limits (total pixels, width, height, memory) as applied to the whole image since some requests are directly influenced by the input file. More tests are added for arithmetic overflow. Care was taken to minimize performance impact due to the many extra checks. Bug fixes: See above note about oss-fuzz fixes. Fixed include order of magick/api.h vs wand/wand_symbols.h. WriteImage(): Eliminate use of just-freed memory in clone_info->magick when throwing exception due to no support for format. Magick++/lib/Magick++/Drawable.h: Fix use of clang diagnostic syntax. DIB: Preserve PseudoClass opaque representation if ICO mask is opaque. JPEG reader: Restore ability to access detailed image properties while in 'ping' mode. JPEG reader: Base test for "Unreasonable dimensions" on original JPEG dimensions and not the scaled dimensions. JPEG reader: Allow input files to have a compression ratio as high as 2500. Extremely compressed files were being rejected. FreeType renderer: Fixed a memory leak. PDF writer: Fixed a memory leak. PDF writer: Fixed a thread safety problem. PICT reader: Fix a thread safety problem. Exception reporting: Throwing an exception was not thread safe. Now it is. Exception reporting: Handle the case where some passed character strings refer to existing exception character strings. Command-line parser now does not attempt to read a list of filenames from a file in '@name' syntax if the path '@name' exists. Previously it would attempt to read a list of file names from 'name' even if '@name' did exist. Rendering: Short-circuit path parsing and return and error immediately if an error occurs. New Features: Added support for writing the Braille image format (by Samuel Thibault). WebP writer: Support WebP 'use_sharp_yuv' option ("if needed, use sharp (and slow) RGB->YUV conversion") via -define webp:use-sharp-yuv=true. The version command output now reports the OpenMP specification number rather than just the integer version identifier. API Updates: ReallocateImageColormap() added to re-allocate an existing colormap. Some improperly-exposed globals are now static as they should have been. To generate a diff of this commit: cvs rdiff -u -r1.96 -r1.97 pkgsrc/graphics/GraphicsMagick/Makefile cvs rdiff -u -r1.22 -r1.23 pkgsrc/graphics/GraphicsMagick/Makefile.common cvs rdiff -u -r1.27 -r1.28 pkgsrc/graphics/GraphicsMagick/PLIST cvs rdiff -u -r1.48 -r1.49 pkgsrc/graphics/GraphicsMagick/distinfo cvs rdiff -u -r1.43 -r1.44 pkgsrc/graphics/p5-GraphicsMagick/Makefile Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files. --_----------=_1560864653170570 Content-Disposition: inline Content-Length: 4794 Content-Transfer-Encoding: binary Content-Type: text/x-diff; charset=us-ascii Modified files: Index: pkgsrc/graphics/GraphicsMagick/Makefile diff -u pkgsrc/graphics/GraphicsMagick/Makefile:1.96 pkgsrc/graphics/GraphicsMagick/Makefile:1.97 --- pkgsrc/graphics/GraphicsMagick/Makefile:1.96 Mon Apr 1 09:21:23 2019 +++ pkgsrc/graphics/GraphicsMagick/Makefile Tue Jun 18 13:30:52 2019 @@ -1,6 +1,5 @@ -# $NetBSD: Makefile,v 1.96 2019/04/01 09:21:23 abs Exp $ +# $NetBSD: Makefile,v 1.97 2019/06/18 13:30:52 adam Exp $ -PKGREVISION= 1 .include "Makefile.common" MAINTAINER= pkgsrc-users@NetBSD.org Index: pkgsrc/graphics/GraphicsMagick/Makefile.common diff -u pkgsrc/graphics/GraphicsMagick/Makefile.common:1.22 pkgsrc/graphics/GraphicsMagick/Makefile.common:1.23 --- pkgsrc/graphics/GraphicsMagick/Makefile.common:1.22 Tue Nov 20 10:19:29 2018 +++ pkgsrc/graphics/GraphicsMagick/Makefile.common Tue Jun 18 13:30:52 2019 @@ -1,10 +1,10 @@ -# $NetBSD: Makefile.common,v 1.22 2018/11/20 10:19:29 adam Exp $ +# $NetBSD: Makefile.common,v 1.23 2019/06/18 13:30:52 adam Exp $ # # used by graphics/GraphicsMagick/Makefile # used by graphics/p5-GraphicsMagick/Makefile GM_MAJOR_VER= 1.3 -GM_MINOR_VER= 31 +GM_MINOR_VER= 32 DISTVERSION= ${GM_MAJOR_VER}.${GM_MINOR_VER} DISTNAME= GraphicsMagick-${DISTVERSION} CATEGORIES= graphics Index: pkgsrc/graphics/GraphicsMagick/PLIST diff -u pkgsrc/graphics/GraphicsMagick/PLIST:1.27 pkgsrc/graphics/GraphicsMagick/PLIST:1.28 --- pkgsrc/graphics/GraphicsMagick/PLIST:1.27 Sun May 6 10:03:33 2018 +++ pkgsrc/graphics/GraphicsMagick/PLIST Tue Jun 18 13:30:52 2019 @@ -1,4 +1,4 @@ -@comment $NetBSD: PLIST,v 1.27 2018/05/06 10:03:33 adam Exp $ +@comment $NetBSD: PLIST,v 1.28 2019/06/18 13:30:52 adam Exp $ bin/GraphicsMagick++-config bin/GraphicsMagick-config bin/GraphicsMagickWand-config @@ -93,6 +93,8 @@ lib/${PKGNAME}/config/type.mgk lib/${PKGNAME}/modules-Q8/coders/art.la lib/${PKGNAME}/modules-Q8/coders/avs.la lib/${PKGNAME}/modules-Q8/coders/bmp.la +lib/${PKGNAME}/modules-Q8/coders/braille.la +lib/${PKGNAME}/modules-Q8/coders/braille.so lib/${PKGNAME}/modules-Q8/coders/cals.la lib/${PKGNAME}/modules-Q8/coders/caption.la lib/${PKGNAME}/modules-Q8/coders/cineon.la @@ -219,6 +221,7 @@ share/doc/GraphicsMagick/ChangeLog.2014 share/doc/GraphicsMagick/ChangeLog.2015 share/doc/GraphicsMagick/ChangeLog.2016 share/doc/GraphicsMagick/ChangeLog.2017 +share/doc/GraphicsMagick/ChangeLog.2018 share/doc/GraphicsMagick/Copyright.txt share/doc/GraphicsMagick/NEWS.txt share/doc/GraphicsMagick/www/ChangeLog-2001.html @@ -238,6 +241,7 @@ share/doc/GraphicsMagick/www/ChangeLog-2 share/doc/GraphicsMagick/www/ChangeLog-2015.html share/doc/GraphicsMagick/www/ChangeLog-2016.html share/doc/GraphicsMagick/www/ChangeLog-2017.html +share/doc/GraphicsMagick/www/ChangeLog-2018.html share/doc/GraphicsMagick/www/Changelog.html share/doc/GraphicsMagick/www/Changes.html share/doc/GraphicsMagick/www/Copyright.html Index: pkgsrc/graphics/GraphicsMagick/distinfo diff -u pkgsrc/graphics/GraphicsMagick/distinfo:1.48 pkgsrc/graphics/GraphicsMagick/distinfo:1.49 --- pkgsrc/graphics/GraphicsMagick/distinfo:1.48 Tue Nov 20 10:19:29 2018 +++ pkgsrc/graphics/GraphicsMagick/distinfo Tue Jun 18 13:30:52 2019 @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.48 2018/11/20 10:19:29 adam Exp $ +$NetBSD: distinfo,v 1.49 2019/06/18 13:30:52 adam Exp $ -SHA1 (GraphicsMagick-1.3.31.tar.xz) = 06229cbb16cc9a3eff9b1bd0426a88fb6b806bd9 -RMD160 (GraphicsMagick-1.3.31.tar.xz) = 55f4448820f8b24f2d50f989775cc263490451fd -SHA512 (GraphicsMagick-1.3.31.tar.xz) = 7bfc38fcbe32a049650f46a4f3c1137bea827490fe3fdbd71dc0c70afbcf513195ef7f8e94557774c7cb83e60249f2c5be7d8cfc8ef33043e99b39cea2edbf19 -Size (GraphicsMagick-1.3.31.tar.xz) = 5547684 bytes +SHA1 (GraphicsMagick-1.3.32.tar.xz) = a18e390061e9b31caf860134e583a81e9be74e61 +RMD160 (GraphicsMagick-1.3.32.tar.xz) = 1d2db9804e2fc31223219abd9653896be641b0af +SHA512 (GraphicsMagick-1.3.32.tar.xz) = f84cdb9318962aed1dc25d70db4d0ca102e4f88748f468f8a56b77d228fd315b772afa48e90a396d32e8226eba9105717bcb94166bbe43723afeec58ead53e09 +Size (GraphicsMagick-1.3.32.tar.xz) = 5535224 bytes SHA1 (patch-config_delegates.mgk.in) = c52192a35bede530d310688a576ef2181a9f073c SHA1 (patch-configure) = bdb76557cd8a5c116b6c84dc63f4e35ddde39c87 Index: pkgsrc/graphics/p5-GraphicsMagick/Makefile diff -u pkgsrc/graphics/p5-GraphicsMagick/Makefile:1.43 pkgsrc/graphics/p5-GraphicsMagick/Makefile:1.44 --- pkgsrc/graphics/p5-GraphicsMagick/Makefile:1.43 Mon Mar 18 16:17:48 2019 +++ pkgsrc/graphics/p5-GraphicsMagick/Makefile Tue Jun 18 13:30:53 2019 @@ -1,6 +1,5 @@ -# $NetBSD: Makefile,v 1.43 2019/03/18 16:17:48 gdt Exp $ +# $NetBSD: Makefile,v 1.44 2019/06/18 13:30:53 adam Exp $ -PKGREVISION= 1 .include "../../graphics/GraphicsMagick/Makefile.common" PKGNAME= p5-GraphicsMagick-${DISTVERSION} --_----------=_1560864653170570--