Received: by mail.netbsd.org (Postfix, from userid 605)
	id 9F01184DDB; Wed, 20 May 2020 19:15:27 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by mail.netbsd.org (Postfix) with ESMTP id 29E8884DD4
	for <pkgsrc-changes@NetBSD.org>; Wed, 20 May 2020 19:15:27 +0000 (UTC)
X-Virus-Scanned: amavisd-new at netbsd.org
Received: from mail.netbsd.org ([IPv6:::1])
	by localhost (mail.netbsd.org [IPv6:::1]) (amavisd-new, port 10025)
	with ESMTP id QAEPYTcu_GtT for <pkgsrc-changes@netbsd.org>;
	Wed, 20 May 2020 19:15:26 +0000 (UTC)
Received: from cvs.NetBSD.org (ivanova.netbsd.org [199.233.217.197])
	by mail.netbsd.org (Postfix) with ESMTP id 569D784CEA
	for <pkgsrc-changes@NetBSD.org>; Wed, 20 May 2020 19:15:26 +0000 (UTC)
Received: by cvs.NetBSD.org (Postfix, from userid 500)
	id 53D7AFB27; Wed, 20 May 2020 19:15:26 +0000 (UTC)
Content-Transfer-Encoding: 7bit
Content-Type: multipart/mixed; boundary="_----------=_1590002126117850"
MIME-Version: 1.0
Date: Wed, 20 May 2020 19:15:26 +0000
From: "Benny Siegert" <bsiegert@netbsd.org>
Subject: CVS commit: [pkgsrc-2020Q1] pkgsrc/graphics/libexif
To: pkgsrc-changes@NetBSD.org
Reply-To: bsiegert@netbsd.org
X-Mailer: log_accum
Message-Id: <20200520191526.53D7AFB27@cvs.NetBSD.org>
Sender: pkgsrc-changes-owner@NetBSD.org
List-Id: pkgsrc-changes.NetBSD.org
Precedence: bulk
List-Unsubscribe: <mailto:majordomo@NetBSD.org?subject=Unsubscribe%20pkgsrc-changes&body=unsubscribe%20pkgsrc-changes>

This is a multi-part message in MIME format.

--_----------=_1590002126117850
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset="US-ASCII"

Module Name:	pkgsrc
Committed By:	bsiegert
Date:		Wed May 20 19:15:26 UTC 2020

Modified Files:
	pkgsrc/graphics/libexif [pkgsrc-2020Q1]: Makefile PLIST distinfo
Removed Files:
	pkgsrc/graphics/libexif/patches [pkgsrc-2020Q1]:
	    patch-libexif_exif-data.c

Log Message:
Pullup ticket #6205 - requested by nia
graphics/libexif: security fix

Revisions pulled up:
- graphics/libexif/Makefile                                     1.48
- graphics/libexif/PLIST                                        1.22
- graphics/libexif/distinfo                                     1.32
- graphics/libexif/patches/patch-libexif_exif-data.c            deleted

---
   Module Name:	pkgsrc
   Committed By:	nia
   Date:		Tue May 19 11:20:01 UTC 2020

   Modified Files:
   	pkgsrc/graphics/libexif: Makefile PLIST distinfo
   Removed Files:
   	pkgsrc/graphics/libexif/patches: patch-libexif_exif-data.c

   Log Message:
   libexif: Update to 0.6.22

   libexif-0.6.22 (2020-05-18):
     * New translations: ms
     * Updated translations for most languages
     * Fixed C89 compatibility
     * Fixed warnings on recent versions of autoconf
     * Some useful EXIF 2.3 tag added:
       * EXIF_TAG_GAMMA
       * EXIF_TAG_COMPOSITE_IMAGE
       * EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
       * EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
       * EXIF_TAG_GPS_H_POSITIONING_ERROR
       * EXIF_TAG_CAMERA_OWNER_NAME
       * EXIF_TAG_BODY_SERIAL_NUMBER
       * EXIF_TAG_LENS_SPECIFICATION
       * EXIF_TAG_LENS_MAKE
       * EXIF_TAG_LENS_MODEL
       * EXIF_TAG_LENS_SERIAL_NUMBER
     * Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
       * CVE-2018-20030: Fix for recursion DoS
       * CVE-2020-13114: Time consumption DoS when parsing canon array markers
       * CVE-2020-13113: Potential use of uninitialized memory
       * CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes
       * CVE-2020-0093: read overflow
       * CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs
       * CVE-2020-12767: fixed division by zero
       * CVE-2016-6328: fixed integer overflow when parsing maker notes
       * CVE-2017-7544: fixed buffer overread


To generate a diff of this commit:
cvs rdiff -u -r1.47 -r1.47.2.1 pkgsrc/graphics/libexif/Makefile
cvs rdiff -u -r1.21 -r1.21.42.1 pkgsrc/graphics/libexif/PLIST
cvs rdiff -u -r1.31 -r1.31.2.1 pkgsrc/graphics/libexif/distinfo
cvs rdiff -u -r1.2 -r0 \
    pkgsrc/graphics/libexif/patches/patch-libexif_exif-data.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


--_----------=_1590002126117850
Content-Disposition: inline
Content-Length: 3368
Content-Transfer-Encoding: binary
Content-Type: text/x-diff; charset=us-ascii

Modified files:

Index: pkgsrc/graphics/libexif/Makefile
diff -u pkgsrc/graphics/libexif/Makefile:1.47 pkgsrc/graphics/libexif/Makefile:1.47.2.1
--- pkgsrc/graphics/libexif/Makefile:1.47	Wed Mar 25 11:47:23 2020
+++ pkgsrc/graphics/libexif/Makefile	Wed May 20 19:15:26 2020
@@ -1,10 +1,11 @@
-# $NetBSD: Makefile,v 1.47 2020/03/25 11:47:23 nia Exp $
+# $NetBSD: Makefile,v 1.47.2.1 2020/05/20 19:15:26 bsiegert Exp $
 
-DISTNAME=	libexif-0.6.21
-PKGREVISION=	2
+DISTNAME=	libexif-0.6.22
 CATEGORIES=	graphics
-MASTER_SITES=	${MASTER_SITE_SOURCEFORGE:=libexif/}
-EXTRACT_SUFX=	.tar.bz2
+MASTER_SITES=	${MASTER_SITE_GITHUB:=libexif/}
+GITHUB_PROJECT=	libexif
+GITHUB_RELEASE=	${DISTNAME:S/./_/g}-release
+EXTRACT_SUFX=	.tar.xz
 
 MAINTAINER=	adam@NetBSD.org
 HOMEPAGE=	https://libexif.github.io/
@@ -13,7 +14,7 @@ LICENSE=	gnu-lgpl-v2.1
 
 USE_LIBTOOL=		yes
 USE_PKGLOCALEDIR=	yes
-USE_TOOLS+=		gmake
+USE_TOOLS+=		gmake msgfmt msgmerge xgettext
 GNU_CONFIGURE=		yes
 CONFIGURE_ENV+=		ac_cv_path_DOXYGEN=false
 PKGCONFIG_OVERRIDE=	libexif.pc.in

Index: pkgsrc/graphics/libexif/PLIST
diff -u pkgsrc/graphics/libexif/PLIST:1.21 pkgsrc/graphics/libexif/PLIST:1.21.42.1
--- pkgsrc/graphics/libexif/PLIST:1.21	Fri Jul 13 16:35:25 2012
+++ pkgsrc/graphics/libexif/PLIST	Wed May 20 19:15:26 2020
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.21 2012/07/13 16:35:25 adam Exp $
+@comment $NetBSD: PLIST,v 1.21.42.1 2020/05/20 19:15:26 bsiegert Exp $
 include/libexif/_stdint.h
 include/libexif/exif-byte-order.h
 include/libexif/exif-content.h
@@ -21,6 +21,7 @@ share/doc/libexif/COPYING
 share/doc/libexif/ChangeLog
 share/doc/libexif/NEWS
 share/doc/libexif/README
+share/doc/libexif/SECURITY.md
 share/locale/be/LC_MESSAGES/libexif-12.mo
 share/locale/bs/LC_MESSAGES/libexif-12.mo
 share/locale/cs/LC_MESSAGES/libexif-12.mo
@@ -33,6 +34,7 @@ share/locale/es/LC_MESSAGES/libexif-12.m
 share/locale/fr/LC_MESSAGES/libexif-12.mo
 share/locale/it/LC_MESSAGES/libexif-12.mo
 share/locale/ja/LC_MESSAGES/libexif-12.mo
+share/locale/ms/LC_MESSAGES/libexif-12.mo
 share/locale/nl/LC_MESSAGES/libexif-12.mo
 share/locale/pl/LC_MESSAGES/libexif-12.mo
 share/locale/pt/LC_MESSAGES/libexif-12.mo

Index: pkgsrc/graphics/libexif/distinfo
diff -u pkgsrc/graphics/libexif/distinfo:1.31 pkgsrc/graphics/libexif/distinfo:1.31.2.1
--- pkgsrc/graphics/libexif/distinfo:1.31	Wed Mar 25 11:47:23 2020
+++ pkgsrc/graphics/libexif/distinfo	Wed May 20 19:15:26 2020
@@ -1,7 +1,6 @@
-$NetBSD: distinfo,v 1.31 2020/03/25 11:47:23 nia Exp $
+$NetBSD: distinfo,v 1.31.2.1 2020/05/20 19:15:26 bsiegert Exp $
 
-SHA1 (libexif-0.6.21.tar.bz2) = a52219b12dbc8d33fc096468591170fda71316c0
-RMD160 (libexif-0.6.21.tar.bz2) = 979f06096b7271d8713c1766e0ad5dfabb06c531
-SHA512 (libexif-0.6.21.tar.bz2) = 4e0fe2abe85d1c95b41cb3abe1f6333dc3a9eb69dba106a674a78d74a4d5b9c5a19647118fa1cc2d72b98a29853394f1519eda9e2889eb28d3be26b21c7cfc35
-Size (libexif-0.6.21.tar.bz2) = 1368435 bytes
-SHA1 (patch-libexif_exif-data.c) = 3518902f95665b53a62ba4e7fdc0b146fb4480dc
+SHA1 (libexif-0.6.22.tar.xz) = b396c562dbf44567ef796f324e7760b15e657523
+RMD160 (libexif-0.6.22.tar.xz) = e34ce907a658d4883894655bd11c6dff2b06cf9d
+SHA512 (libexif-0.6.22.tar.xz) = 0a9e7bf0258ed98a794b667d45e8fc65299101a2a2d2e39c358715b20b003beff258782f0736cd5b53978428a2f878a989f303bee249a978850a065f33c534af
+Size (libexif-0.6.22.tar.xz) = 1347040 bytes


--_----------=_1590002126117850--