py-Levenshtein: updated to 0.12.1 0.12.1 ------ * Fixed handling of numerous possible wraparounds in calculating the size of memory allocations; incorrect handling of which could cause denial of service or even possible remote code execution in previous versions of the library.diff -r1.1 -r1.2 pkgsrc/textproc/py-Levenshtein/Makefile
(adam)
@@ -1,14 +1,16 @@ | @@ -1,14 +1,16 @@ | |||
1 | # $NetBSD: Makefile,v 1.1 2017/03/01 10:31:19 leot Exp $ | 1 | # $NetBSD: Makefile,v 1.2 2021/01/20 09:09:41 adam Exp $ | |
2 | 2 | |||
3 | DISTNAME= python-Levenshtein-0.12.0 | 3 | DISTNAME= python-Levenshtein-0.12.1 | |
4 | PKGNAME= ${PYPKGPREFIX}-${DISTNAME:S/python-//} | 4 | PKGNAME= ${PYPKGPREFIX}-${DISTNAME:S/python-//} | |
5 | CATEGORIES= textproc python | 5 | CATEGORIES= textproc python | |
6 | MASTER_SITES= ${MASTER_SITE_PYPI:=p/python-Levenshtein/} | 6 | MASTER_SITES= ${MASTER_SITE_PYPI:=p/python-Levenshtein/} | |
7 | 7 | |||
8 | MAINTAINER= pkgsrc-users@NetBSD.org | 8 | MAINTAINER= pkgsrc-users@NetBSD.org | |
9 | HOMEPAGE= https://github.com/ztane/python-Levenshtein | 9 | HOMEPAGE= https://github.com/ztane/python-Levenshtein | |
10 | COMMENT= Python extension for computing string edit distances | 10 | COMMENT= Python extension for computing string edit distances | |
11 | LICENSE= gnu-gpl-v2 | 11 | LICENSE= gnu-gpl-v2 | |
12 | 12 | |||
13 | DEPENDS+= ${PYPKGPREFIX}-setuptools-[0-9]*:../../devel/py-setuptools | |||
14 | ||||
13 | .include "../../lang/python/egg.mk" | 15 | .include "../../lang/python/egg.mk" | |
14 | .include "../../mk/bsd.pkg.mk" | 16 | .include "../../mk/bsd.pkg.mk" |
@@ -1,18 +1,18 @@ | @@ -1,18 +1,18 @@ | |||
1 | @comment $NetBSD: PLIST,v 1.1 2017/03/01 10:31:19 leot Exp $ | 1 | @comment $NetBSD: PLIST,v 1.2 2021/01/20 09:09:41 adam Exp $ | |
2 | ${PYSITELIB}/${EGG_INFODIR}/PKG-INFO | |||
3 | ${PYSITELIB}/${EGG_INFODIR}/SOURCES.txt | |||
4 | ${PYSITELIB}/${EGG_INFODIR}/dependency_links.txt | |||
5 | ${PYSITELIB}/${EGG_INFODIR}/entry_points.txt | |||
6 | ${PYSITELIB}/${EGG_INFODIR}/namespace_packages.txt | |||
7 | ${PYSITELIB}/${EGG_INFODIR}/not-zip-safe | |||
8 | ${PYSITELIB}/${EGG_INFODIR}/requires.txt | |||
9 | ${PYSITELIB}/${EGG_INFODIR}/top_level.txt | |||
2 | ${PYSITELIB}/Levenshtein/StringMatcher.py | 10 | ${PYSITELIB}/Levenshtein/StringMatcher.py | |
3 | ${PYSITELIB}/Levenshtein/StringMatcher.pyc | 11 | ${PYSITELIB}/Levenshtein/StringMatcher.pyc | |
4 | ${PYSITELIB}/Levenshtein/StringMatcher.pyo | 12 | ${PYSITELIB}/Levenshtein/StringMatcher.pyo | |
5 | ${PYSITELIB}/Levenshtein/__init__.py | 13 | ${PYSITELIB}/Levenshtein/__init__.py | |
6 | ${PYSITELIB}/Levenshtein/__init__.pyc | 14 | ${PYSITELIB}/Levenshtein/__init__.pyc | |
7 | ${PYSITELIB}/Levenshtein/__init__.pyo | 15 | ${PYSITELIB}/Levenshtein/__init__.pyo | |
8 | ${PYSITELIB}/Levenshtein/_levenshtein.c | 16 | ${PYSITELIB}/Levenshtein/_levenshtein.c | |
9 | ${PYSITELIB}/Levenshtein/_levenshtein.h | 17 | ${PYSITELIB}/Levenshtein/_levenshtein.h | |
10 | ${PYSITELIB}/Levenshtein/_levenshtein.so | 18 | ${PYSITELIB}/Levenshtein/_levenshtein.so | |
11 | ${PYSITELIB}/${EGG_INFODIR}/PKG-INFO | |||
12 | ${PYSITELIB}/${EGG_INFODIR}/SOURCES.txt | |||
13 | ${PYSITELIB}/${EGG_INFODIR}/dependency_links.txt | |||
14 | ${PYSITELIB}/${EGG_INFODIR}/entry_points.txt | |||
15 | ${PYSITELIB}/${EGG_INFODIR}/namespace_packages.txt | |||
16 | ${PYSITELIB}/${EGG_INFODIR}/not-zip-safe | |||
17 | ${PYSITELIB}/${EGG_INFODIR}/requires.txt | |||
18 | ${PYSITELIB}/${EGG_INFODIR}/top_level.txt |
@@ -1,6 +1,6 @@ | @@ -1,6 +1,6 @@ | |||
1 | $NetBSD: distinfo,v 1.1 2017/03/01 10:31:19 leot Exp $ | 1 | $NetBSD: distinfo,v 1.2 2021/01/20 09:09:41 adam Exp $ | |
2 | 2 | |||
3 | SHA1 (python-Levenshtein-0.12.0.tar.gz) = e24d85c9d632038f98202af687eb3d428eca0ac1 | 3 | SHA1 (python-Levenshtein-0.12.1.tar.gz) = 54a5ca861ec021d76c113a4e490993f8bcad50da | |
4 | RMD160 (python-Levenshtein-0.12.0.tar.gz) = 710a87493ceef19ae046195c2d561f2d4d64cf6e | 4 | RMD160 (python-Levenshtein-0.12.1.tar.gz) = 6f341d2446d03d713591a62b4ce05fce1274ed87 | |
5 | SHA512 (python-Levenshtein-0.12.0.tar.gz) = 95df064490970618b003bccbef9071b1a2a3ee4645ac8e851f4205bd4e8123d21ee0ee733adfeec79085faa01ba39902e2a4a26bfb21b70678377579157df4a5 | 5 | SHA512 (python-Levenshtein-0.12.1.tar.gz) = e5b9dfda4ebe1f1111e2ac86219be5659a763368759d13393bd32c6c5d78d9b183c757c7e8ff1bd8a2f73450f0a255cc78664f03d899e1e5af2e58d871843722 | |
6 | Size (python-Levenshtein-0.12.0.tar.gz) = 48617 bytes | 6 | Size (python-Levenshtein-0.12.1.tar.gz) = 50567 bytes |