On 2023/11/02 19:13, Volker Schlecht wrote:
> ghostscript released a patch release addressing some vaguely specified
> security bugs.
> From the changelog, it looks like there's at least a buffer overflow and an
> integer overflow that got fixed, so I think we want those fixes ASAP:
>
> https://git.ghostscript.com/?p=ghostpdl.git;a=shortlog;h=refs/tags/ghostpdl-10.02.1
>
> Built and tested on amd64. ok?
ok (for -current, and for OPENBSD_7_4 if you'd like to commit it there)
> Index: Makefile
> ===================================================================
> RCS file: /cvs/ports/print/ghostscript/gnu/Makefile,v
> retrieving revision 1.128
> diff -u -p -r1.128 Makefile
> --- Makefile 25 Sep 2023 07:55:09 -0000 1.128
> +++ Makefile 2 Nov 2023 18:08:56 -0000
> @@ -1,6 +1,6 @@
> COMMENT = PostScript and PDF interpreter
>
> -VERSION = 10.02.0
> +VERSION = 10.02.1
> DISTNAME = ghostscript-${VERSION}
> EXTRACT_SUFX = .tar.xz
> CATEGORIES = lang print
> Index: distinfo
> ===================================================================
> RCS file: /cvs/ports/print/ghostscript/gnu/distinfo,v
> retrieving revision 1.23
> diff -u -p -r1.23 distinfo
> --- distinfo 25 Sep 2023 07:55:09 -0000 1.23
> +++ distinfo 2 Nov 2023 18:08:56 -0000
> @@ -1,2 +1,2 @@
> -SHA256 (ghostscript-10.02.0.tar.xz) = +gjOAWsw0mKT3DIsY1NpGs7ZT9Nmemjt5/9TldcfzQs=
> -SIZE (ghostscript-10.02.0.tar.xz) = 67955320
> +SHA256 (ghostscript-10.02.1.tar.xz) = jFjJSLByG+zvzQApyNuV+bsyaK/8JeoB1MWmsH+hqwg=
> +SIZE (ghostscript-10.02.1.tar.xz) = 68017088
No comments:
Post a Comment