[Python-modules-commits] r32221 - in packages/matplotlib/trunk/debian (3 files)

morph at users.alioth.debian.org morph at users.alioth.debian.org
Fri Apr 10 00:25:05 UTC 2015 

    Date: Friday, April 10, 2015 @ 00:25:04
  Author: morph
Revision: 32221

* debian/patches/CVE-2013-1424.patch
  - dropped, merged upstream

Modified:
  packages/matplotlib/trunk/debian/changelog
  packages/matplotlib/trunk/debian/patches/series
Deleted:
  packages/matplotlib/trunk/debian/patches/CVE-2013-1424.patch

Modified: packages/matplotlib/trunk/debian/changelog
===================================================================
--- packages/matplotlib/trunk/debian/changelog	2015-04-10 00:08:39 UTC (rev 32220)
+++ packages/matplotlib/trunk/debian/changelog	2015-04-10 00:25:04 UTC (rev 32221)
@@ -1,8 +1,10 @@
 matplotlib (1.4.3-1) UNRELEASED; urgency=medium
 
   * New upstream release
+  * debian/patches/CVE-2013-1424.patch
+    - dropped, merged upstream
 
- -- Sandro Tosi <morph at debian.org>  Wed, 25 Mar 2015 14:31:54 +0000
+ -- Sandro Tosi <morph at debian.org>  Fri, 10 Apr 2015 01:24:49 +0100
 
 matplotlib (1.4.3~rc1-1) experimental; urgency=medium
 

Deleted: packages/matplotlib/trunk/debian/patches/CVE-2013-1424.patch
===================================================================
--- packages/matplotlib/trunk/debian/patches/CVE-2013-1424.patch	2015-04-10 00:08:39 UTC (rev 32220)
+++ packages/matplotlib/trunk/debian/patches/CVE-2013-1424.patch	2015-04-10 00:25:04 UTC (rev 32221)
@@ -1,14 +0,0 @@
---- a/src/mplutils.cpp
-+++ b/src/mplutils.cpp
-@@ -18,7 +18,10 @@ Printf::Printf(const char *fmt, ...)
- {
-     va_list ap;
-     va_start(ap, fmt);
--    vsprintf(buffer, fmt, ap);
-+    vsnprintf(buffer, 1024, fmt, ap);
-+    // Null-terminate the string. Non-standard C implementations (e.g.,
-+    // Microsoft Visual C++) do not do this automatically.
-+    buffer[1023] = '\0';
-     va_end(ap);  // look ma - I rememberd it this time
- }
- 

Modified: packages/matplotlib/trunk/debian/patches/series
===================================================================
--- packages/matplotlib/trunk/debian/patches/series	2015-04-10 00:08:39 UTC (rev 32220)
+++ packages/matplotlib/trunk/debian/patches/series	2015-04-10 00:25:04 UTC (rev 32221)
@@ -7,4 +7,3 @@
 #gtk3agg_check_no-multiprocessing.patch
 gtk3cairo_check_no-multiprocessing.patch
 bts613818_use_system_pycxx.patch
-CVE-2013-1424.patch

More information about the Python-modules-commits mailing list