Package: graphviz | Debian Sources

Package: graphviz / 2.26.3-14+deb7u2

Metadata

Package	Version	Patches format
graphviz	2.26.3-14+deb7u2	3.0 (quilt)

Patch series

view the series file

Patch	File delta	Description
0_bindings_documentation \| (download)	tclpkg/gv/gv_doc_langs.tcl \| 14 10 + 4 - 0 ! 1 file changed, 10 insertions(+), 4 deletions(-)	---
0_tcl_manpages_section \| (download)	tclpkg/tkspline/tkspline.3tk \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
3_fix_powerpc_ftbfs \| (download)	configure \| 4 3 + 1 - 0 ! configure.ac \| 4 3 + 1 - 0 ! 2 files changed, 6 insertions(+), 2 deletions(-)	---
3_fix_manpage_warnings \| (download)	cmd/dot/dot.1 \| 6 3 + 3 - 0 ! cmd/dot/osage.1 \| 4 2 + 2 - 0 ! cmd/gvpr/gvpr.1 \| 2 1 + 1 - 0 ! cmd/lefty/lefty.1 \| 2 1 + 1 - 0 ! cmd/tools/sccmap.1 \| 2 1 + 1 - 0 ! lib/cgraph/cgraph.3 \| 8 4 + 4 - 0 ! lib/graph/graph.3 \| 2 1 + 1 - 0 ! tclpkg/gdtclft/gdtclft.3tcl \| 2 0 + 2 - 0 ! tclpkg/tkspline/tkspline.3tk \| 3 1 + 2 - 0 ! 9 files changed, 14 insertions(+), 17 deletions(-)	---
3_fix_pango_font_selection \| (download)	plugin/pango/gvtextlayout_pango.c \| 1 1 + 0 - 0 ! 1 file changed, 1 insertion(+)	---
40_fix_swig_php_ftbfs \| (download)	tclpkg/gv/Makefile.am \| 2 1 + 1 - 0 ! tclpkg/gv/Makefile.in \| 2 1 + 1 - 0 ! 2 files changed, 2 insertions(+), 2 deletions(-)	use -php instead of -php5 with swig
50_remove_changelog_in \| (download)	Makefile.in \| 5 1 + 4 - 0 ! configure.ac \| 1 0 + 1 - 0 ! 2 files changed, 1 insertion(+), 5 deletions(-)	---
3_fix_dot_output \| (download)	lib/common/output.c \| 34 17 + 17 - 0 ! 1 file changed, 17 insertions(+), 17 deletions(-)	---
3_fix_circo_segfault \| (download)	lib/circogen/blocktree.c \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
3_fix_vimdot_bashism \| (download)	plugin/xlib/vimdot.sh \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
3_minor_fixes_to_dot_manpage \| (download)	cmd/dot/dot.1 \| 13 4 + 9 - 0 ! 1 file changed, 4 insertions(+), 9 deletions(-)	minute typesetting improvements. A missing line break, and some inconsistent use of boldface characters. . Write the names of executable in boldface when referencing to them in the section "See also".
0_python_27_support \| (download)	configure.ac \| 65 65 + 0 - 0 ! tclpkg/Makefile.am \| 28 28 + 0 - 0 ! tclpkg/gv/Makefile.am \| 46 36 + 10 - 0 ! 3 files changed, 129 insertions(+), 10 deletions(-)	---
fix kfreebsd chroots \| (download)	lib/gvc/gvconfig.c \| 3 2 + 1 - 0 ! 1 file changed, 2 insertions(+), 1 deletion(-)	---
fix hurd autotools \| (download)	m4/libtool.m4 \| 18 2 + 16 - 0 ! 1 file changed, 2 insertions(+), 16 deletions(-)	---
automake_1.11.2_fixes \| (download)	plugin/ming/Makefile.am \| 4 3 + 1 - 0 ! tclpkg/gv/Makefile.am \| 2 1 + 1 - 0 ! 2 files changed, 4 insertions(+), 2 deletions(-)	---
explicit_ruby_1.8 \| (download)	configure.ac \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
kfreebsd hang.patch \| (download)	lib/gvc/gvconfig.c \| 2 2 + 0 - 0 ! 1 file changed, 2 insertions(+)	---
use system ltdl.patch \| (download)	configure.ac \| 43 18 + 25 - 0 ! 1 file changed, 18 insertions(+), 25 deletions(-)	---
CVE 2014 0978.patch \| (download)	lib/cgraph/scan.l \| 22 16 + 6 - 0 ! 1 file changed, 16 insertions(+), 6 deletions(-)	fix stack-based buffer overflow CVE-2014-0978: Fix stack-based buffer overflow due to a boundary error in the "yyerror()" function.
CVE 2014 1236.patch \| (download)	lib/cgraph/scan.l \| 35 26 + 9 - 0 ! 1 file changed, 26 insertions(+), 9 deletions(-)	fix possible buffer overflow problem in chknum of scanner CVE-2014-1236: buffer overflow from user input (the regexp in chkNum would accept arbitrary long digit list)
CVE 2014 9157.patch \| (download)	lib/cgraph/scan.l \| 3 2 + 1 - 0 ! 1 file changed, 2 insertions(+), 1 deletion(-)	cve-2014-9157 Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vector, which are not properly handled in an error string. lib/cgraph/scan.l \| 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-)

Patch	File delta	Description
0_bindings_documentation \| (download)	tclpkg/gv/gv_doc_langs.tcl \| 14 10 + 4 - 0 ! 1 file changed, 10 insertions(+), 4 deletions(-)	---
0_tcl_manpages_section \| (download)	tclpkg/tkspline/tkspline.3tk \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
3_fix_powerpc_ftbfs \| (download)	configure \| 4 3 + 1 - 0 ! configure.ac \| 4 3 + 1 - 0 ! 2 files changed, 6 insertions(+), 2 deletions(-)	---
3_fix_manpage_warnings \| (download)	cmd/dot/dot.1 \| 6 3 + 3 - 0 ! cmd/dot/osage.1 \| 4 2 + 2 - 0 ! cmd/gvpr/gvpr.1 \| 2 1 + 1 - 0 ! cmd/lefty/lefty.1 \| 2 1 + 1 - 0 ! cmd/tools/sccmap.1 \| 2 1 + 1 - 0 ! lib/cgraph/cgraph.3 \| 8 4 + 4 - 0 ! lib/graph/graph.3 \| 2 1 + 1 - 0 ! tclpkg/gdtclft/gdtclft.3tcl \| 2 0 + 2 - 0 ! tclpkg/tkspline/tkspline.3tk \| 3 1 + 2 - 0 ! 9 files changed, 14 insertions(+), 17 deletions(-)	---
3_fix_pango_font_selection \| (download)	plugin/pango/gvtextlayout_pango.c \| 1 1 + 0 - 0 ! 1 file changed, 1 insertion(+)	---
40_fix_swig_php_ftbfs \| (download)	tclpkg/gv/Makefile.am \| 2 1 + 1 - 0 ! tclpkg/gv/Makefile.in \| 2 1 + 1 - 0 ! 2 files changed, 2 insertions(+), 2 deletions(-)	use -php instead of -php5 with swig
50_remove_changelog_in \| (download)	Makefile.in \| 5 1 + 4 - 0 ! configure.ac \| 1 0 + 1 - 0 ! 2 files changed, 1 insertion(+), 5 deletions(-)	---
3_fix_dot_output \| (download)	lib/common/output.c \| 34 17 + 17 - 0 ! 1 file changed, 17 insertions(+), 17 deletions(-)	---
3_fix_circo_segfault \| (download)	lib/circogen/blocktree.c \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
3_fix_vimdot_bashism \| (download)	plugin/xlib/vimdot.sh \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
3_minor_fixes_to_dot_manpage \| (download)	cmd/dot/dot.1 \| 13 4 + 9 - 0 ! 1 file changed, 4 insertions(+), 9 deletions(-)	minute typesetting improvements. A missing line break, and some inconsistent use of boldface characters. . Write the names of executable in boldface when referencing to them in the section "See also".
0_python_27_support \| (download)	configure.ac \| 65 65 + 0 - 0 ! tclpkg/Makefile.am \| 28 28 + 0 - 0 ! tclpkg/gv/Makefile.am \| 46 36 + 10 - 0 ! 3 files changed, 129 insertions(+), 10 deletions(-)	---
fix kfreebsd chroots \| (download)	lib/gvc/gvconfig.c \| 3 2 + 1 - 0 ! 1 file changed, 2 insertions(+), 1 deletion(-)	---
fix hurd autotools \| (download)	m4/libtool.m4 \| 18 2 + 16 - 0 ! 1 file changed, 2 insertions(+), 16 deletions(-)	---
automake_1.11.2_fixes \| (download)	plugin/ming/Makefile.am \| 4 3 + 1 - 0 ! tclpkg/gv/Makefile.am \| 2 1 + 1 - 0 ! 2 files changed, 4 insertions(+), 2 deletions(-)	---
explicit_ruby_1.8 \| (download)	configure.ac \| 2 1 + 1 - 0 ! 1 file changed, 1 insertion(+), 1 deletion(-)	---
kfreebsd hang.patch \| (download)	lib/gvc/gvconfig.c \| 2 2 + 0 - 0 ! 1 file changed, 2 insertions(+)	---
use system ltdl.patch \| (download)	configure.ac \| 43 18 + 25 - 0 ! 1 file changed, 18 insertions(+), 25 deletions(-)	---
CVE 2014 0978.patch \| (download)	lib/cgraph/scan.l \| 22 16 + 6 - 0 ! 1 file changed, 16 insertions(+), 6 deletions(-)	fix stack-based buffer overflow CVE-2014-0978: Fix stack-based buffer overflow due to a boundary error in the "yyerror()" function.
CVE 2014 1236.patch \| (download)	lib/cgraph/scan.l \| 35 26 + 9 - 0 ! 1 file changed, 26 insertions(+), 9 deletions(-)	fix possible buffer overflow problem in chknum of scanner CVE-2014-1236: buffer overflow from user input (the regexp in chkNum would accept arbitrary long digit list)
CVE 2014 9157.patch \| (download)	lib/cgraph/scan.l \| 3 2 + 1 - 0 ! 1 file changed, 2 insertions(+), 1 deletion(-)	cve-2014-9157 Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vector, which are not properly handled in an error string. lib/cgraph/scan.l \| 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-)