Hello all, Not long after we bumped the libsndfile port to 1.0.18, it turned out there was an undisclosed security vulnerability. The author decided to release a new version, 1.0.19. An advantage of this version is that it also works with a *released* version of libvorbis, so we don't need the awful regexes anymore.
Shall I commit this patch to SVN? -- Ed Schouten <[email protected]> WWW: http://80386.nl/
--- audio/libsndfile/Makefile +++ audio/libsndfile/Makefile @@ -6,7 +6,7 @@ # PORTNAME= libsndfile -PORTVERSION= 1.0.18 +PORTVERSION= 1.0.19 CATEGORIES= audio MASTER_SITES= http://www.mega-nerd.com/libsndfile/ @@ -37,10 +37,6 @@ .endif post-patch: - @${REINPLACE_CMD} \ - -e 's/vorbis >= 1\.2\.1/vorbis >= 1.2.0/g' \ - -e 's/vorbisenc >= 1\.2\.1/vorbisenc >= 1.2.0/g' \ - ${WRKSRC}/configure @${REINPLACE_CMD} -e '/^SUBDIRS =/s/ doc / /g' ${WRKSRC}/Makefile.in post-install: --- audio/libsndfile/distinfo +++ audio/libsndfile/distinfo @@ -1,3 +1,3 @@ -MD5 (libsndfile-1.0.18.tar.gz) = 9fde6efb1b75ef38398acf856f252416 -SHA256 (libsndfile-1.0.18.tar.gz) = c0821534a8510982d26b3085b148d9091dede53780733515eb49c99a65da293a -SIZE (libsndfile-1.0.18.tar.gz) = 923666 +MD5 (libsndfile-1.0.19.tar.gz) = 8fa24b0c0a8758543427c9741ea06924 +SHA256 (libsndfile-1.0.19.tar.gz) = 4b567a02e15bcae25fa1aeb3361b4e2cb8b2ce08e9b53faa81f77a34fb2b5419 +SIZE (libsndfile-1.0.19.tar.gz) = 924368
pgpddogdicDgO.pgp
Description: PGP signature
