mykola/freebsd-ports
1
0
Fork 0
forked from Lainports/freebsd-ports
Code Pull requests Activity
freebsd-ports/www/libevhtp/Makefile
Richard Gallamore bb401c1a91 Fix stack overflow that can occur in libevhtp 
libevhtp allocates a stack based on data length
when C99 is detected at compile time. There are
no checks to verify that the stack is big enough
which can cause a stack overflow.

Adding EVHTP_HAS_C99=false at compile time changes
this behavior by allocate to a buffer which has
proper checks in place.

More information about this bug can be found at:
https://github.com/criticalstack/libevhtp/issues/118
https://github.com/haiwen/seafile/issues/1928

MFH:		2019Q3
2019-09-01 22:48:46 +00:00

41 lines
856 B
Makefile
Raw Blame History

# $FreeBSD$
PORTNAME= libevhtp
PORTVERSION= 1.2.16
PORTREVISION= 4
CATEGORIES= www
MAINTAINER= ultima@FreeBSD.org
COMMENT= Flexible replacement for libevent httpd API
LICENSE= BSD3CLAUSE
LICENSE_FILE= ${WRKSRC}/LICENSE
LIB_DEPENDS= libevent.so:devel/libevent
USES= cmake
USE_LDCONFIG= yes
USE_GITHUB= yes
GH_ACCOUNT= criticalstack
CMAKE_ARGS= -DCMAKE_INCLUDE_PATH:PATH=include/event2 \
-DCMAKE_LIBRARY_PATH:PATH=lib/event2 \
-DEVHTP_HAS_C99:BOOL=FALSE
PLIST_SUB= PORTVERSION=${PORTVERSION}
OPTIONS_DEFINE= REGEX SSL THREADS STATIC DEBUG
OPTIONS_DEFAULT=REGEX SSL THREADS
OPTIONS_SUB= yes
REGEX_CMAKE_BOOL_OFF= EVHTP_DISABLE_REGEX
REGEX_LIB_DEPENDS= libonig.so:devel/oniguruma
SSL_CMAKE_BOOL_OFF= EVHTP_DISABLE_SSL
SSL_USES= ssl
THREADS_CMAKE_BOOL_OFF= EVHTP_DISABLE_EVTHR
STATIC_CMAKE_BOOL_OFF= EVHTP_BUILD_SHARED
.include <bsd.port.mk>
View git blame Copy permalink