91360634ec
Vendor changes (relevant to FreeBSD): - bugfixes, improvemens and optimizations in ACL code - NFSv4 ACLs can now be extracted from Solaris tar archives Security fixes: - cab reader: endless loop when parsing MSZIP signature (OSS-Fuzz 335) - LHA reader: heap-buffer-overflow in lha_read_file_header_1() (CVE-2017-5601) - LZ4 reader: null-pointer dereference in lz4_filter_read_legacy_stream() (OSS-Fuzz 453) - mtree reader: heap-buffer-overflow in detect_form() (OSS-Fuzz 421, 443) - WARC reader: heap-buffer-overflow in xstrpisotime() (OSS-Fuzz 382, 458) Memory leak fixes: - ACL support: free memory allocated by acl_get_qualifier() - disk writer: missing free in create_filesystem_object() - file reader: fd leak (Coverity 1016755) - gnutar writer: fix free in archive_write_gnutar_header() (Coverity 1016752) - iso 9660 reader: missing free in parse_file_info() (part. Coverity 1016754) - program reader: missing free in __archive_read_program() - program writer: missing free in __archive_write_program_free() - xar reader: missing free in xar_cleanup() - xar reader: missing frees in expat_xmlattr_setup() (Coverity 1229979-1229981) - xar writer: missing free in file_free() - zip reader: missing free in zip_read_locazip_read_local_file_header()
31 lines
487 B
YAML
31 lines
487 B
YAML
language: C
|
|
sudo: false
|
|
dist: trusty
|
|
addons:
|
|
apt:
|
|
packages:
|
|
- libacl1-dev
|
|
- libbz2-dev
|
|
- liblzma-dev
|
|
- libzip-dev
|
|
- lzop
|
|
os:
|
|
- linux
|
|
- osx
|
|
compiler:
|
|
- gcc
|
|
- clang
|
|
env:
|
|
- BUILD_SYSTEM=cmake
|
|
- BUILD_SYSTEM=autotools
|
|
matrix:
|
|
exclude:
|
|
- os: osx
|
|
compiler: gcc
|
|
before_install:
|
|
- if [ `uname` = "Darwin" ]; then brew update; fi
|
|
install:
|
|
- if [ `uname` = "Darwin" ]; then brew install xz lzop lz4; fi
|
|
script:
|
|
- build/ci_build.sh
|