on to cscope when it's running (whether this is correct or not is a different
discussion). The signal handler in cscope tries to ungetch() which crashes if
cscope is running in line mode (as under Vim) as opposed to under ncurses.
From Philip Paeps <philip@freebsd.org>. Bump PKGREVISION.
Some security problems have been addressed, and overall stability
has improved. There are no new features.
(The security problems were already fixed in pkgsrc.)
"Will Drewry has reported some vulnerabilities in Cscope, which
potentially can be exploited by malicious people to compromise
a vulnerable system.
1) Various boundary errors within the parsing of file lists or
the expansion of environment variables can be exploited to
cause stack-based buffer overflows when parsing specially
crafted "cscope.lists" files or directories.
2) A boundary error within the parsing of command line arguments
can be exploited to cause a stack-based buffer overflow when
supplying an overly long "reffile" argument.
Successful exploitation may allow execution of arbitrary code."
Patches adapted from cscope CVS. Bump PKGREVISION.
(2003/08/14 - broeker) Cleaned up man page, INSTALL and TODO files.
(2003/08/14 - broeker) Have configure check for <regex.h>. Bail out if none
found.
(2003/08/14 - broeker) New options --help and --version.
(2003/06/12 - broeker) New option -v to output progress updates even in
line mode. To be used by interface kscope.
(2003/06/02 - broeker) Use the basename of files only to test for SCCS/RCS
files in -R traversal.
(2003/04/29 - broeker) Check that a src file is a regular file before trying to
scan it. Change from S_IFDIR/S_IFREG bit tests to
macros S_ISDIR/S_ISREG.
(2003/03/05 - broeker) Remove '-y' option from pipe call to utility "sort".
It's long since deprecated, and some modern versions
will barf seeing it.
(2003/03/02 - broeker) Don't restrict to 14 character filenames any longer.
(2003/01/23 - broeker) Update to latest auto* tools. First step towards
integration of GNOME GUI version.
(2002/12/11 - broeker) Get rid of deprecated ={...} style actions in egrep.y.
Use plain {...} instead.
(2002/10/29 - broeker) Fix bug #588671: disprefs was still 0 if only 1 very
long reference output shown by curses display.
(2002/08/27 - broeker) Fix bug #600494: use mygetenv() for HOME, and provide
a fall-back if it's not there.
Changes in release 15.3: Improvements, major bug fixes, XEmacs, Vim and web
interface support
Changes in release 15.1: Improvements to interface and major bug fixes
