Bug#583435: NMU diff

[Stefan Fritsch]

Hi,

I have uploaded an NMU that changes the state file dir to 
/var/run/rpcbind. Diff is attached.

Cheers,
Stefandiff -Nru rpcbind-0.2.0/debian/changelog rpcbind-0.2.0/debian/changelog
--- rpcbind-0.2.0/debian/changelog      2010-01-09 04:03:44.000000000 +0100
+++ rpcbind-0.2.0/debian/changelog      2010-07-17 21:49:33.000000000 +0200
@@ -1,3 +1,11 @@
+rpcbind (0.2.0-4.1) unstable; urgency=high
+
+  * Non-maintainer upload by the security team.
+  * CVE-2010-2061: Store state files in /var/run/rpcbind instead of /tmp.
+    Closes: #583435
+
+ -- Stefan Fritsch <s...@debian.org>  Sat, 17 Jul 2010 21:47:56 +0200
+
 rpcbind (0.2.0-4) unstable; urgency=low
 
   * -w is the default option 
diff -Nru rpcbind-0.2.0/debian/init.d rpcbind-0.2.0/debian/init.d
--- rpcbind-0.2.0/debian/init.d 2010-01-09 04:24:00.000000000 +0100
+++ rpcbind-0.2.0/debian/init.d 2010-07-17 22:13:33.000000000 +0200
@@ -4,8 +4,8 @@
 
 ### BEGIN INIT INFO
 # Provides:          rpcbind
-# Required-Start:    $network
-# Required-Stop:     $network
+# Required-Start:    $network $local_fs
+# Required-Stop:     $network $local_fs
 # Default-Start:     S 2 3 4 5
 # Default-Stop:      0 1 6
 # Short-Description: RPC portmapper replacement
@@ -21,6 +21,7 @@
 . /lib/lsb/init-functions
 
 OPTIONS="-w"
+STATEDIR=/var/run/rpcbind
 if [ -f /etc/default/rpcbind ]
 then
     . /etc/default/rpcbind
@@ -31,6 +32,14 @@
 
 start ()
 {
+    if [ ! -d $STATEDIR ] ; then
+        mkdir $STATEDIR
+    fi
+    if [ ! -O $STATEDIR ] ; then
+        log_begin_msg "$STATEDIR not owned by root"
+        log_end_msg 1
+        exit 1
+    fi
     log_begin_msg "Starting rpcbind daemon..."
     ps=$( ps aux | grep /sbin/rpcbind | grep -v grep )
     if [ -n "$ps" ]
diff -Nru rpcbind-0.2.0/debian/postrm rpcbind-0.2.0/debian/postrm
--- rpcbind-0.2.0/debian/postrm 1970-01-01 01:00:00.000000000 +0100
+++ rpcbind-0.2.0/debian/postrm 2010-07-17 22:09:34.000000000 +0200
@@ -0,0 +1,9 @@
+#!/bin/sh
+
+set -e
+
+if [ "$1" = purge ] ; then
+       rm -rf /var/run/rpcbind /var/run/rpcbind.lock /var/run/rpcbind.sock
+fi
+
+#DEBHELPER#
diff -Nru rpcbind-0.2.0/debian/rules rpcbind-0.2.0/debian/rules
--- rpcbind-0.2.0/debian/rules  2010-01-09 04:14:00.000000000 +0100
+++ rpcbind-0.2.0/debian/rules  2010-07-17 21:43:54.000000000 +0200
@@ -18,7 +18,7 @@
        dh_testdir
        # Add here commands to configure the package.
        cp -f /usr/share/misc/config.sub /usr/share/misc/config.guess .
-       ./configure $(CROSS) --prefix=/usr --mandir=\$${prefix}/share/man 
--infodir=\$${prefix}/share/info CFLAGS="$(CFLAGS)" LDFLAGS="-Wl,-z,defs" 
--enable-warmstarts --enable-libwrap
+       ./configure $(CROSS) --prefix=/usr --mandir=\$${prefix}/share/man 
--infodir=\$${prefix}/share/info CFLAGS="$(CFLAGS)" LDFLAGS="-Wl,-z,defs" 
--enable-warmstarts --enable-libwrap --with-statedir=/var/run/rpcbind
 
 build: build-stamp