Hello community, here is the log from the commit of package evince for openSUSE:11.3 checked in at Thu Mar 17 10:25:09 CET 2011.
-------- --- old-versions/11.3/UPDATES/all/evince/evince.changes 2011-02-17 15:29:05.000000000 +0100 +++ /mounts/work_src_done/11.3/evince/evince.changes 2011-03-16 22:20:42.000000000 +0100 @@ -1,0 +2,6 @@ +Wed Mar 16 19:33:59 UTC 2011 - [email protected] + +- Update evince-dvi-vulnerability-again.patch to also + fix bgo#643882 + +------------------------------------------------------------------- calling whatdependson for 11.3-i586 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ evince.spec ++++++ --- /var/tmp/diff_new_pack.hcEUnn/_old 2011-03-17 10:24:43.000000000 +0100 +++ /var/tmp/diff_new_pack.hcEUnn/_new 2011-03-17 10:24:43.000000000 +0100 @@ -20,7 +20,7 @@ Name: evince Version: 2.30.1 -Release: 3.<RELEASE5> +Release: 3.<RELEASE6> %define _major_version 2.30 License: GPLv2+ Summary: GNOME Document Viewer ++++++ evince-dvi-vulnerability-again.patch ++++++ --- /var/tmp/diff_new_pack.hcEUnn/_old 2011-03-17 10:24:44.000000000 +0100 +++ /var/tmp/diff_new_pack.hcEUnn/_new 2011-03-17 10:24:44.000000000 +0100 @@ -1,3 +1,4 @@ +#following patch contains original commit + fix for bgo#643882 commit 439c5070022eab6cef7266aab47f978058012c72 Author: Vincent Untz <[email protected]> Date: Thu Feb 17 15:23:39 2011 +0100 @@ -8,16 +9,25 @@ https://bugzilla.gnome.org/show_bug.cgi?id=640923 -diff --git a/backend/dvi/mdvi-lib/afmparse.c b/backend/dvi/mdvi-lib/afmparse.c -index 361e23d..e1cd115 100644 ---- a/backend/dvi/mdvi-lib/afmparse.c -+++ b/backend/dvi/mdvi-lib/afmparse.c +Index: evince-2.30.1/backend/dvi/mdvi-lib/afmparse.c +=================================================================== +--- evince-2.30.1.orig/backend/dvi/mdvi-lib/afmparse.c ++++ evince-2.30.1/backend/dvi/mdvi-lib/afmparse.c +@@ -160,7 +160,7 @@ static char *token(FILE *stream) + + idx = 0; + while (ch != EOF && ch != ' ' && ch != lineterm +- && ch != '\t' && ch != ':' && ch != ';' && idx < MAX_NAME) ++ && ch != '\t' && ch != ':' && ch != ';' && idx < (MAX_NAME - 1)) + { + ident[idx++] = ch; + ch = fgetc(stream); @@ -190,7 +190,7 @@ static char *linetoken(FILE *stream) while ((ch = fgetc(stream)) == ' ' || ch == '\t' ); idx = 0; - while (ch != EOF && ch != lineterm) -+ while (ch != EOF && ch != lineterm && idx < MAX_NAME) ++ while (ch != EOF && ch != lineterm && idx < (MAX_NAME - 1)) { ident[idx++] = ch; ch = fgetc(stream); ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
