OpenPKG CVS Repository
http://cvs.openpkg.org/
____________________________________________________________________________
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 19-May-2004 21:58:25
Branch: HEAD Handle: 2004051920582400
Modified files:
openpkg-src/sitecopy sitecopy.patch sitecopy.spec
Log:
apply security fix (OpenPKG-SA-2004.024-neon, CAN-2004-0398)
Summary:
Revision Changes Path
1.2 +47 -0 openpkg-src/sitecopy/sitecopy.patch
1.39 +1 -1 openpkg-src/sitecopy/sitecopy.spec
____________________________________________________________________________
patch -p0 <<'@@ .'
Index: openpkg-src/sitecopy/sitecopy.patch
============================================================================
$ cvs diff -u -r1.1 -r1.2 sitecopy.patch
--- openpkg-src/sitecopy/sitecopy.patch 16 Apr 2004 16:27:16 -0000 1.1
+++ openpkg-src/sitecopy/sitecopy.patch 19 May 2004 19:58:24 -0000 1.2
@@ -1,3 +1,5 @@
+Security Fix
+
Index: libneon/ne_207.c
--- libneon/ne_207.c.orig 2003-07-23 23:48:21.000000000 +0200
+++ libneon/ne_207.c 2004-04-16 18:26:08.000000000 +0200
@@ -73,3 +75,48 @@
}
#ifdef HAVE_LIBXML
+
+-----------------------------------------------------------------------------
+
+Security Fix
+OpenPKG-SA-2004.024-neon, CAN-2004-0398
+
+Index: libneon/ne_dates.c
+--- libneon/ne_dates.c.orig 2003-04-07 21:01:46.000000000 +0200
++++ libneon/ne_dates.c 2004-05-19 21:55:14.000000000 +0200
+@@ -47,7 +47,7 @@
+ /* RFC1123: Sun, 06 Nov 1994 08:49:37 GMT */
+ #define RFC1123_FORMAT "%3s, %02d %3s %4d %02d:%02d:%02d GMT"
+ /* RFC850: Sunday, 06-Nov-94 08:49:37 GMT */
+-#define RFC1036_FORMAT "%s %2d-%3s-%2d %2d:%2d:%2d GMT"
++#define RFC1036_FORMAT "%10s %2d-%3s-%2d %2d:%2d:%2d GMT"
+ /* asctime: Wed Jun 30 21:49:08 1993 */
+ #define ASCTIME_FORMAT "%3s %3s %2d %2d:%2d:%2d %4d"
+
+@@ -133,7 +133,7 @@
+ time_t ne_rfc1123_parse(const char *date)
+ {
+ struct tm gmt = {0};
+- static char wkday[4], mon[4];
++ char wkday[4], mon[4];
+ int n;
+ /* it goes: Sun, 06 Nov 1994 08:49:37 GMT */
+ n = sscanf(date, RFC1123_FORMAT,
+@@ -156,7 +156,7 @@
+ {
+ struct tm gmt = {0};
+ int n;
+- static char wkday[10], mon[4];
++ char wkday[11], mon[4];
+ /* RFC850/1036 style dates: Sunday, 06-Nov-94 08:49:37 GMT */
+ n = sscanf(date, RFC1036_FORMAT,
+ wkday, &gmt.tm_mday, mon, &gmt.tm_year,
+@@ -189,7 +189,7 @@
+ {
+ struct tm gmt = {0};
+ int n;
+- static char wkday[4], mon[4];
++ char wkday[4], mon[4];
+ n = sscanf(date, ASCTIME_FORMAT,
+ wkday, mon, &gmt.tm_mday,
+ &gmt.tm_hour, &gmt.tm_min, &gmt.tm_sec,
@@ .
patch -p0 <<'@@ .'
Index: openpkg-src/sitecopy/sitecopy.spec
============================================================================
$ cvs diff -u -r1.38 -r1.39 sitecopy.spec
--- openpkg-src/sitecopy/sitecopy.spec 16 Apr 2004 16:27:16 -0000 1.38
+++ openpkg-src/sitecopy/sitecopy.spec 19 May 2004 19:58:24 -0000 1.39
@@ -34,7 +34,7 @@
Group: Web
License: GPL
Version: 0.13.4
-Release: 20040416
+Release: 20040519
# list of sources
Source0: http://www.lyra.org/sitecopy/sitecopy-%{version}.tar.gz
@@ .
______________________________________________________________________
The OpenPKG Project www.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
