OpenPKG CVS Repository
http://cvs.openpkg.org/
____________________________________________________________________________
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 19-May-2004 22:01:23
Branch: HEAD Handle: 2004051921012200
Modified files:
openpkg-src/tla tla.patch tla.spec
Log:
apply security fix (OpenPKG-SA-2004.024-neon, CAN-2004-0398)
Summary:
Revision Changes Path
1.2 +47 -0 openpkg-src/tla/tla.patch
1.15 +1 -1 openpkg-src/tla/tla.spec
____________________________________________________________________________
patch -p0 <<'@@ .'
Index: openpkg-src/tla/tla.patch
============================================================================
$ cvs diff -u -r1.1 -r1.2 tla.patch
--- openpkg-src/tla/tla.patch 16 Apr 2004 16:40:52 -0000 1.1
+++ openpkg-src/tla/tla.patch 19 May 2004 20:01:22 -0000 1.2
@@ -1,3 +1,5 @@
+Security Fix
+
Index: src/tla/libneon/ne_207.c
--- src/tla/libneon/ne_207.c.orig 2003-12-06 20:35:28.000000000 +0100
+++ src/tla/libneon/ne_207.c 2004-04-16 18:38:39.000000000 +0200
@@ -73,3 +75,48 @@
}
#ifdef HAVE_LIBXML
+
+-----------------------------------------------------------------------------
+
+Security Fix
+OpenPKG-SA-2004.024-neon, CAN-2004-0398
+
+Index: src/tla/libneon/ne_dates.c
+--- src/tla/libneon/ne_dates.c 2 May 2004 16:00:35 -0000 1.28.2.1
++++ src/tla/libneon/ne_dates.c 2 May 2004 18:21:53 -0000
+@@ -47,7 +47,7 @@
+ /* RFC1123: Sun, 06 Nov 1994 08:49:37 GMT */
+ #define RFC1123_FORMAT "%3s, %02d %3s %4d %02d:%02d:%02d GMT"
+ /* RFC850: Sunday, 06-Nov-94 08:49:37 GMT */
+-#define RFC1036_FORMAT "%s %2d-%3s-%2d %2d:%2d:%2d GMT"
++#define RFC1036_FORMAT "%10s %2d-%3s-%2d %2d:%2d:%2d GMT"
+ /* asctime: Wed Jun 30 21:49:08 1993 */
+ #define ASCTIME_FORMAT "%3s %3s %2d %2d:%2d:%2d %4d"
+
+@@ -133,7 +133,7 @@
+ time_t ne_rfc1123_parse(const char *date)
+ {
+ struct tm gmt = {0};
+- static char wkday[4], mon[4];
++ char wkday[4], mon[4];
+ int n;
+ /* it goes: Sun, 06 Nov 1994 08:49:37 GMT */
+ n = sscanf(date, RFC1123_FORMAT,
+@@ -156,7 +156,7 @@
+ {
+ struct tm gmt = {0};
+ int n;
+- static char wkday[10], mon[4];
++ char wkday[11], mon[4];
+ /* RFC850/1036 style dates: Sunday, 06-Nov-94 08:49:37 GMT */
+ n = sscanf(date, RFC1036_FORMAT,
+ wkday, &gmt.tm_mday, mon, &gmt.tm_year,
+@@ -189,7 +189,7 @@
+ {
+ struct tm gmt = {0};
+ int n;
+- static char wkday[4], mon[4];
++ char wkday[4], mon[4];
+ n = sscanf(date, ASCTIME_FORMAT,
+ wkday, mon, &gmt.tm_mday,
+ &gmt.tm_hour, &gmt.tm_min, &gmt.tm_sec,
@@ .
patch -p0 <<'@@ .'
Index: openpkg-src/tla/tla.spec
============================================================================
$ cvs diff -u -r1.14 -r1.15 tla.spec
--- openpkg-src/tla/tla.spec 16 Apr 2004 16:40:52 -0000 1.14
+++ openpkg-src/tla/tla.spec 19 May 2004 20:01:22 -0000 1.15
@@ -34,7 +34,7 @@
Group: SCM
License: GPL
Version: 1.2
-Release: 20040416
+Release: 20040519
# list of sources
Source0: ftp://ftp.gnu.org/gnu/gnu-arch/tla-%{version}.tar.gz
@@ .
______________________________________________________________________
The OpenPKG Project www.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
