[CVS] OpenPKG: OPENPKG_1_3_SOLID: openpkg-src/sitecopy/ sitecopy.patch...

Wed, 19 May 2004 14:16:49 -0700 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Ralf S. Engelschall
  Root:   /e/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   19-May-2004 22:06:05
  Branch: OPENPKG_1_3_SOLID                Handle: 2004051921060500

  Modified files:           (Branch: OPENPKG_1_3_SOLID)
    openpkg-src/sitecopy    sitecopy.patch sitecopy.spec

  Log:
    apply security fix (OpenPKG-SA-2004.024-neon, CAN-2004-0398)

  Summary:
    Revision    Changes     Path
    1.1.4.2     +45 -0      openpkg-src/sitecopy/sitecopy.patch
    1.24.2.2.2.3+1  -1      openpkg-src/sitecopy/sitecopy.spec
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/sitecopy/sitecopy.patch
  ============================================================================
  $ cvs diff -u -r1.1.4.1 -r1.1.4.2 sitecopy.patch
  --- openpkg-src/sitecopy/sitecopy.patch       16 Apr 2004 16:34:36 -0000      1.1.4.1
  +++ openpkg-src/sitecopy/sitecopy.patch       19 May 2004 20:06:05 -0000      1.1.4.2
  @@ -73,3 +73,48 @@
    }
    
    #ifdef HAVE_LIBXML
  +
  +-----------------------------------------------------------------------------
  +
  +Security Fix
  +OpenPKG-SA-2004.024-neon, CAN-2004-0398
  +
  +Index: libneon/ne_dates.c
  +--- libneon/ne_dates.c.orig  2003-04-07 21:01:46.000000000 +0200
  ++++ libneon/ne_dates.c       2004-05-19 21:55:14.000000000 +0200
  +@@ -47,7 +47,7 @@
  + /* RFC1123: Sun, 06 Nov 1994 08:49:37 GMT */
  + #define RFC1123_FORMAT "%3s, %02d %3s %4d %02d:%02d:%02d GMT"
  + /* RFC850:  Sunday, 06-Nov-94 08:49:37 GMT */
  +-#define RFC1036_FORMAT "%s %2d-%3s-%2d %2d:%2d:%2d GMT"
  ++#define RFC1036_FORMAT "%10s %2d-%3s-%2d %2d:%2d:%2d GMT"
  + /* asctime: Wed Jun 30 21:49:08 1993 */
  + #define ASCTIME_FORMAT "%3s %3s %2d %2d:%2d:%2d %4d"
  + 
  +@@ -133,7 +133,7 @@
  + time_t ne_rfc1123_parse(const char *date) 
  + {
  +     struct tm gmt = {0};
  +-    static char wkday[4], mon[4];
  ++    char wkday[4], mon[4];
  +     int n;
  + /*  it goes: Sun, 06 Nov 1994 08:49:37 GMT */
  +     n = sscanf(date, RFC1123_FORMAT,
  +@@ -156,7 +156,7 @@
  + {
  +     struct tm gmt = {0};
  +     int n;
  +-    static char wkday[10], mon[4];
  ++    char wkday[11], mon[4];
  +     /* RFC850/1036 style dates: Sunday, 06-Nov-94 08:49:37 GMT */
  +     n = sscanf(date, RFC1036_FORMAT,
  +             wkday, &gmt.tm_mday, mon, &gmt.tm_year,
  +@@ -189,7 +189,7 @@
  + {
  +     struct tm gmt = {0};
  +     int n;
  +-    static char wkday[4], mon[4];
  ++    char wkday[4], mon[4];
  +     n = sscanf(date, ASCTIME_FORMAT,
  +             wkday, mon, &gmt.tm_mday, 
  +             &gmt.tm_hour, &gmt.tm_min, &gmt.tm_sec,
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/sitecopy/sitecopy.spec
  ============================================================================
  $ cvs diff -u -r1.24.2.2.2.2 -r1.24.2.2.2.3 sitecopy.spec
  --- openpkg-src/sitecopy/sitecopy.spec        16 Apr 2004 16:34:36 -0000      
1.24.2.2.2.2
  +++ openpkg-src/sitecopy/sitecopy.spec        19 May 2004 20:06:05 -0000      
1.24.2.2.2.3
  @@ -33,7 +33,7 @@
   Group:        Web
   License:      GPL
   Version:      0.13.3
  -Release:      1.3.1
  +Release:      1.3.2
   
   #   list of sources
   Source0:      http://www.lyra.org/sitecopy/sitecopy-%{version}.tar.gz
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [EMAIL PROTECTED]

Reply via email to