[CVS] OpenPKG: OPENPKG_2_2_SOLID: openpkg-src/gzip/ gzip.patch gzip.sp...

Fri, 10 Jun 2005 08:47:34 -0700 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Michael Schloh
  Root:   /v/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   10-Jun-2005 17:47:31
  Branch: OPENPKG_2_2_SOLID                Handle: 2005061016473100

  Modified files:           (Branch: OPENPKG_2_2_SOLID)
    openpkg-src/gzip        gzip.patch gzip.spec

  Log:
    correct for OpenPKG-SA-2005.009-gzip (CAN-2005-1228)

  Summary:
    Revision    Changes     Path
    1.2.6.1     +17 -0      openpkg-src/gzip/gzip.patch
    1.33.6.2    +1  -1      openpkg-src/gzip/gzip.spec
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/gzip/gzip.patch
  ============================================================================
  $ cvs diff -u -r1.2 -r1.2.6.1 gzip.patch
  --- openpkg-src/gzip/gzip.patch       7 Oct 2003 09:27:51 -0000       1.2
  +++ openpkg-src/gzip/gzip.patch       10 Jun 2005 15:47:31 -0000      1.2.6.1
  @@ -22,3 +22,20 @@
    #ifndef MAXSEG_64K
        DECLARE(ush, tab_prefix, 1L<<BITS);
    #else
  +
  +OpenPKG-SA-2005.009 and CAN-2005-1228,
  +Patch taken from Debian:
  +  
http://bugs.debian.org/cgi-bin/bugreport.cgi/gzip.dirtraversal.patch?bug=305255&msg=3&att=2
  +--- gzip.c.orig      2002-09-28 09:38:43 +0200
  ++++ gzip.c   2005-06-09 13:42:12 +0200
  +@@ -927,6 +927,10 @@
  +     }
  +     /* Create the output file */
  +     remove_ofname = 1;
  ++    char *baseout;
  ++    baseout = base_name(ofname);
  ++    strncpy(ofname, baseout, sizeof(ofname));
  ++    ofname[sizeof(ofname) - 1] = '\0';
  +     ofd = OPEN(ofname, flags, RW_USER);
  +     if (ofd == -1) {
  +         progerror(ofname);
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/gzip/gzip.spec
  ============================================================================
  $ cvs diff -u -r1.33.6.1 -r1.33.6.2 gzip.spec
  --- openpkg-src/gzip/gzip.spec        11 Oct 2004 18:55:44 -0000      1.33.6.1
  +++ openpkg-src/gzip/gzip.spec        10 Jun 2005 15:47:31 -0000      1.33.6.2
  @@ -34,7 +34,7 @@
   Group:        Compression
   License:      GPL
   Version:      1.3.5
  -Release:      2.2.0
  +Release:      2.2.1
   
   #   list of sources
   Source0:      ftp://alpha.gnu.org/gnu/gzip/gzip-%{version}.tar.gz
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [email protected]

Reply via email to