[CVS] OpenPKG: openpkg-src/ghostscript/ ghostscript.patch ghostscript....

Wed, 06 Jul 2005 10:56:01 -0700 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Ralf S. Engelschall
  Root:   /v/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   06-Jul-2005 19:55:59
  Branch: HEAD                             Handle: 2005070618555900

  Modified files:
    openpkg-src/ghostscript ghostscript.patch ghostscript.spec

  Log:
    Fix zlib security issue (OpenPKG-SA-2005.013, CAN-2005-2096)

  Summary:
    Revision    Changes     Path
    1.12        +15 -0      openpkg-src/ghostscript/ghostscript.patch
    1.70        +1  -1      openpkg-src/ghostscript/ghostscript.spec
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/ghostscript/ghostscript.patch
  ============================================================================
  $ cvs diff -u -r1.11 -r1.12 ghostscript.patch
  --- openpkg-src/ghostscript/ghostscript.patch 23 Apr 2005 18:36:57 -0000      
1.11
  +++ openpkg-src/ghostscript/ghostscript.patch 6 Jul 2005 17:55:59 -0000       
1.12
  @@ -15,3 +15,18 @@
       /* other archs may want to add defines here, 
          or use the fallbacks in std.h */
    #endif
  +
  +Fix Security Issue (OpenPKG-SA-2005.013, CAN-2005-2096)
  +
  +Index: zlib/inftrees.c
  +--- zlib/inftrees.c.orig     2004-09-15 16:30:06 +0200
  ++++ zlib/inftrees.c  2005-07-06 18:31:14 +0200
  +@@ -134,7 +134,7 @@
  +         left -= count[len];
  +         if (left < 0) return -1;        /* over-subscribed */
  +     }
  +-    if (left > 0 && (type == CODES || (codes - count[0] != 1)))
  ++    if (left > 0 && (type == CODES || max != 1))
  +         return -1;                      /* incomplete set */
  + 
  +     /* generate offsets into symbol table for each length for sorting */
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/ghostscript/ghostscript.spec
  ============================================================================
  $ cvs diff -u -r1.69 -r1.70 ghostscript.spec
  --- openpkg-src/ghostscript/ghostscript.spec  23 Apr 2005 18:36:57 -0000      
1.69
  +++ openpkg-src/ghostscript/ghostscript.spec  6 Jul 2005 17:55:59 -0000       
1.70
  @@ -42,7 +42,7 @@
   Group:        Graphics
   License:      Aladdin
   Version:      %{V_real}
  -Release:      20050423
  +Release:      20050706
   
   #   package options
   %option       with_x11     yes
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [email protected]

Reply via email to