[CVS] OpenPKG: openpkg-src/php/ php.patch php.spec

Tue, 04 Oct 2005 12:54:56 -0700 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Ralf S. Engelschall
  Root:   /v/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   04-Oct-2005 21:54:54
  Branch: HEAD                             Handle: 2005100420545400

  Modified files:
    openpkg-src/php         php.patch php.spec

  Log:
    Security Fix (CAN-2005-3054)

  Summary:
    Revision    Changes     Path
    1.11        +19 -0      openpkg-src/php/php.patch
    1.111       +1  -1      openpkg-src/php/php.spec
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/php/php.patch
  ============================================================================
  $ cvs diff -u -r1.10 -r1.11 php.patch
  --- openpkg-src/php/php.patch 1 Apr 2005 06:19:31 -0000       1.10
  +++ openpkg-src/php/php.patch 4 Oct 2005 19:54:54 -0000       1.11
  @@ -89,3 +89,22 @@
    # Variable declaration
    prefix='@prefix@'
    phpdir="$prefix/lib/php/build"
  +
  +-----------------------------------------------------------------------------
  +
  +Security Fix (CAN-2005-3054)
  +
  +Index: main/fopen_wrappers.c
  +--- main/fopen_wrappers.c.orig       2005-02-03 00:44:07 +0100
  ++++ main/fopen_wrappers.c    2005-10-04 21:52:15 +0200
  +@@ -120,8 +120,8 @@
  +             /* Handler for basedirs that end with a / */
  +             resolved_basedir_len = strlen(resolved_basedir);
  +             if (basedir[strlen(basedir) - 1] == PHP_DIR_SEPARATOR) {
  +-                    if (resolved_basedir[resolved_basedir_len - 1] == '/') {
  +-                            resolved_basedir[resolved_basedir_len - 1] = 
PHP_DIR_SEPARATOR;
  ++                    if (resolved_basedir[resolved_basedir_len - 1] != 
PHP_DIR_SEPARATOR) {
  ++                            resolved_basedir[resolved_basedir_len] = 
PHP_DIR_SEPARATOR;
  +                             resolved_basedir[++resolved_basedir_len] = '\0';
  +                     }
  +             }
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/php/php.spec
  ============================================================================
  $ cvs diff -u -r1.110 -r1.111 php.spec
  --- openpkg-src/php/php.spec  11 Jul 2005 17:43:04 -0000      1.110
  +++ openpkg-src/php/php.spec  4 Oct 2005 19:54:54 -0000       1.111
  @@ -37,7 +37,7 @@
   Group:        Language
   License:      PHP
   Version:      %{V_php}
  -Release:      20050711
  +Release:      20051004
   
   #   package options
   %option       with_bc                   no
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     openpkg-cvs@openpkg.org

Reply via email to