[CVS] OpenPKG: OPENPKG_1_2_SOLID: openpkg-src/postgresql/ postgresql.p...

Thu, 30 Oct 2003 02:18:48 -0800 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Ralf S. Engelschall
  Root:   /e/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src openpkg-web          Date:   30-Oct-2003 10:14:26
  Branch: OPENPKG_1_2_SOLID HEAD           Handle: 2003103009142401

  Added files:              (Branch: OPENPKG_1_2_SOLID)
    openpkg-src/postgresql  postgresql.patch
  Modified files:
    openpkg-web             news.txt
  Modified files:           (Branch: OPENPKG_1_2_SOLID)
    openpkg-src/postgresql  postgresql.spec

  Log:
    Security Bugfixes: CAN-2003-0901, OpenPKG-SA-2003.047-postgresql

  Summary:
    Revision    Changes     Path
    1.1.4.1     +24 -0      openpkg-src/postgresql/postgresql.patch
    1.31.2.1.2.4+1  -1      openpkg-src/postgresql/postgresql.spec
    1.7224      +1  -0      openpkg-web/news.txt
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/postgresql/postgresql.patch
  ============================================================================
  $ cvs diff -u -r0 -r1.1.4.1 postgresql.patch
  --- /dev/null 2003-10-30 10:14:25.000000000 +0100
  +++ postgresql.patch  2003-10-30 10:14:25.000000000 +0100
  @@ -0,0 +1,24 @@
  +Security Bugfix for Buffer Overflows
  +CAN-2003-0901, OpenPKG-SA-2003.047-postgresql
  +
  +Index: src/backend/utils/adt/ascii.c
  +--- src/backend/utils/adt/ascii.c.orig       2002-08-29 09:22:26.000000000 +0200
  ++++ src/backend/utils/adt/ascii.c    2003-10-30 10:03:42.000000000 +0100
  +@@ -71,7 +71,7 @@
  +     /*
  +      * Encode
  +      */
  +-    for (x = src; x <= src_end; x++)
  ++    for (x = src; x < src_end; x++)
  +     {
  +             if (*x < 128)
  +                     *desc++ = *x;
  +@@ -93,7 +93,7 @@
  + {
  +     pg_to_ascii(
  +                             (unsigned char *) VARDATA(data),                /* src 
*/
  +-                            VARDATA(data) + VARSIZE(data),  /* src end */
  ++                            (unsigned char *) (data) + VARSIZE(data),       /* src 
end */
  +                             (unsigned char *) VARDATA(data),                /* 
desc */
  +                             enc);                   /* encoding */
  + 
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/postgresql/postgresql.spec
  ============================================================================
  $ cvs diff -u -r1.31.2.1.2.3 -r1.31.2.1.2.4 postgresql.spec
  --- openpkg-src/postgresql/postgresql.spec    7 Mar 2003 11:24:33 -0000       
1.31.2.1.2.3
  +++ openpkg-src/postgresql/postgresql.spec    30 Oct 2003 09:14:25 -0000      
1.31.2.1.2.4
  @@ -40,7 +40,7 @@
   Group:        Database
   License:      GPL
   Version:      %{V_postgresql}
  -Release:      1.2.2
  +Release:      1.2.3
   
   #   package options
   %option       with_cxx      no
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-web/news.txt
  ============================================================================
  $ cvs diff -u -r1.7223 -r1.7224 news.txt
  --- openpkg-web/news.txt      30 Oct 2003 08:31:47 -0000      1.7223
  +++ openpkg-web/news.txt      30 Oct 2003 09:14:24 -0000      1.7224
  @@ -1,3 +1,4 @@
  +30-Oct-2003: Upgraded package: P<postgresql-7.3.1-1.2.3>
   30-Oct-2003: Upgraded package: P<delegate-8.7.6-20031030>
   30-Oct-2003: Upgraded package: P<uvscan-4.24+4300-20031030>
   30-Oct-2003: Upgraded package: P<flawfinder-1.24-20031030>
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [EMAIL PROTECTED]

Reply via email to