[packages/t1lib] - fix format string warnings - rel 7

Thu, 13 Dec 2012 04:48:59 -0800 

commit 069e12888705cc8be0061dfdad5e87567f53c61b
Author: Jan Rękorajski <[email protected]>
Date:   Thu Dec 13 13:48:38 2012 +0100

    - fix format string warnings
    - rel 7

 format-security.patch | 22 ++++++++++++++++++++++
 t1lib.spec            |  4 +++-
 2 files changed, 25 insertions(+), 1 deletion(-)
---
diff --git a/t1lib.spec b/t1lib.spec
index eefef88..a03fcb8 100644
--- a/t1lib.spec
+++ b/t1lib.spec
@@ -9,7 +9,7 @@ Summary(ru.UTF-8):      Растеризатор шрифтов Type 1
 Summary(uk.UTF-8):     Растеризатор шрифтів Type 1
 Name:          t1lib
 Version:       5.1.2
-Release:       6
+Release:       7
 License:       GPL v2
 Group:         Libraries
 Source0:       
ftp://sunsite.unc.edu/pub/Linux/libs/graphics/%{name}-%{version}.tar.gz
@@ -26,6 +26,7 @@ Patch4:               %{name}-xglyph.patch
 Patch5:                %{name}-aclocal.patch
 Patch6:                %{name}-link.patch
 Patch7:                %{name}-5.1.2-CVE-2010-2642.patch
+Patch8:                format-security.patch
 BuildRequires: autoconf
 BuildRequires: automake
 BuildRequires: libtool
@@ -269,6 +270,7 @@ Program testowy dla t1lib z interfejsem X11.
 %patch5 -p1
 %patch6 -p1
 %patch7 -p1
+%patch8 -p1
 
 rm -f ac-tools/aclocal.m4
 
diff --git a/format-security.patch b/format-security.patch
new file mode 100644
index 0000000..6c196b3
--- /dev/null
+++ b/format-security.patch
@@ -0,0 +1,22 @@
+--- t1lib-5.1.2/lib/type1/objects.h~   2007-12-23 16:49:42.000000000 +0100
++++ t1lib-5.1.2/lib/type1/objects.h    2012-12-13 13:46:42.872059259 +0100
+@@ -214,7 +214,7 @@
+ /*SHARED*/
+ /* NDW: personally, I want to see status and error messages! */
+ #define IfTrace0(condition,model)                                 \
+-        {if (condition) printf(model);}
++        {if (condition) printf("%s",model);}
+ #define IfTrace1(condition,model,arg0)                            \
+         {if (condition) printf(model,arg0);}
+ #define IfTrace2(condition,model,arg0,arg1)                       \
+--- t1lib-5.1.2/lib/t1lib/t1subset.c~  2007-12-23 16:49:42.000000000 +0100
++++ t1lib-5.1.2/lib/t1lib/t1subset.c   2012-12-13 13:47:33.042057487 +0100
+@@ -759,7 +759,7 @@
+            tr_len);
+     T1_PrintLog( "T1_SubsetFont()", err_warn_msg_buf,
+                T1LOG_DEBUG);
+-    l+=sprintf( &(trailerbuf[l]), linebuf); /* contains the PostScript 
trailer */
++    l+=sprintf( &(trailerbuf[l]), "%s", linebuf); /* contains the PostScript 
trailer */
+   }
+   
+   /* compute size of output file */
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/t1lib.git/commitdiff/069e12888705cc8be0061dfdad5e87567f53c61b

_______________________________________________
pld-cvs-commit mailing list
[email protected]
http://lists.pld-linux.org/mailman/listinfo/pld-cvs-commit

Reply via email to