commit bash for openSUSE:12.2:Update
Hello community, here is the log from the commit of package bash for openSUSE:12.2:Update checked in at 2013-07-29 14:51:49 Comparing /work/SRC/openSUSE:12.2:Update/bash (Old) and /work/SRC/openSUSE:12.2:Update/.bash.new (New) Package is bash Changes: New Changes file: NO CHANGES FILE!!! Other differences: -- ++ _link ++ --- /var/tmp/diff_new_pack.mChFjM/_old 2013-07-29 14:51:51.0 +0200 +++ /var/tmp/diff_new_pack.mChFjM/_new 2013-07-29 14:51:51.0 +0200 @@ -1 +1 @@ -link package='bash.1484' cicount='copy' / +link package='bash.1880' cicount='copy' / -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit bash for openSUSE:12.2
Hello community, here is the log from the commit of package bash for openSUSE:12.2 checked in at 2012-07-31 14:03:26 Comparing /work/SRC/openSUSE:12.2/bash (Old) and /work/SRC/openSUSE:12.2/.bash.new (New) Package is bash, Maintainer is wer...@suse.com Changes: --- /work/SRC/openSUSE:12.2/bash/bash.changes 2012-06-26 17:45:05.0 +0200 +++ /work/SRC/openSUSE:12.2/.bash.new/bash.changes 2012-07-31 14:03:31.0 +0200 @@ -1,0 +2,6 @@ +Wed Jul 11 06:36:05 UTC 2012 - wer...@suse.de + +- Avoid possible buffer overflow when expanding the /dev/fd prefix + with e.g. the test builtin (bnc#770795) + +--- New: bash42-033-bnc770795.patch Other differences: -- ++ bash.spec ++ --- /var/tmp/diff_new_pack.9yoQu2/_old 2012-07-31 14:03:52.0 +0200 +++ /var/tmp/diff_new_pack.9yoQu2/_new 2012-07-31 14:03:52.0 +0200 @@ -81,6 +81,7 @@ Patch24:readline-6.2-metamode.patch Patch25:readline-6.2-endpw.dif Patch30:readline-6.2-destdir.patch +Patch33:bash42-033-bnc770795.patch Patch40:bash-4.1-bash.bashrc.dif Patch42:audit-patch Patch46:man2html-no-timestamp.patch @@ -288,6 +289,7 @@ %patch23 -p0 -b .conf %patch24 -p0 -b .metamode #%patch25 -p0 -b .endpw +%patch33 -p0 -b .033 %patch40 -p0 -b .bashrc %patch42 -p1 -b .audit %patch46 -p0 -b .notimestamp ++ bash42-033-bnc770795.patch ++ BASH PATCH REPORT = Bash-Release: 4.2 Patch-ID: bash42-033 Bug-Reported-by:David Leverton levert...@googlemail.com Bug-Reference-ID: 4fcce737.1060...@googlemail.com Bug-Reference-URL: Bug-Description: Bash uses a static buffer when expanding the /dev/fd prefix for the test and conditional commands, among other uses, when it should use a dynamic buffer to avoid buffer overflow. Patch (apply with `patch -p0'): *** ../bash-4.2-patched/lib/sh/eaccess.c2011-01-08 20:50:10.0 -0500 --- lib/sh/eaccess.c2012-06-04 21:06:43.0 -0400 *** *** 83,86 --- 83,88 struct stat *finfo; { + static char *pbuf = 0; + if (*path == '\0') { *** *** 107,111 On most systems, with the notable exception of linux, this is effectively a no-op. */ ! char pbuf[32]; strcpy (pbuf, DEV_FD_PREFIX); strcat (pbuf, path + 8); --- 109,113 On most systems, with the notable exception of linux, this is effectively a no-op. */ ! pbuf = xrealloc (pbuf, sizeof (DEV_FD_PREFIX) + strlen (path + 8)); strcpy (pbuf, DEV_FD_PREFIX); strcat (pbuf, path + 8); -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit bash for openSUSE:12.2:Update
Hello community, here is the log from the commit of package bash for openSUSE:12.2:Update checked in at 2012-07-23 15:34:14 Comparing /work/SRC/openSUSE:12.2:Update/bash (Old) and /work/SRC/openSUSE:12.2:Update/.bash.new (New) Package is bash, Maintainer is wer...@suse.com Changes: New Changes file: NO CHANGES FILE!!! New: _link Other differences: -- ++ _link ++ link package='bash.647' cicount='copy' / -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit bash for openSUSE:12.2
Hello community, here is the log from the commit of package bash for openSUSE:12.2 checked in at 2012-06-26 17:45:03 Comparing /work/SRC/openSUSE:12.2/bash (Old) and /work/SRC/openSUSE:12.2/.bash.new (New) Package is bash, Maintainer is wer...@suse.com Changes: --- /work/SRC/openSUSE:12.2/bash/bash.changes 2012-06-25 15:15:47.0 +0200 +++ /work/SRC/openSUSE:12.2/.bash.new/bash.changes 2012-06-26 17:45:05.0 +0200 @@ -1,0 +2,17 @@ +Tue Jun 26 12:49:53 UTC 2012 - cfarr...@suse.com + +- license update: GPL-3.0+ + Upstream declares the bash license to be GPL-3.0+ - not GPL-2.0+ + +--- +Mon Jun 11 11:51:12 UTC 2012 - wer...@suse.de + +- Enable auditing patch by simply applying it + +--- +Wed May 23 23:37:53 UTC 2012 - meiss...@suse.com + +- added auditing patch from + http://git.savannah.gnu.org/cgit/bash.git/plain/CWRU/audit-patch + +--- New: audit-patch Other differences: -- ++ bash.spec ++ --- /var/tmp/diff_new_pack.eWC0sU/_old 2012-06-26 17:45:05.0 +0200 +++ /var/tmp/diff_new_pack.eWC0sU/_new 2012-06-26 17:45:05.0 +0200 @@ -17,6 +17,7 @@ Name: bash +BuildRequires: audit-devel BuildRequires: autoconf BuildRequires: bison BuildRequires: ncurses-devel @@ -37,7 +38,7 @@ Version:4.2 Release:0 Summary:The GNU Bourne-Again Shell -License:GPL-2.0+ +License:GPL-3.0+ Group: System/Shells Url:http://www.gnu.org/software/bash/bash.html # Git: http://git.savannah.gnu.org/cgit/bash.git @@ -81,6 +82,7 @@ Patch25:readline-6.2-endpw.dif Patch30:readline-6.2-destdir.patch Patch40:bash-4.1-bash.bashrc.dif +Patch42:audit-patch Patch46:man2html-no-timestamp.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %global _sysconfdir /etc @@ -287,6 +289,7 @@ %patch24 -p0 -b .metamode #%patch25 -p0 -b .endpw %patch40 -p0 -b .bashrc +%patch42 -p1 -b .audit %patch46 -p0 -b .notimestamp %patch0 -p0 -b .0 pushd ../readline-%{rl_vers}%{extend} ++ audit-patch ++ diff -up bash-4.0/config.h.in.audit bash-4.0/config.h.in --- bash-4.0/config.h.in.audit 2009-01-21 11:34:34.0 -0500 +++ bash-4.0/config.h.in2009-01-21 11:34:35.0 -0500 @@ -1077,6 +1077,14 @@ /* End additions for lib/intl */ + +/* Additions for lib/readline */ + +/* Define if you have linux/audit.h and it defines AUDIT_USER_TTY */ +#undef HAVE_DECL_AUDIT_USER_TTY + +/* End additions for lib/readline */ + #include config-bot.h #endif /* _CONFIG_H_ */ diff -up bash-4.0/configure.in.audit bash-4.0/configure.in --- bash-4.0/configure.in.audit 2009-01-21 11:34:34.0 -0500 +++ bash-4.0/configure.in 2009-01-21 11:34:35.0 -0500 @@ -875,6 +875,8 @@ BASH_FUNC_DUP2_CLOEXEC_CHECK BASH_SYS_PGRP_SYNC BASH_SYS_SIGNAL_VINTAGE +AC_CHECK_DECLS([AUDIT_USER_TTY],,, [[#include linux/audit.h]]) + dnl checking for the presence of certain library symbols BASH_SYS_ERRLIST BASH_SYS_SIGLIST diff -up bash-4.0/lib/readline/readline.c.audit bash-4.0/lib/readline/readline.c --- bash-4.0/lib/readline/readline.c.audit 2009-01-21 11:34:34.0 -0500 +++ bash-4.0/lib/readline/readline.c2009-01-21 11:40:12.0 -0500 @@ -55,6 +55,12 @@ extern int errno; #endif /* !errno */ +#if defined (HAVE_DECL_AUDIT_USER_TTY) +# include sys/socket.h +# include linux/audit.h +# include linux/netlink.h +#endif + /* System-specific feature definitions and include files. */ #include rldefs.h #include rlmbutil.h @@ -297,7 +303,47 @@ rl_set_prompt (prompt) rl_visible_prompt_length = rl_expand_prompt (rl_prompt); return 0; } - + +#if defined (HAVE_DECL_AUDIT_USER_TTY) +/* Report STRING to the audit system. */ +static void +audit_tty (char *string) +{ + struct sockaddr_nl addr; + struct msghdr msg; + struct nlmsghdr nlm; + struct iovec iov[2]; + size_t size; + int fd; + + size = strlen (string) + 1; + fd = socket (AF_NETLINK, SOCK_RAW, NETLINK_AUDIT); + if (fd 0) +return; + nlm.nlmsg_len = NLMSG_LENGTH (size); + nlm.nlmsg_type = AUDIT_USER_TTY; + nlm.nlmsg_flags = NLM_F_REQUEST; + nlm.nlmsg_seq = 0; + nlm.nlmsg_pid = 0; + iov[0].iov_base = nlm; + iov[0].iov_len = sizeof (nlm); + iov[1].iov_base = string; + iov[1].iov_len = size; + addr.nl_family = AF_NETLINK; + addr.nl_pid = 0; + addr.nl_groups = 0; + msg.msg_name = addr; + msg.msg_namelen = sizeof (addr); + msg.msg_iov = iov; + msg.msg_iovlen = 2; + msg.msg_control = NULL; +