commit bash for openSUSE:12.2:Update
Hello community, here is the log from the commit of package bash for openSUSE:12.2:Update checked in at 2013-07-29 14:51:49 Comparing /work/SRC/openSUSE:12.2:Update/bash (Old) and /work/SRC/openSUSE:12.2:Update/.bash.new (New) Package is bash Changes: New Changes file: NO CHANGES FILE!!! Other differences: -- ++ _link ++ --- /var/tmp/diff_new_pack.mChFjM/_old 2013-07-29 14:51:51.0 +0200 +++ /var/tmp/diff_new_pack.mChFjM/_new 2013-07-29 14:51:51.0 +0200 @@ -1 +1 @@ -link package='bash.1484' cicount='copy' / +link package='bash.1880' cicount='copy' / -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit bash for openSUSE:12.2
Hello community,
here is the log from the commit of package bash for openSUSE:12.2 checked in at
2012-07-31 14:03:26
Comparing /work/SRC/openSUSE:12.2/bash (Old)
and /work/SRC/openSUSE:12.2/.bash.new (New)
Package is bash, Maintainer is wer...@suse.com
Changes:
--- /work/SRC/openSUSE:12.2/bash/bash.changes 2012-06-26 17:45:05.0
+0200
+++ /work/SRC/openSUSE:12.2/.bash.new/bash.changes 2012-07-31
14:03:31.0 +0200
@@ -1,0 +2,6 @@
+Wed Jul 11 06:36:05 UTC 2012 - wer...@suse.de
+
+- Avoid possible buffer overflow when expanding the /dev/fd prefix
+ with e.g. the test builtin (bnc#770795)
+
+---
New:
bash42-033-bnc770795.patch
Other differences:
--
++ bash.spec ++
--- /var/tmp/diff_new_pack.9yoQu2/_old 2012-07-31 14:03:52.0 +0200
+++ /var/tmp/diff_new_pack.9yoQu2/_new 2012-07-31 14:03:52.0 +0200
@@ -81,6 +81,7 @@
Patch24:readline-6.2-metamode.patch
Patch25:readline-6.2-endpw.dif
Patch30:readline-6.2-destdir.patch
+Patch33:bash42-033-bnc770795.patch
Patch40:bash-4.1-bash.bashrc.dif
Patch42:audit-patch
Patch46:man2html-no-timestamp.patch
@@ -288,6 +289,7 @@
%patch23 -p0 -b .conf
%patch24 -p0 -b .metamode
#%patch25 -p0 -b .endpw
+%patch33 -p0 -b .033
%patch40 -p0 -b .bashrc
%patch42 -p1 -b .audit
%patch46 -p0 -b .notimestamp
++ bash42-033-bnc770795.patch ++
BASH PATCH REPORT
=
Bash-Release: 4.2
Patch-ID: bash42-033
Bug-Reported-by:David Leverton levert...@googlemail.com
Bug-Reference-ID: 4fcce737.1060...@googlemail.com
Bug-Reference-URL:
Bug-Description:
Bash uses a static buffer when expanding the /dev/fd prefix for the test
and conditional commands, among other uses, when it should use a dynamic
buffer to avoid buffer overflow.
Patch (apply with `patch -p0'):
*** ../bash-4.2-patched/lib/sh/eaccess.c2011-01-08 20:50:10.0
-0500
--- lib/sh/eaccess.c2012-06-04 21:06:43.0 -0400
***
*** 83,86
--- 83,88
struct stat *finfo;
{
+ static char *pbuf = 0;
+
if (*path == '\0')
{
***
*** 107,111
On most systems, with the notable exception of linux, this is
effectively a no-op. */
! char pbuf[32];
strcpy (pbuf, DEV_FD_PREFIX);
strcat (pbuf, path + 8);
--- 109,113
On most systems, with the notable exception of linux, this is
effectively a no-op. */
! pbuf = xrealloc (pbuf, sizeof (DEV_FD_PREFIX) + strlen (path + 8));
strcpy (pbuf, DEV_FD_PREFIX);
strcat (pbuf, path + 8);
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit bash for openSUSE:12.2:Update
Hello community, here is the log from the commit of package bash for openSUSE:12.2:Update checked in at 2012-07-23 15:34:14 Comparing /work/SRC/openSUSE:12.2:Update/bash (Old) and /work/SRC/openSUSE:12.2:Update/.bash.new (New) Package is bash, Maintainer is wer...@suse.com Changes: New Changes file: NO CHANGES FILE!!! New: _link Other differences: -- ++ _link ++ link package='bash.647' cicount='copy' / -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org
commit bash for openSUSE:12.2
Hello community,
here is the log from the commit of package bash for openSUSE:12.2 checked in at
2012-06-26 17:45:03
Comparing /work/SRC/openSUSE:12.2/bash (Old)
and /work/SRC/openSUSE:12.2/.bash.new (New)
Package is bash, Maintainer is wer...@suse.com
Changes:
--- /work/SRC/openSUSE:12.2/bash/bash.changes 2012-06-25 15:15:47.0
+0200
+++ /work/SRC/openSUSE:12.2/.bash.new/bash.changes 2012-06-26
17:45:05.0 +0200
@@ -1,0 +2,17 @@
+Tue Jun 26 12:49:53 UTC 2012 - cfarr...@suse.com
+
+- license update: GPL-3.0+
+ Upstream declares the bash license to be GPL-3.0+ - not GPL-2.0+
+
+---
+Mon Jun 11 11:51:12 UTC 2012 - wer...@suse.de
+
+- Enable auditing patch by simply applying it
+
+---
+Wed May 23 23:37:53 UTC 2012 - meiss...@suse.com
+
+- added auditing patch from
+ http://git.savannah.gnu.org/cgit/bash.git/plain/CWRU/audit-patch
+
+---
New:
audit-patch
Other differences:
--
++ bash.spec ++
--- /var/tmp/diff_new_pack.eWC0sU/_old 2012-06-26 17:45:05.0 +0200
+++ /var/tmp/diff_new_pack.eWC0sU/_new 2012-06-26 17:45:05.0 +0200
@@ -17,6 +17,7 @@
Name: bash
+BuildRequires: audit-devel
BuildRequires: autoconf
BuildRequires: bison
BuildRequires: ncurses-devel
@@ -37,7 +38,7 @@
Version:4.2
Release:0
Summary:The GNU Bourne-Again Shell
-License:GPL-2.0+
+License:GPL-3.0+
Group: System/Shells
Url:http://www.gnu.org/software/bash/bash.html
# Git: http://git.savannah.gnu.org/cgit/bash.git
@@ -81,6 +82,7 @@
Patch25:readline-6.2-endpw.dif
Patch30:readline-6.2-destdir.patch
Patch40:bash-4.1-bash.bashrc.dif
+Patch42:audit-patch
Patch46:man2html-no-timestamp.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%global _sysconfdir /etc
@@ -287,6 +289,7 @@
%patch24 -p0 -b .metamode
#%patch25 -p0 -b .endpw
%patch40 -p0 -b .bashrc
+%patch42 -p1 -b .audit
%patch46 -p0 -b .notimestamp
%patch0 -p0 -b .0
pushd ../readline-%{rl_vers}%{extend}
++ audit-patch ++
diff -up bash-4.0/config.h.in.audit bash-4.0/config.h.in
--- bash-4.0/config.h.in.audit 2009-01-21 11:34:34.0 -0500
+++ bash-4.0/config.h.in2009-01-21 11:34:35.0 -0500
@@ -1077,6 +1077,14 @@
/* End additions for lib/intl */
+
+/* Additions for lib/readline */
+
+/* Define if you have linux/audit.h and it defines AUDIT_USER_TTY */
+#undef HAVE_DECL_AUDIT_USER_TTY
+
+/* End additions for lib/readline */
+
#include config-bot.h
#endif /* _CONFIG_H_ */
diff -up bash-4.0/configure.in.audit bash-4.0/configure.in
--- bash-4.0/configure.in.audit 2009-01-21 11:34:34.0 -0500
+++ bash-4.0/configure.in 2009-01-21 11:34:35.0 -0500
@@ -875,6 +875,8 @@ BASH_FUNC_DUP2_CLOEXEC_CHECK
BASH_SYS_PGRP_SYNC
BASH_SYS_SIGNAL_VINTAGE
+AC_CHECK_DECLS([AUDIT_USER_TTY],,, [[#include linux/audit.h]])
+
dnl checking for the presence of certain library symbols
BASH_SYS_ERRLIST
BASH_SYS_SIGLIST
diff -up bash-4.0/lib/readline/readline.c.audit bash-4.0/lib/readline/readline.c
--- bash-4.0/lib/readline/readline.c.audit 2009-01-21 11:34:34.0
-0500
+++ bash-4.0/lib/readline/readline.c2009-01-21 11:40:12.0 -0500
@@ -55,6 +55,12 @@
extern int errno;
#endif /* !errno */
+#if defined (HAVE_DECL_AUDIT_USER_TTY)
+# include sys/socket.h
+# include linux/audit.h
+# include linux/netlink.h
+#endif
+
/* System-specific feature definitions and include files. */
#include rldefs.h
#include rlmbutil.h
@@ -297,7 +303,47 @@ rl_set_prompt (prompt)
rl_visible_prompt_length = rl_expand_prompt (rl_prompt);
return 0;
}
-
+
+#if defined (HAVE_DECL_AUDIT_USER_TTY)
+/* Report STRING to the audit system. */
+static void
+audit_tty (char *string)
+{
+ struct sockaddr_nl addr;
+ struct msghdr msg;
+ struct nlmsghdr nlm;
+ struct iovec iov[2];
+ size_t size;
+ int fd;
+
+ size = strlen (string) + 1;
+ fd = socket (AF_NETLINK, SOCK_RAW, NETLINK_AUDIT);
+ if (fd 0)
+return;
+ nlm.nlmsg_len = NLMSG_LENGTH (size);
+ nlm.nlmsg_type = AUDIT_USER_TTY;
+ nlm.nlmsg_flags = NLM_F_REQUEST;
+ nlm.nlmsg_seq = 0;
+ nlm.nlmsg_pid = 0;
+ iov[0].iov_base = nlm;
+ iov[0].iov_len = sizeof (nlm);
+ iov[1].iov_base = string;
+ iov[1].iov_len = size;
+ addr.nl_family = AF_NETLINK;
+ addr.nl_pid = 0;
+ addr.nl_groups = 0;
+ msg.msg_name = addr;
+ msg.msg_namelen = sizeof (addr);
+ msg.msg_iov = iov;
+ msg.msg_iovlen = 2;
+ msg.msg_control = NULL;
+
