[pkgsrc/trunk]: pkgsrc/security/priv Update to priv-1.0-beta2.

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/trunk]: pkgsrc/security/priv Update to priv-1.0-beta2.
From: simonb <simonb%pkgsrc.org@localhost>
Date: Wed, 13 Oct 2021 23:39:39 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/02a618a42db3
branches:  trunk
changeset: 469973:02a618a42db3
user:      simonb <simonb%pkgsrc.org@localhost>
date:      Thu Mar 04 02:57:00 2004 +0000

description:
Update to priv-1.0-beta2.
Changes from previous version are:

 + Fix a single byte buffer overflow.  Can only be a NUL byte that
   overflows, not believed (at this stage!) to be exploitable in any
   way.
 + Avoid null-pointer dereference if getpwuid(getuid()) fails.

diffstat:

 security/priv/Makefile         |   8 ++++----
 security/priv/distinfo         |   8 ++++----
 security/priv/patches/patch-aa |  17 -----------------
 3 files changed, 8 insertions(+), 25 deletions(-)

diffs (52 lines):

diff -r 769cb052c874 -r 02a618a42db3 security/priv/Makefile
--- a/security/priv/Makefile    Wed Mar 03 23:17:36 2004 +0000
+++ b/security/priv/Makefile    Thu Mar 04 02:57:00 2004 +0000
@@ -1,10 +1,10 @@
-# $NetBSD: Makefile,v 1.8 2003/07/21 17:20:29 martti Exp $
+# $NetBSD: Makefile,v 1.9 2004/03/04 02:57:00 simonb Exp $
 #
 
-DISTNAME=      priv-1.0-beta
-PKGNAME=       priv-1.0beta
+DISTNAME=      priv-1.0-beta2
+PKGNAME=       priv-1.0beta2
 CATEGORIES=    security
-MASTER_SITES=  ${MASTER_SITE_LOCAL}
+MASTER_SITES=  ftp://ftp.thistledown.com.au/pub/simonb/
 
 MAINTAINER=    simonb%NetBSD.org@localhost
 COMMENT=       Execute commands as a different user
diff -r 769cb052c874 -r 02a618a42db3 security/priv/distinfo
--- a/security/priv/distinfo    Wed Mar 03 23:17:36 2004 +0000
+++ b/security/priv/distinfo    Thu Mar 04 02:57:00 2004 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.3 2003/07/26 13:27:05 simonb Exp $
+$NetBSD: distinfo,v 1.4 2004/03/04 02:57:00 simonb Exp $
 
-SHA1 (priv-1.0-beta.tar.gz) = 0df065a2d60408d600ec227bda4cea4145e540ee
-Size (priv-1.0-beta.tar.gz) = 33877 bytes
-SHA1 (patch-aa) = 5a2f15d6ccd0b8d440912cb2e98b8537d2f70b19
+SHA1 (priv-1.0-beta2.tar.gz) = dee75baaf320c5dee112376cca0bb08a635f2806
+Size (priv-1.0-beta2.tar.gz) = 34507 bytes
+SHA1 (patch-aa) = 9d74ab0540fa767fa0dbe5b5672ca0c3f60d27b9
diff -r 769cb052c874 -r 02a618a42db3 security/priv/patches/patch-aa
--- a/security/priv/patches/patch-aa    Wed Mar 03 23:17:36 2004 +0000
+++ /dev/null   Thu Jan 01 00:00:00 1970 +0000
@@ -1,17 +0,0 @@
-$NetBSD: patch-aa,v 1.1 2003/07/26 13:27:05 simonb Exp $
-
---- priv.c.orig        1997-07-08 16:19:06.000000000 +1000
-+++ priv.c
-@@ -112,6 +112,12 @@ main(int argc, char **argv, char **envp)
-       }
- 
-       pw = getpwuid(getuid());
-+      if (pw == NULL) {
-+              syslog(LOG_NOTICE, "%s: can't fetch password entry for uid %d",
-+                  myname, getuid());
-+              errx(EXIT_VAL, "can't fetch password entry for uid %d",
-+                  getuid());
-+      }
-       myname = xstrdup(pw->pw_name);  /* copy so we can use getpw* later */
-       strcpy(myfullname, pw->pw_name);
-       if ((logname = getlogin()) != NULL && strcmp(logname, myname)) {

Prev by Date: [pkgsrc/trunk]: pkgsrc/doc Note update of sylpheed-gtk2 to 0.9.9.
Next by Date: [pkgsrc/trunk]: pkgsrc/doc Note update of priv ppriv to version 1.0-beta2.
Previous by Thread: [pkgsrc/trunk]: pkgsrc/doc Note update of sylpheed-gtk2 to 0.9.9.
Next by Thread: [pkgsrc/trunk]: pkgsrc/doc Note update of priv ppriv to version 1.0-beta2.
Indexes:

Home | Main Index | Thread Index | Old Index