pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/lang/python24 fix possible buffer overflow by negative...

details:   https://anonhg.NetBSD.org/pkgsrc/rev/2438ae83a8f6
branches:  trunk
changeset: 540929:2438ae83a8f6
user:      drochner <drochner%pkgsrc.org@localhost>
date:      Fri Apr 11 10:32:33 2008 +0000

description:
fix possible buffer overflow by negative atguments to zlib.flush(),
from upstream CVS, bump PKGREVISION

diffstat:

 lang/python24/Makefile         |   4 ++--
 lang/python24/distinfo         |   3 ++-
 lang/python24/patches/patch-au |  15 +++++++++++++++
 3 files changed, 19 insertions(+), 3 deletions(-)

diffs (47 lines):

diff -r 2aece1d239af -r 2438ae83a8f6 lang/python24/Makefile
--- a/lang/python24/Makefile    Fri Apr 11 10:26:37 2008 +0000
+++ b/lang/python24/Makefile    Fri Apr 11 10:32:33 2008 +0000
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.40 2008/01/18 05:06:45 tnn Exp $
+# $NetBSD: Makefile,v 1.41 2008/04/11 10:32:33 drochner Exp $
 
 DISTNAME=      Python-2.4.4
 PKGNAME=       python24-2.4.4
-PKGREVISION=   1
+PKGREVISION=   2
 CATEGORIES=    lang python
 MASTER_SITES=  http://www.python.org/ftp/python/2.4.4/
 EXTRACT_SUFX=  .tar.bz2
diff -r 2aece1d239af -r 2438ae83a8f6 lang/python24/distinfo
--- a/lang/python24/distinfo    Fri Apr 11 10:26:37 2008 +0000
+++ b/lang/python24/distinfo    Fri Apr 11 10:32:33 2008 +0000
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.26 2008/02/22 13:03:25 joerg Exp $
+$NetBSD: distinfo,v 1.27 2008/04/11 10:32:33 drochner Exp $
 
 SHA1 (Python-2.4.4.tar.bz2) = 9e0971f93df8acbd947378d0d16a32fcc8897ba2
 RMD160 (Python-2.4.4.tar.bz2) = 4c7b5b70178fe69881b62201ef0bab55037d8708
@@ -22,3 +22,4 @@
 SHA1 (patch-aq) = 10f1964892763e0d1b2345bd053d7929dd4b317e
 SHA1 (patch-ar) = f132998e3e81f3093f9bddf32fe6dcb40fcfa76f
 SHA1 (patch-at) = 9d66115cc561c99dcc3478678aa286c1c0c3df6b
+SHA1 (patch-au) = d0a234efabe7d6a1f2b1dcbf26780fdc6b452214
diff -r 2aece1d239af -r 2438ae83a8f6 lang/python24/patches/patch-au
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/lang/python24/patches/patch-au    Fri Apr 11 10:32:33 2008 +0000
@@ -0,0 +1,15 @@
+$NetBSD: patch-au,v 1.1 2008/04/11 10:32:33 drochner Exp $
+
+--- Modules/zlibmodule.c.orig  2008-04-11 12:21:45.000000000 +0200
++++ Modules/zlibmodule.c
+@@ -669,6 +669,10 @@ PyZlib_unflush(compobject *self, PyObjec
+ 
+     if (!PyArg_ParseTuple(args, "|i:flush", &length))
+       return NULL;
++    if (length <= 0) {
++      PyErr_SetString(PyExc_ValueError, "length must be greater than zero");
++      return NULL;
++    }
+     if (!(retval = PyString_FromStringAndSize(NULL, length)))
+       return NULL;
+
Home | Main Index | Thread Index | Old Index