pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/devel/gtexinfo Corrected my last change. The original ...
details: https://anonhg.NetBSD.org/pkgsrc/rev/4ea2eaca4fad
branches: trunk
changeset: 523461:4ea2eaca4fad
user: rillig <rillig%pkgsrc.org@localhost>
date: Mon Jan 08 08:50:51 2007 +0000
description:
Corrected my last change. The original patch for CVE-2006-4810 was
correct, only the pkgsrc version somehow managed to get wrong.
PKGREVISION++
diffstat:
devel/gtexinfo/Makefile | 4 ++--
devel/gtexinfo/distinfo | 4 ++--
devel/gtexinfo/patches/patch-al | 34 +++++++---------------------------
3 files changed, 11 insertions(+), 31 deletions(-)
diffs (102 lines):
diff -r 66f83a0ed7f4 -r 4ea2eaca4fad devel/gtexinfo/Makefile
--- a/devel/gtexinfo/Makefile Mon Jan 08 08:21:47 2007 +0000
+++ b/devel/gtexinfo/Makefile Mon Jan 08 08:50:51 2007 +0000
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.66 2006/11/18 15:49:02 adrianp Exp $
+# $NetBSD: Makefile,v 1.67 2007/01/08 08:50:51 rillig Exp $
DISTNAME= texinfo-4.8
PKGNAME= g${DISTNAME}
-PKGREVISION= 6
+PKGREVISION= 7
CATEGORIES= devel sysutils
MASTER_SITES= ${MASTER_SITE_GNU:=texinfo/}
EXTRACT_SUFX= .tar.bz2
diff -r 66f83a0ed7f4 -r 4ea2eaca4fad devel/gtexinfo/distinfo
--- a/devel/gtexinfo/distinfo Mon Jan 08 08:21:47 2007 +0000
+++ b/devel/gtexinfo/distinfo Mon Jan 08 08:50:51 2007 +0000
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.26 2007/01/08 08:21:47 rillig Exp $
+$NetBSD: distinfo,v 1.27 2007/01/08 08:50:51 rillig Exp $
SHA1 (texinfo-4.8.tar.bz2) = b19e906f7220294c1e8b087d583c50f5c4d7c420
RMD160 (texinfo-4.8.tar.bz2) = 5cb82cd240d1f22da813c7142df8828b4f6f1ea4
@@ -10,4 +10,4 @@
SHA1 (patch-ad) = c5c3374322eb8a2c8dfc7871971b73194ab1b14c
SHA1 (patch-aj) = d9071c62c993550d253c9e1889880d4fccf7d278
SHA1 (patch-ak) = 2cef2ae464ddb5324acae000420017d4faf7b145
-SHA1 (patch-al) = 5cc3cb9b11ffea22be157bf5d653a92df58f198c
+SHA1 (patch-al) = 5cbae19a93752d37eac70dee454af716b7b35a9c
diff -r 66f83a0ed7f4 -r 4ea2eaca4fad devel/gtexinfo/patches/patch-al
--- a/devel/gtexinfo/patches/patch-al Mon Jan 08 08:21:47 2007 +0000
+++ b/devel/gtexinfo/patches/patch-al Mon Jan 08 08:50:51 2007 +0000
@@ -1,14 +1,9 @@
-$NetBSD: patch-al,v 1.4 2007/01/08 08:21:48 rillig Exp $
+$NetBSD: patch-al,v 1.5 2007/01/08 08:50:51 rillig Exp $
Security fix for CAN-2005-3001 and CVE-2006-4810
-Note: The "official" patch for CVE-2006-4810 is wrong. The "fixed" code
-assigns a "long" to a "char *". Furthermore, the code was completely
-broken anyway. Maybe that's why it has been removed in the current CVS
-version.
-
--- util/texindex.c.orig 2004-04-11 19:56:47.000000000 +0200
-+++ util/texindex.c 2007-01-08 09:02:20.000000000 +0100
++++ util/texindex.c 2007-01-08 09:41:42.000000000 +0100
@@ -387,14 +387,15 @@ For more information about these matters
/* Return a name for temporary file COUNT. */
@@ -52,31 +47,16 @@
}
-@@ -827,17 +835,19 @@ long
- readline (struct linebuffer *linebuffer, FILE *stream)
- {
- char *buffer = linebuffer->buffer;
-- char *p = linebuffer->buffer;
-- char *end = p + linebuffer->size;
-+ char *p = buffer;
-+ char *end = buffer + linebuffer->size;
-
- while (1)
- {
-+ /* invariant: buffer <= p && p <= end */
-+ /* invariant: buffer + linebuffer->size == end */
-+ /* invariant: buffer == linebuffer->buffer */
- int c = getc (stream);
- if (p == end)
+@@ -837,7 +845,7 @@ readline (struct linebuffer *linebuffer,
{
buffer = (char *) xrealloc (buffer, linebuffer->size *= 2);
-- p += buffer - linebuffer->buffer;
+ p += buffer - linebuffer->buffer;
- end += buffer - linebuffer->buffer;
+ end = buffer + linebuffer->size;
linebuffer->buffer = buffer;
}
if (c < 0 || c == '\n')
-@@ -882,7 +892,7 @@ sort_offline (char *infile, off_t total,
+@@ -882,7 +890,7 @@ sort_offline (char *infile, off_t total,
for (i = 0; i < ntemps; i++)
{
@@ -85,7 +65,7 @@
FILE *ostream = fopen (outname, "w");
long tempsize = 0;
-@@ -930,7 +940,7 @@ fail:
+@@ -930,7 +938,7 @@ fail:
for (i = 0; i < ntemps; i++)
{
@@ -94,7 +74,7 @@
sort_in_core (tempfiles[i], MAX_IN_CORE_SORT, newtemp);
if (!keep_tempfiles)
unlink (tempfiles[i]);
-@@ -1400,7 +1410,7 @@ merge_files (char **infiles, int nfiles,
+@@ -1400,7 +1408,7 @@ merge_files (char **infiles, int nfiles,
int nf = MAX_DIRECT_MERGE;
if (i + 1 == ntemps)
nf = nfiles - i * MAX_DIRECT_MERGE;
Home |
Main Index |
Thread Index |
Old Index