[pkgsrc/trunk]: pkgsrc/security/py-amkCrypto add a patch from upstream to fix...

[drochner <drochner%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/f0a114f3cc53
branches:  trunk
changeset: 555304:f0a114f3cc53
user:      drochner <drochner%pkgsrc.org@localhost>
date:      Fri Feb 27 12:46:54 2009 +0000

description:
add a patch from upstream to fix buffer oberflow in ARC2 code
(CVE-2009-0544), bump PKGREVISION

diffstat:

 security/py-amkCrypto/Makefile         |   4 ++--
 security/py-amkCrypto/distinfo         |   3 ++-
 security/py-amkCrypto/patches/patch-aa |  25 +++++++++++++++++++++++++
 3 files changed, 29 insertions(+), 3 deletions(-)

diffs (55 lines):

diff -r a5b9265f4315 -r f0a114f3cc53 security/py-amkCrypto/Makefile
--- a/security/py-amkCrypto/Makefile    Fri Feb 27 11:10:15 2009 +0000
+++ b/security/py-amkCrypto/Makefile    Fri Feb 27 12:46:54 2009 +0000
@@ -1,9 +1,9 @@
-# $NetBSD: Makefile,v 1.22 2008/05/08 18:59:38 joerg Exp $
+# $NetBSD: Makefile,v 1.23 2009/02/27 12:46:54 drochner Exp $
 #
 
 DISTNAME=      pycrypto-2.0.1
 PKGNAME=       ${PYPKGPREFIX}-amkCrypto-2.0.1
-PKGREVISION=   2
+PKGREVISION=   3
 CATEGORIES=    security python
 MASTER_SITES=  http://www.amk.ca/files/python/crypto/
 
diff -r a5b9265f4315 -r f0a114f3cc53 security/py-amkCrypto/distinfo
--- a/security/py-amkCrypto/distinfo    Fri Feb 27 11:10:15 2009 +0000
+++ b/security/py-amkCrypto/distinfo    Fri Feb 27 12:46:54 2009 +0000
@@ -1,5 +1,6 @@
-$NetBSD: distinfo,v 1.5 2005/10/25 17:07:27 drochner Exp $
+$NetBSD: distinfo,v 1.6 2009/02/27 12:46:54 drochner Exp $
 
 SHA1 (pycrypto-2.0.1.tar.gz) = c77cdefdfb06e4749690013a9a9e1600ab14e26f
 RMD160 (pycrypto-2.0.1.tar.gz) = 5ce938a24f77f414e42680c17ef9b6dc8de94a2e
 Size (pycrypto-2.0.1.tar.gz) = 154292 bytes
+SHA1 (patch-aa) = 04a36213697fa02896ba721c9ab35464c60f01a6
diff -r a5b9265f4315 -r f0a114f3cc53 security/py-amkCrypto/patches/patch-aa
--- /dev/null   Thu Jan 01 00:00:00 1970 +0000
+++ b/security/py-amkCrypto/patches/patch-aa    Fri Feb 27 12:46:54 2009 +0000
@@ -0,0 +1,25 @@
+$NetBSD: patch-aa,v 1.3 2009/02/27 12:46:54 drochner Exp $
+
+--- src/ARC2.c.orig    2002-05-17 15:34:45.000000000 +0200
++++ src/ARC2.c
+@@ -11,6 +11,7 @@
+  */
+ 
+ #include <string.h>  
++#include "Python.h"
+ 
+ #define MODULE_NAME ARC2
+ #define BLOCK_SIZE 8
+@@ -146,6 +147,12 @@ block_init(block_state *self, U8 *key, i
+          We'll hardwire it to 1024. */
+ #define bits 1024
+ 
++      if ((U32)keylength > sizeof(self->xkey)) {
++              PyErr_SetString(PyExc_ValueError,
++                              "ARC2 key length must be less than 128 bytes");
++              return;
++      }
++
+       memcpy(self->xkey, key, keylength);
+   
+       /* Phase 1: Expand input key to 128 bytes */