pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/print/cups



Module Name:    pkgsrc
Committed By:   drochner
Date:           Wed Jun 16 18:18:26 UTC 2010

Modified Files:
        pkgsrc/print/cups: Makefile distinfo
Added Files:
        pkgsrc/print/cups/patches: patch-ba patch-bb patch-bc patch-bd

Log Message:
add some patches from upstream to fix security problems:
-use-after-free problem (CVE-2010-0302)
-information disclosure (CVE-2010-1748)
-unchecked memory allocation is texttops
-file overwrite problem
(I didn't find references from cups patches to CVE #s, or vice versa,
so the CVE #s are not certain.)
The missing http session check problem (CVE-2010-0540?) is not fixed,
this would be a large patch affecting tens of files.
bump PKGREVISION


To generate a diff of this commit:
cvs rdiff -u -r1.166 -r1.167 pkgsrc/print/cups/Makefile
cvs rdiff -u -r1.72 -r1.73 pkgsrc/print/cups/distinfo
cvs rdiff -u -r0 -r1.3 pkgsrc/print/cups/patches/patch-ba \
    pkgsrc/print/cups/patches/patch-bc pkgsrc/print/cups/patches/patch-bd
cvs rdiff -u -r0 -r1.5 pkgsrc/print/cups/patches/patch-bb

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.



Home | Main Index | Thread Index | Old Index