rpms/bzip2/devel bzip2-1.0.4-bzip2recover.patch, NONE, 1.1 bzip2.spec, 1.22, 1.23
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Mon Feb 5 11:12:04 UTC 2007
- Previous message (by thread): rpms/man-pages-ja/devel .cvsignore, 1.41, 1.42 man-pages-ja-20060815-178955-at.1.patch, 1.1, 1.2 man-pages-ja.spec, 1.48, 1.49 sources, 1.40, 1.41
- Next message (by thread): rpms/bzip2/FC-6 bzip2-1.0.3-bzip2recover.patch, NONE, 1.1 bzip2.spec, 1.20, 1.21
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: varekova
Update of /cvs/dist/rpms/bzip2/devel
In directory cvs.devel.redhat.com:/tmp/cvs-serv7782
Modified Files:
bzip2.spec
Added Files:
bzip2-1.0.4-bzip2recover.patch
Log Message:
- Resolves: 226979
Buffer overflow in bzip2's bzip2recover
bzip2-1.0.4-bzip2recover.patch:
bzip2recover.c | 3 ++-
1 files changed, 2 insertions(+), 1 deletion(-)
--- NEW FILE bzip2-1.0.4-bzip2recover.patch ---
--- bzip2-1.0.4/bzip2recover.c.pom 2007-01-03 03:00:55.000000000 +0100
+++ bzip2-1.0.4/bzip2recover.c 2007-02-05 11:55:17.000000000 +0100
@@ -309,7 +309,8 @@
UInt32 buffHi, buffLo, blockCRC;
Char* p;
- strcpy ( progName, argv[0] );
+ strncpy ( progName, argv[0], BZ_MAX_FILENAME-1);
+ progName[BZ_MAX_FILENAME]="\0";
inFileName[0] = outFileName[0] = 0;
fprintf ( stderr,
Index: bzip2.spec
===================================================================
RCS file: /cvs/dist/rpms/bzip2/devel/bzip2.spec,v
retrieving revision 1.22
retrieving revision 1.23
diff -u -r1.22 -r1.23
--- bzip2.spec 8 Jan 2007 09:07:55 -0000 1.22
+++ bzip2.spec 5 Feb 2007 11:12:02 -0000 1.23
@@ -1,13 +1,14 @@
Summary: A file compression utility
Name: bzip2
Version: 1.0.4
-Release: 1%{?dist}
+Release: 2%{?dist}
License: BSD
Group: Applications/File
URL: http://sources.redhat.com/bzip2/
Source: ftp://sources.redhat.com/pub/bzip2/v102/bzip2-%{version}.tar.gz
Patch0: bzip2-1.0.4-saneso.patch
Patch5: bzip2-1.0.4-cflags.patch
+Patch6: bzip2-1.0.4-bzip2recover.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-root
Requires: bzip2-libs = %{version}
@@ -44,6 +45,7 @@
%setup -q
%patch0 -p1 -b .saneso
%patch5 -p1 -b .cflags
+%patch6 -p1 -b .pom
%build
@@ -103,6 +105,10 @@
%{_libdir}/*so
%changelog
+* Mon Feb 5 2007 Ivana Varekova <varekova at redhat.com> 1.0.4-2
+- Resolves: 226979
+ Buffer overflow in bzip2's bzip2recover
+
* Mon Jan 8 2007 Ivana Varekova <varekova at redhat.com> 1.0.4-1
- update to 1.0.4
- spec file cleanup
- Previous message (by thread): rpms/man-pages-ja/devel .cvsignore, 1.41, 1.42 man-pages-ja-20060815-178955-at.1.patch, 1.1, 1.2 man-pages-ja.spec, 1.48, 1.49 sources, 1.40, 1.41
- Next message (by thread): rpms/bzip2/FC-6 bzip2-1.0.3-bzip2recover.patch, NONE, 1.1 bzip2.spec, 1.20, 1.21
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-cvs-commits
mailing list