rpms/bzip2/FC-6 bzip2-1.0.3-bzip2recover.patch, NONE, 1.1 bzip2.spec, 1.20, 1.21

fedora-cvs-commits at redhat.com fedora-cvs-commits at redhat.com
Mon Feb 5 11:25:40 UTC 2007


Author: varekova

Update of /cvs/dist/rpms/bzip2/FC-6
In directory cvs.devel.redhat.com:/tmp/cvs-serv6377

Modified Files:
	bzip2.spec 
Added Files:
	bzip2-1.0.3-bzip2recover.patch 
Log Message:
 - Resolves: 226979 
   Buffer overflow in bzip2's bzip2recover


bzip2-1.0.3-bzip2recover.patch:
 bzip2recover.c |    3 ++-
 1 files changed, 2 insertions(+), 1 deletion(-)

--- NEW FILE bzip2-1.0.3-bzip2recover.patch ---
--- bzip2-1.0.3/bzip2recover.c.pom	2005-02-15 17:20:57.000000000 +0100
+++ bzip2-1.0.3/bzip2recover.c	2007-02-05 12:17:28.000000000 +0100
@@ -341,7 +341,8 @@
    UInt32      buffHi, buffLo, blockCRC;
    Char*       p;
 
-   strcpy ( progName, argv[0] );
+   strncpy ( progName, argv[0], BZ_MAX_FILENAME-1);
+   progName[BZ_MAX_FILENAME]="\0";
    inFileName[0] = outFileName[0] = 0;
 
    fprintf ( stderr, 


Index: bzip2.spec
===================================================================
RCS file: /cvs/dist/rpms/bzip2/FC-6/bzip2.spec,v
retrieving revision 1.20
retrieving revision 1.21
diff -u -r1.20 -r1.21
--- bzip2.spec	17 Jul 2006 08:11:20 -0000	1.20
+++ bzip2.spec	5 Feb 2007 11:25:38 -0000	1.21
@@ -1,7 +1,7 @@
 Summary: A file compression utility.
 Name: bzip2
 Version: 1.0.3
-Release: 3
+Release: 4%{?dist}
 License: BSD
 Group: Applications/File
 URL: http://sources.redhat.com/bzip2/
@@ -12,6 +12,7 @@
 Patch3: bzip2-1.0.2-NULL-ptr-check.patch
 Patch4: bzip2-1.0.2-bzgrep.patch
 Patch5: bzip2-1.0.3-cflags.patch
+Patch6: bzip2-1.0.3-bzip2recover.patch
 BuildRoot: %{_tmppath}/%{name}-%{version}-root
 Requires: bzip2-libs = %{version}
 
@@ -52,6 +53,7 @@
 %patch3 -p1 -b .nullptr
 %patch4 -p1 -b .sed
 %patch5 -p1 -b .cflags
+%patch6 -p1 -b .overfl
 
 %build
 
@@ -111,6 +113,10 @@
 %{_libdir}/*so
 
 %changelog
+* Mon Feb  5 2007 Ivana Varekova <varekova at redhat.com> 1.0.3-4
+- Resolves: 226979
+  Buffer overflow in bzip2's bzip2recover 
+
 * Mon Jul 17 2006 Ivana Varekova <varekova at redhat.com> 1.0.3-3
 - add cflags (#198926)
 




More information about the fedora-cvs-commits mailing list