rpms/evince/FC-5 evince-0.6.0-overflow.patch, NONE, 1.1 evince.spec, 1.45, 1.46
fedora-cvs-commits at redhat.com
fedora-cvs-commits at redhat.com
Mon Dec 11 03:15:31 UTC 2006
- Previous message (by thread): rpms/evince/FC-6 evince-0.6.0-overflow.patch, NONE, 1.1 evince.spec, 1.64, 1.65
- Next message (by thread): rpms/scim/FC-6 scim-1.4.4-gtkimm-key-snooper-off-213796.patch, NONE, 1.1 scim-fix-unload-segfault.patch, NONE, 1.1 scim_panel-observe-workarea-xprop-204442.patch, NONE, 1.1 scim_x11_frontend-ic-focus-LTC27940-215953.patch, NONE, 1.1 scim-add-restart.patch, 1.4, 1.5 scim-system-default-config.patch, 1.8, 1.9 scim.spec, 1.65, 1.66
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: mclasen
Update of /cvs/dist/rpms/evince/FC-5
In directory cvs.devel.redhat.com:/tmp/cvs-serv1153
Modified Files:
evince.spec
Added Files:
evince-0.6.0-overflow.patch
Log Message:
* Sun Dec 10 2006 Matthias Clasen <mclasen at redhat.com> - 0.6.0-8
- Fix an overflow in the PostScript backend (#217674, CVE-2006-5864)
evince-0.6.0-overflow.patch:
ps.c | 6 ++++--
1 files changed, 4 insertions(+), 2 deletions(-)
--- NEW FILE evince-0.6.0-overflow.patch ---
--- evince-0.6.0/ps/ps.c.overflow 2006-12-10 21:59:29.000000000 -0500
+++ evince-0.6.0/ps/ps.c 2006-12-10 21:59:34.000000000 -0500
@@ -1231,7 +1231,8 @@
int level = 0;
quoted = 1;
line++;
- while(*line && !(*line == ')' && level == 0)) {
+ while(*line && !(*line == ')' && level == 0)
+ && (cp - text) < PSLINELENGTH - 1) {
if(*line == '\\') {
if(*(line + 1) == 'n') {
*cp++ = '\n';
@@ -1302,7 +1303,8 @@
}
}
else {
- while(*line && !(*line == ' ' || *line == '\t' || *line == '\n'))
+ while(*line && !(*line == ' ' || *line == '\t' || *line == '\n')
+ && (cp - text) < PSLINELENGTH - 1)
*cp++ = *line++;
}
*cp = '\0';
Index: evince.spec
===================================================================
RCS file: /cvs/dist/rpms/evince/FC-5/evince.spec,v
retrieving revision 1.45
retrieving revision 1.46
diff -u -r1.45 -r1.46
--- evince.spec 6 Mar 2006 21:34:52 -0000 1.45
+++ evince.spec 11 Dec 2006 03:15:29 -0000 1.46
@@ -4,13 +4,14 @@
Name: evince
Version: 0.5.1
-Release: 3
+Release: 4
Summary: Document viewer
License: GPL
Group: Applications/Publishing
URL: http://www.gnome.org/projects/evince/
Source0: http://ftp.gnome.org/pub/GNOME/sources/%{name}/%{version}/%{name}-%{version}.tar.bz2
+Patch0: evince-0.6.0-overflow.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
BuildRequires: gtk2-devel >= %{gtk2_version}
@@ -40,6 +41,7 @@
%prep
%setup -q
+%patch0 -p1 -b .overflow
%build
%configure --disable-scrollkeeper
@@ -119,6 +121,9 @@
%changelog
+* Sun Dec 10 2006 Matthias Clasen <mclasen at redhat.com> - 0.5.1-4
+- Fix an overflow in the PostScript backend (#217674, CVE-2006-5864)
+
* Mon Mar 6 2006 Jeremy Katz <katzj at redhat.com> - 0.5.1-3
- quiet scriptlet spew from gconfd killing
- Previous message (by thread): rpms/evince/FC-6 evince-0.6.0-overflow.patch, NONE, 1.1 evince.spec, 1.64, 1.65
- Next message (by thread): rpms/scim/FC-6 scim-1.4.4-gtkimm-key-snooper-off-213796.patch, NONE, 1.1 scim-fix-unload-segfault.patch, NONE, 1.1 scim_panel-observe-workarea-xprop-204442.patch, NONE, 1.1 scim_x11_frontend-ic-focus-LTC27940-215953.patch, NONE, 1.1 scim-add-restart.patch, 1.4, 1.5 scim-system-default-config.patch, 1.8, 1.9 scim.spec, 1.65, 1.66
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-cvs-commits
mailing list