rpms/udev/F-9 udev-CVE-2009-1186.patch, NONE, 1.1 udev.spec, 1.250, 1.251

[Harald Hoyer]

Author: harald

Update of /cvs/pkgs/rpms/udev/F-9
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv18950

Modified Files:
	udev.spec 
Added Files:
	udev-CVE-2009-1186.patch 
Log Message:
* Thu Apr 16 2009 Harald Hoyer <harald at redhat.com> 124-4
- fix for CVE-2009-1186


udev-CVE-2009-1186.patch:

--- NEW FILE udev-CVE-2009-1186.patch ---
diff -up udev-124/udev_utils_string.c.CVE-2009-1186 udev-124/udev_utils_string.c
--- udev-124/udev_utils_string.c.CVE-2009-1186	2009-04-16 08:43:43.000000000 +0200
+++ udev-124/udev_utils_string.c	2009-04-16 08:43:54.000000000 +0200
@@ -52,7 +52,7 @@ void remove_trailing_chars(char *path, c
 
 size_t path_encode(char *s, size_t len)
 {
-	char t[(len * 3)+1];
+	char t[(len * 4)+1];
 	size_t i, j;
 
 	t[0] = '\0';


Index: udev.spec
===================================================================
RCS file: /cvs/pkgs/rpms/udev/F-9/udev.spec,v
retrieving revision 1.250
retrieving revision 1.251
diff -u -r1.250 -r1.251
--- udev.spec	15 Apr 2009 17:07:54 -0000	1.250
+++ udev.spec	16 Apr 2009 06:45:00 -0000	1.251
@@ -6,7 +6,7 @@
 Summary: A userspace implementation of devfs
 Name: udev
 Version: 124
-Release: 3%{?dist}
+Release: 4%{?dist}
 License: GPLv2
 Group: System Environment/Base
 Provides: udev-persistent = %{version}-%{release}
@@ -25,6 +25,7 @@
 Patch104: udev-091-lib64.patch
 Patch105: udev-vol_id-cdrom.patch
 Patch106: udev-CVE-2009-1185.patch
+Patch107: udev-CVE-2009-1186.patch
 
 Patch200: udev-120-rhrules.patch
 
@@ -85,6 +86,7 @@
 %patch104 -p1 -b .lib64
 %patch105 -p1 -b .tray
 %patch106 -p1 -b .CVE-2009-1185
+%patch107 -p1 -b .CVE-2009-1186
 
 %patch200 -p1 -b .rhrules
 
@@ -409,6 +411,9 @@
 %{_libdir}/pkgconfig/libvolume_id.pc 
 
 %changelog
+* Thu Apr 16 2009 Harald Hoyer <harald at redhat.com> 124-4
+- fix for CVE-2009-1186
+
 * Tue Apr 14 2009 Harald Hoyer <harald at redhat.com> 124-3
 - fix for CVE-2009-1185