rpms/cpio/F-11 cpio-fortifysources.patch, NONE, 1.1 cpio.spec, 1.65, 1.66

Ondrej Vasik ovasik at fedoraproject.org
Tue Dec 1 11:41:49 UTC 2009 

Author: ovasik

Update of /cvs/extras/rpms/cpio/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv18685

Modified Files:
	cpio.spec 
Added Files:
	cpio-fortifysources.patch 
Log Message:
fix buffer overflow detection by fortify sources (#542389)

cpio-fortifysources.patch:
 tar.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- NEW FILE cpio-fortifysources.patch ---
diff -urNp cpio-2.9.90-orig/src/tar.c cpio-2.9.90/src/tar.c
--- cpio-2.9.90-orig/src/tar.c	2007-06-27 16:00:13.000000000 +0200
+++ cpio-2.9.90/src/tar.c	2009-12-01 12:33:51.000000000 +0100
@@ -217,7 +217,7 @@ write_out_tar_header (struct cpio_file_s
       char *name;
 
       strncpy (tar_hdr->magic, TMAGIC, TMAGLEN);
-      strncpy (tar_hdr->magic + TMAGLEN, TVERSION, TVERSLEN);
+      strncpy (tar_hdr->version, TVERSION, TVERSLEN);
 
       name = getuser (file_hdr->c_uid);
       if (name)
Binární soubory cpio-2.9.90-orig/src/.tar.c.swp a cpio-2.9.90/src/.tar.c.swp jsou různé
Binární soubory cpio-2.9.90-orig/src/.tarhdr.h.swp a cpio-2.9.90/src/.tarhdr.h.swp jsou různé
Binární soubory cpio-2.9.90-orig/src/.tar.h.swp a cpio-2.9.90/src/.tar.h.swp jsou různé


Index: cpio.spec
===================================================================
RCS file: /cvs/extras/rpms/cpio/F-11/cpio.spec,v
retrieving revision 1.65
retrieving revision 1.66
diff -u -p -r1.65 -r1.66
--- cpio.spec	9 Mar 2009 17:38:01 -0000	1.65
+++ cpio.spec	1 Dec 2009 11:41:49 -0000	1.66
@@ -3,7 +3,7 @@
 Summary: A GNU archiving program
 Name: cpio
 Version: 2.9.90
-Release: 5%{?dist}
+Release: 6%{?dist}
 License: GPLv3+
 Group: Applications/Archiving
 URL: http://www.gnu.org/software/cpio/
@@ -18,6 +18,7 @@ Patch5: cpio-2.9-dir_perm.patch
 Patch6: cpio-2.9-dev_number.patch
 Patch7: cpio-2.9-sys_umask.patch
 Patch8: cpio-2.9.90-defaultremoteshell.patch
+Patch9: cpio-fortifysources.patch
 Requires(post): /sbin/install-info
 Requires(preun): /sbin/install-info
 BuildRequires: texinfo, autoconf, gettext, rmt
@@ -47,6 +48,7 @@ Install cpio if you need a program to ma
 %patch6  -p1 -b .dev_number
 %patch7  -p1 -b .sys_umask
 %patch8  -p1 -b .defaultremote
+%patch9  -p1 -b .fortify
 
 autoheader
 
@@ -87,6 +89,9 @@ fi
 %{_infodir}/*.info*
 
 %changelog
+* Tue Dec  1 2009 Ondrej Vasik <ovasik at redhat.com> 2.9.90-6
+- fix buffer overflow detection by fortify sources (#542389)
+
 * Mon Mar  9 2009 Ondrej Vasik <ovasik at redhat.com> 2.9.90-5
 - define default remote shell as /usr/bin/ssh(#452904)
 - use /etc/rmt as default rmt command

More information about the fedora-extras-commits mailing list