rpms/cpio/F-11 cpio-fortifysources.patch, NONE, 1.1 cpio.spec, 1.65, 1.66
Ondrej Vasik
ovasik at fedoraproject.org
Tue Dec 1 11:41:49 UTC 2009
Author: ovasik
Update of /cvs/extras/rpms/cpio/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv18685
Modified Files:
cpio.spec
Added Files:
cpio-fortifysources.patch
Log Message:
fix buffer overflow detection by fortify sources (#542389)
cpio-fortifysources.patch:
tar.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
--- NEW FILE cpio-fortifysources.patch ---
diff -urNp cpio-2.9.90-orig/src/tar.c cpio-2.9.90/src/tar.c
--- cpio-2.9.90-orig/src/tar.c 2007-06-27 16:00:13.000000000 +0200
+++ cpio-2.9.90/src/tar.c 2009-12-01 12:33:51.000000000 +0100
@@ -217,7 +217,7 @@ write_out_tar_header (struct cpio_file_s
char *name;
strncpy (tar_hdr->magic, TMAGIC, TMAGLEN);
- strncpy (tar_hdr->magic + TMAGLEN, TVERSION, TVERSLEN);
+ strncpy (tar_hdr->version, TVERSION, TVERSLEN);
name = getuser (file_hdr->c_uid);
if (name)
Binární soubory cpio-2.9.90-orig/src/.tar.c.swp a cpio-2.9.90/src/.tar.c.swp jsou různé
Binární soubory cpio-2.9.90-orig/src/.tarhdr.h.swp a cpio-2.9.90/src/.tarhdr.h.swp jsou různé
Binární soubory cpio-2.9.90-orig/src/.tar.h.swp a cpio-2.9.90/src/.tar.h.swp jsou různé
Index: cpio.spec
===================================================================
RCS file: /cvs/extras/rpms/cpio/F-11/cpio.spec,v
retrieving revision 1.65
retrieving revision 1.66
diff -u -p -r1.65 -r1.66
--- cpio.spec 9 Mar 2009 17:38:01 -0000 1.65
+++ cpio.spec 1 Dec 2009 11:41:49 -0000 1.66
@@ -3,7 +3,7 @@
Summary: A GNU archiving program
Name: cpio
Version: 2.9.90
-Release: 5%{?dist}
+Release: 6%{?dist}
License: GPLv3+
Group: Applications/Archiving
URL: http://www.gnu.org/software/cpio/
@@ -18,6 +18,7 @@ Patch5: cpio-2.9-dir_perm.patch
Patch6: cpio-2.9-dev_number.patch
Patch7: cpio-2.9-sys_umask.patch
Patch8: cpio-2.9.90-defaultremoteshell.patch
+Patch9: cpio-fortifysources.patch
Requires(post): /sbin/install-info
Requires(preun): /sbin/install-info
BuildRequires: texinfo, autoconf, gettext, rmt
@@ -47,6 +48,7 @@ Install cpio if you need a program to ma
%patch6 -p1 -b .dev_number
%patch7 -p1 -b .sys_umask
%patch8 -p1 -b .defaultremote
+%patch9 -p1 -b .fortify
autoheader
@@ -87,6 +89,9 @@ fi
%{_infodir}/*.info*
%changelog
+* Tue Dec 1 2009 Ondrej Vasik <ovasik at redhat.com> 2.9.90-6
+- fix buffer overflow detection by fortify sources (#542389)
+
* Mon Mar 9 2009 Ondrej Vasik <ovasik at redhat.com> 2.9.90-5
- define default remote shell as /usr/bin/ssh(#452904)
- use /etc/rmt as default rmt command
More information about the fedora-extras-commits
mailing list