diff options
author | max <max@FreeBSD.org> | 2002-08-08 12:53:19 +0800 |
---|---|---|
committer | max <max@FreeBSD.org> | 2002-08-08 12:53:19 +0800 |
commit | 08e49990556cd0a0d22cf8f8924d55d54cd8f5a9 (patch) | |
tree | 326af9fd64e84662647d12f51615aeeb9808bfe3 /japanese/Canna | |
parent | 4164df666d5e8d1bbb2a578fbab9475edbf52d86 (diff) | |
download | freebsd-ports-gnome-08e49990556cd0a0d22cf8f8924d55d54cd8f5a9.tar.gz freebsd-ports-gnome-08e49990556cd0a0d22cf8f8924d55d54cd8f5a9.tar.zst freebsd-ports-gnome-08e49990556cd0a0d22cf8f8924d55d54cd8f5a9.zip |
Add back files/patch-af which should never be removed. This patch takes care of two remote buffer overflows in server/misc.c. This patch was accidentally removed when the port was upgraded.
Since this fixes a security problem, bump the port revision.
Pointed-Out by: TOGAWA Satoshi <toga@puyo.org>
Diffstat (limited to 'japanese/Canna')
-rw-r--r-- | japanese/Canna/Makefile | 2 | ||||
-rw-r--r-- | japanese/Canna/files/patch-af | 22 |
2 files changed, 23 insertions, 1 deletions
diff --git a/japanese/Canna/Makefile b/japanese/Canna/Makefile index 64c14842d49b..15fc3bca1d0e 100644 --- a/japanese/Canna/Makefile +++ b/japanese/Canna/Makefile @@ -8,7 +8,7 @@ PORTNAME= Canna PORTVERSION= 3.5b2 -PORTREVISION= 3 +PORTREVISION= 4 CATEGORIES= japanese MASTER_SITES= ftp://ftp.tokyonet.ad.jp/pub/misc/Canna/Canna35/ \ ftp://ftp.biglobe.ne.jp/pub/tool/Canna/Canna35/ \ diff --git a/japanese/Canna/files/patch-af b/japanese/Canna/files/patch-af new file mode 100644 index 000000000000..360e5d011617 --- /dev/null +++ b/japanese/Canna/files/patch-af @@ -0,0 +1,22 @@ +--- server/misc.c.orig Wed Nov 27 16:30:30 1996 ++++ server/misc.c Thu Aug 8 13:44:03 2002 +@@ -649,12 +649,19 @@ + + if (client->username && client->username[0]) { + if (client->groupname && client->groupname[0]) { ++ if (strlen(DDUSER) + strlen(client->username) + ++ strlen(DDGROUP) + strlen(client->groupname) + ++ strlen(DDPATH) + 4 >= 256) ++ return ( -1 ); + sprintf(dichome, "%s/%s:%s/%s:%s", + DDUSER, client->username, + DDGROUP, client->groupname, + DDPATH); + } + else { ++ if (strlen(DDUSER) + strlen(client->username) + ++ strlen(DDPATH) + 2 >= 256) ++ return ( -1 ); + sprintf(dichome, "%s/%s:%s", + DDUSER, client->username, + DDPATH); |