aboutsummaryrefslogtreecommitdiffstats
path: root/japanese/Canna
diff options
context:
space:
mode:
authormax <max@FreeBSD.org>2002-08-08 12:53:19 +0800
committermax <max@FreeBSD.org>2002-08-08 12:53:19 +0800
commit08e49990556cd0a0d22cf8f8924d55d54cd8f5a9 (patch)
tree326af9fd64e84662647d12f51615aeeb9808bfe3 /japanese/Canna
parent4164df666d5e8d1bbb2a578fbab9475edbf52d86 (diff)
downloadfreebsd-ports-gnome-08e49990556cd0a0d22cf8f8924d55d54cd8f5a9.tar.gz
freebsd-ports-gnome-08e49990556cd0a0d22cf8f8924d55d54cd8f5a9.tar.zst
freebsd-ports-gnome-08e49990556cd0a0d22cf8f8924d55d54cd8f5a9.zip
Add back files/patch-af which should never be removed. This patch takes care of two remote buffer overflows in server/misc.c. This patch was accidentally removed when the port was upgraded.
Since this fixes a security problem, bump the port revision. Pointed-Out by: TOGAWA Satoshi <toga@puyo.org>
Diffstat (limited to 'japanese/Canna')
-rw-r--r--japanese/Canna/Makefile2
-rw-r--r--japanese/Canna/files/patch-af22
2 files changed, 23 insertions, 1 deletions
diff --git a/japanese/Canna/Makefile b/japanese/Canna/Makefile
index 64c14842d49b..15fc3bca1d0e 100644
--- a/japanese/Canna/Makefile
+++ b/japanese/Canna/Makefile
@@ -8,7 +8,7 @@
PORTNAME= Canna
PORTVERSION= 3.5b2
-PORTREVISION= 3
+PORTREVISION= 4
CATEGORIES= japanese
MASTER_SITES= ftp://ftp.tokyonet.ad.jp/pub/misc/Canna/Canna35/ \
ftp://ftp.biglobe.ne.jp/pub/tool/Canna/Canna35/ \
diff --git a/japanese/Canna/files/patch-af b/japanese/Canna/files/patch-af
new file mode 100644
index 000000000000..360e5d011617
--- /dev/null
+++ b/japanese/Canna/files/patch-af
@@ -0,0 +1,22 @@
+--- server/misc.c.orig Wed Nov 27 16:30:30 1996
++++ server/misc.c Thu Aug 8 13:44:03 2002
+@@ -649,12 +649,19 @@
+
+ if (client->username && client->username[0]) {
+ if (client->groupname && client->groupname[0]) {
++ if (strlen(DDUSER) + strlen(client->username) +
++ strlen(DDGROUP) + strlen(client->groupname) +
++ strlen(DDPATH) + 4 >= 256)
++ return ( -1 );
+ sprintf(dichome, "%s/%s:%s/%s:%s",
+ DDUSER, client->username,
+ DDGROUP, client->groupname,
+ DDPATH);
+ }
+ else {
++ if (strlen(DDUSER) + strlen(client->username) +
++ strlen(DDPATH) + 2 >= 256)
++ return ( -1 );
+ sprintf(dichome, "%s/%s:%s",
+ DDUSER, client->username,
+ DDPATH);