Subject: CVS commit: [pkgsrc-2005Q1] pkgsrc/print/a2ps
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 06/09/2005 20:05:49
Module Name: pkgsrc
Committed By: snj
Date: Thu Jun 9 20:05:49 UTC 2005
Modified Files:
pkgsrc/print/a2ps [pkgsrc-2005Q1]: Makefile distinfo
Added Files:
pkgsrc/print/a2ps/patches [pkgsrc-2005Q1]: patch-ad patch-ae
Log Message:
Pullup ticket 545 - requested by Lubomir Sedlacik
security fix for a2ps
Revisions pulled up:
- pkgsrc/print/a2ps/Makefile 1.54
- pkgsrc/print/a2ps/distinfo 1.9
- pkgsrc/print/a2ps/patches/patch-ad 1.4
- pkgsrc/print/a2ps/patches/patch-ae 1.4
Module Name: pkgsrc
Committed By: salo
Date: Thu Jun 9 14:53:49 UTC 2005
Modified Files:
pkgsrc/print/a2ps: Makefile distinfo
Added Files:
pkgsrc/print/a2ps/patches: patch-ad patch-ae
Log Message:
Security fix for CAN-2004-1377:
"The fixps and psmandup scripts in a2ps allow local users to overwrite
arbitrary files via a symlink attack on temporary files."
Patches from Gentoo with few minor issues corrected.
To generate a diff of this commit:
cvs rdiff -r1.51 -r1.51.2.1 pkgsrc/print/a2ps/Makefile
cvs rdiff -r1.8 -r1.8.2.1 pkgsrc/print/a2ps/distinfo
cvs rdiff -r0 -r1.3.12.1 pkgsrc/print/a2ps/patches/patch-ad \
pkgsrc/print/a2ps/patches/patch-ae
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.