Subject: CVS commit: [pkgsrc-2005Q2] pkgsrc/emulators/wine
To: None <pkgsrc-changes@NetBSD.org>
From: Soren Jacobsen <snj@netbsd.org>
List: pkgsrc-changes
Date: 08/13/2005 05:32:37
Module Name:	pkgsrc
Committed By:	snj
Date:		Sat Aug 13 05:32:37 UTC 2005

Modified Files:
	pkgsrc/emulators/wine [pkgsrc-2005Q2]: Makefile distinfo
Added Files:
	pkgsrc/emulators/wine/patches [pkgsrc-2005Q2]: patch-ai

Log Message:
Pullup ticket 679 - requested by Lubomir Sedlacik
security fix for wine

Revisions pulled up:
- pkgsrc/emulators/wine/Makefile		1.89
- pkgsrc/emulators/wine/distinfo		1.35
- pkgsrc/emulators/wine/patches/patch-ai	1.5

   Module Name:    pkgsrc
   Committed By:   salo
   Date:           Fri Aug 12 13:57:44 UTC 2005

   Modified Files:
           pkgsrc/emulators/wine: Makefile distinfo
   Added Files:
           pkgsrc/emulators/wine/patches: patch-ai

   Log Message:
   Security fix for SA16352.

   "A vulnerability in wine can be exploited by malicious, local users to
   perform certain actions on a vulnerable system with escalated privileges.

   The vulnerability is caused due to a temporary file being created
   insecurely in "/tmp" by winelauncher.in under certain error conditions.
   This can be exploited via symlink attacks to create or overwrite
   arbitrary files with the privileges of the user running the affected
   application."

   http://secunia.com/advisories/16352/

   Patch from Wine CVS.


To generate a diff of this commit:
cvs rdiff -r1.87 -r1.87.2.1 pkgsrc/emulators/wine/Makefile
cvs rdiff -r1.33 -r1.33.2.1 pkgsrc/emulators/wine/distinfo
cvs rdiff -r0 -r1.4.14.1 pkgsrc/emulators/wine/patches/patch-ai

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.