Subject: CVS commit: pkgsrc/archivers/arc
To: None <pkgsrc-changes@NetBSD.org>
From: Lubomir Sedlacik <salo@netbsd.org>
List: pkgsrc-changes
Date: 10/06/2005 14:23:39
Module Name: pkgsrc
Committed By: salo
Date: Thu Oct 6 14:23:39 UTC 2005
Modified Files:
pkgsrc/archivers/arc: Makefile distinfo
Added Files:
pkgsrc/archivers/arc/patches: patch-ae
Log Message:
Security fix for CAN-2005-2945 and CAN-2005-2992:
"arc 5.21j and earlier create temporary files with world-readable permissions,
which allows local users to read sensitive information from files created by
arc or marc."
http://www.zataz.net/adviso/arc-09052005.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2945
Patch from Debian.
To generate a diff of this commit:
cvs rdiff -r1.23 -r1.24 pkgsrc/archivers/arc/Makefile
cvs rdiff -r1.8 -r1.9 pkgsrc/archivers/arc/distinfo
cvs rdiff -r0 -r1.1 pkgsrc/archivers/arc/patches/patch-ae
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.