commit fvwm2 for openSUSE:Factory

Wed, 01 Feb 2023 07:44:35 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package fvwm2 for openSUSE:Factory checked 
in at 2023-02-01 16:39:47
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/fvwm2 (Old)
 and      /work/SRC/openSUSE:Factory/.fvwm2.new.32243 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "fvwm2"

Wed Feb  1 16:39:47 2023 rev:57 rq:1062423 version:2.6.9

Changes:
--------
--- /work/SRC/openSUSE:Factory/fvwm2/fvwm2.changes      2020-03-04 
09:48:39.466224560 +0100
+++ /work/SRC/openSUSE:Factory/.fvwm2.new.32243/fvwm2.changes   2023-02-01 
16:44:21.539566948 +0100
@@ -1,0 +2,6 @@
+Tue Jan 31 14:22:50 UTC 2023 - Reinhard Max <m...@suse.com>
+
+- Fix a buffer overflow in the FvwmAuto module.
+  fvwm-FvwmAuto-overflow.patch 
+
+-------------------------------------------------------------------

New:
----
  fvwm-FvwmAuto-overflow.patch

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ fvwm2.spec ++++++
--- /var/tmp/diff_new_pack.NIJ486/_old  2023-02-01 16:44:22.015569538 +0100
+++ /var/tmp/diff_new_pack.NIJ486/_new  2023-02-01 16:44:22.019569560 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package fvwm2
 #
-# Copyright (c) 2020 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -32,6 +32,7 @@
 Patch1:         fvwm-2.5.26-sv_SE.patch
 Patch2:         fvwm-no-date-time.patch
 Patch3:         enable-more-mouse-buttons.patch
+Patch4:         fvwm-FvwmAuto-overflow.patch
 BuildRequires:  automake
 BuildRequires:  gcc-c++
 BuildRequires:  libpng-devel
@@ -63,7 +64,7 @@
 Requires:       xdg-menu
 Requires:       xli
 Requires(post): update-alternatives
-Requires(postun): update-alternatives
+Requires(postun):update-alternatives
 Provides:       fvwm
 Provides:       fvwmicns
 Provides:       windowmanager

++++++ fvwm-FvwmAuto-overflow.patch ++++++
--- modules/FvwmAuto/FvwmAuto.c.orig
+++ modules/FvwmAuto/FvwmAuto.c
@@ -340,6 +340,8 @@ main(int argc, char **argv)
        {
                len = max(len, strlen(leave_fn));
        }
+       /* add space for newline and trailing 0 */
+       len += 2;
        if (do_pass_id)
        {
                len += 32;

Reply via email to