Update of /cvsroot/fink/dists/10.3/unstable/main/finkinfo/text In directory sc8-pr-cvs17.sourceforge.net:/tmp/cvs-serv12577/10.3/unstable/main/finkinfo/text
Modified Files: tetex.info Log Message: SECURITY UPDATE: CVE-2007-3387. See also: [fink-core] tetex vulnerability Index: tetex.info =================================================================== RCS file: /cvsroot/fink/dists/10.3/unstable/main/finkinfo/text/tetex.info,v retrieving revision 1.17 retrieving revision 1.18 diff -u -d -r1.17 -r1.18 --- tetex.info 22 Aug 2007 06:35:06 -0000 1.17 +++ tetex.info 25 Nov 2007 14:25:02 -0000 1.18 @@ -2,7 +2,7 @@ Package: tetex%type_pkg[-nox] Type: -nox (boolean) Version: 3.0 -Revision: 4 +Revision: 5 GCC: 3.3 Description: Complete distribution of the TeX typesetting system Depends: %N-base (= %v-%r), texinfo, debianutils, texi2html @@ -31,8 +31,9 @@ Source-MD5: 944a4641e79e61043fdaf8f38ecbb4b3 Source2: http://fink.sodan.ecc.u-tokyo.ac.jp/pkgdists/kpathsea-3.5.6-tetex-3.0.patch.gz Source2-MD5: 8c855399616a49e26e411e6ed5db5092 -Source3: http://fink.sodan.ecc.u-tokyo.ac.jp/pkgdists/tetex-%v-security-200708.tar.bz2 -Source3-MD5: c91b95dc2d96bc61760d240aac4f8ee2 +Source3: http://fink.sodan.ecc.u-tokyo.ac.jp/pkgdists/tetex-3.0-security-200709.tar.bz2 +Source3-MD5: 461b069855d8c2852c647ebe44f7e1af +Tar3FilesRename: tetex-3.0-security-200709:tetex-3.0-security PatchFile: tetex.patch PatchFile-MD5: b5bc9d386f66b9542970d63adcf8270d PatchScript: << @@ -43,22 +44,25 @@ gzip -dc ../kpathsea-3.5.6-tetex-3.0.patch.gz | patch -p1 # Fix dvipdfm buffer overflow (imported from tetex-3.0-20.FC5) - patch -p1 < ../tetex-%v-security-200708/tetex-3.0-dvipdfm.patch + patch -p1 < ../tetex-3.0-security/tetex-3.0-dvipdfm.patch # Don't use tmpnam() in dvipdfm. (impoted from tetex-3.0-4.FC4) - patch -p1 < ../tetex-%v-security-200708/tetex-2.0.2-dvipdfm-security.patch + patch -p1 < ../tetex-3.0-security/tetex-2.0.2-dvipdfm-security.patch - # Fix xpdf overflows CVE-2005-3193 (impoted from tetex-3.0-20.FC5) - patch -p1 < ../tetex-%v-security-200708/tetex-3.0-CVE-2005-3193.patch + # Fix xpdf overflows CVE-2005-3193 (impoted from tetex-3.0-20.fc5) + patch -p1 < ../tetex-3.0-security/tetex-3.0-CVE-2005-3193.patch + + # Fix xpdf integer overflow CVE-2007-3387 (imported from tetex-3.0-40.1.fc7) + patch -p1 < ../tetex-3.0-security/tetex-3.0-CVE-2007-3387.patch # http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0104 - patch -d libs -p1 < ../tetex-%v-security-200708/post-3.5.5-kdegraphics-CVE-2007-0104.diff + patch -d libs -p1 < ../tetex-3.0-security/post-3.5.5-kdegraphics-CVE-2007-0104.diff # Don't use PID for temporary file names in scripts. (impoted from FC4) - patch -p1 < ../tetex-%v-security-200708/tetex-3.0-badscript.patch + patch -p1 < ../tetex-3.0-security/tetex-3.0-badscript.patch # Fix overflows in makeindex CVE-2007-0650 (impoted from tetex-3.0-34.fc6) - patch -p1 < ../tetex-%v-security-200708/tetex-3.0-CVE-2007-0650.patch + patch -p1 < ../tetex-3.0-security/tetex-3.0-CVE-2007-0650.patch << NoSetMAKEFLAGS: true SetMAKEFLAGS: -j1 ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Fink-commits mailing list Fink-commits@lists.sourceforge.net http://news.gmane.org/gmane.os.apple.fink.cvs