Git-Url:
http://git.frugalware.org/gitweb/gitweb.cgi?p=generic.git;a=commitdiff;h=bfcf9cce680316342df0113c96e0115e1ed7ee34
commit bfcf9cce680316342df0113c96e0115e1ed7ee34
Author: Miklos Vajna <[EMAIL PROTECTED]>
Date: Thu Jul 24 18:48:24 2008 +0200
checkinstall-1.6.1-2-i686
- added CVE-2008-2958.patch
- closes #3209
diff --git a/source/devel-extra/checkinstall/CVE-2008-2958.patch
b/source/devel-extra/checkinstall/CVE-2008-2958.patch
new file mode 100644
index 0000000..c513650
--- /dev/null
+++ b/source/devel-extra/checkinstall/CVE-2008-2958.patch
@@ -0,0 +1,72 @@
+Index: checkinstall
+===================================================================
+--- checkinstall (revision 10000)
++++ checkinstall (working copy)
+@@ -965,16 +965,8 @@
+
+ # Find a safe TMP_DIR
+
+-TMP_DIR=${BASE_TMP_DIR}/`awk 'BEGIN { srand(); for (i=1;i<22;i++) { a=95;
while (a > 90 && a < 97) { a=65+int(50*rand())}; printf("%c", a) } }'`
+-[ -e "$TMP_DIR" ] && rm -rf $TMP_DIR
+-if [ -e "$TMP_DIR" ]; then
+- echo
+- echog "My temp dir exists already.\nThis looks like a symlink attack!"
+- echo
+- echog "*** Aborting"
+- echo
+- exit 1
+-fi
++TMP_DIR=`mktemp -q -d -p "${BASE_TMP_DIR}"`
++RETURN=$?
+
+ if [ "$TMP_DIR" = "$BASE_TMP_DIR" -o "$TMP_DIR" = "/" ]; then
+ echo
+@@ -985,11 +977,6 @@
+ exit 1
+ fi
+
+-
+-mkdir $TMP_DIR
+-chmod 700 $TMP_DIR
+-RETURN=$?
+-
+ if [ $RETURN -gt 0 ]; then
+ echo
+ echog "**** Failed to create temp dir! \n**** Do you have write permission
for %s? \n\n**** Aborting installation." "$BASE_TMP_DIR"
+Index: installwatch-0.7.0beta5/installwatch
+===================================================================
+--- installwatch-0.7.0beta5/installwatch (revision 10000)
++++ installwatch-0.7.0beta5/installwatch (working copy)
+@@ -74,31 +74,8 @@
+ local mkt_refdir=$1
+ local mkt_wrkdir=""
+
+- mkt_wrkdir=${BASE_TMP_DIR}/\
+-`awk 'BEGIN {\
+- srand();\
+- for (i=1;i<21;i++) {\
+- a=95;\
+- while (a > 90 && a < 97) {\
+- a=65+int(50*rand())\
+- };\
+- printf("%c", a) \
+- }\
+-}'`
+-
+- [ -e "${mkt_wrkdir}" ] && rm -rf ${mkt_wrkdir}
+- if [ -e "${mkt_wrkdir}" ]; then
+- echo
+- echo "Error : My temp dir exists already. This looks like a
symlink attack!"
+- echo
+- echo "*** Aborting ***"
+- echo
+- exit 1
+- fi
++ mkt_wrkdir=`mktemp -q -d -p ${BASE_TMP_DIR}`
+
+- mkdir ${mkt_wrkdir}
+- chmod 0700 ${mkt_wrkdir}
+-
+ eval $mkt_refdir=\$mkt_wrkdir
+ }
+
diff --git a/source/devel-extra/checkinstall/FrugalBuild
b/source/devel-extra/checkinstall/FrugalBuild
index 63a3592..bd44e26 100644
--- a/source/devel-extra/checkinstall/FrugalBuild
+++ b/source/devel-extra/checkinstall/FrugalBuild
@@ -4,7 +4,7 @@
pkgname=checkinstall
pkgver=1.6.1
ivver=0.7.0beta5
-pkgrel=1
+pkgrel=2
pkgdesc="Installs a compiled program from the program's source directory."
url="http://asic-linux.com.mx/~izto/checkinstall/";
depends=('glibc')
@@ -12,7 +12,11 @@ backup=(etc/checkinstallrc)
groups=('devel-extra')
archs=('i686' 'x86_64')
up2date="lynx -dump $url/download.php |grep Source|sed 's/.*-\(.*\)\.t.*/\1/'"
-source=($url/files/source/$pkgname-$pkgver.tgz glibc25-x86_64.patch)
+source=($url/files/source/$pkgname-$pkgver.tgz glibc25-x86_64.patch \
+ CVE-2008-2958.patch)
+sha1sums=('c55f87f2902831fd9da566d14aa8421006e70492' \
+ 'a3b0b64ba0f4b0709b25494b5850f84502cbc985' \
+ '4005972144b9fdde420a407d0255969951ae4499')
build()
{
@@ -35,6 +39,3 @@ build()
}
# optimization OK
-
-sha1sums=('c55f87f2902831fd9da566d14aa8421006e70492' \
- 'a3b0b64ba0f4b0709b25494b5850f84502cbc985')
_______________________________________________
Frugalware-git mailing list
[email protected]
http://frugalware.org/mailman/listinfo/frugalware-git
