[CVS] OpenPKG: OPENPKG_2_3_SOLID: openpkg-src/php/ php.patch php.spec

Tue, 04 Oct 2005 13:00:44 -0700 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Ralf S. Engelschall
  Root:   /v/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   04-Oct-2005 22:00:39
  Branch: OPENPKG_2_3_SOLID                Handle: 2005100421003800

  Modified files:           (Branch: OPENPKG_2_3_SOLID)
    openpkg-src/php         php.patch php.spec

  Log:
    Security Fix (CAN-2005-3054)

  Summary:
    Revision    Changes     Path
    1.9.2.1     +18 -0      openpkg-src/php/php.patch
    1.103.2.4   +1  -1      openpkg-src/php/php.spec
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/php/php.patch
  ============================================================================
  $ cvs diff -u -r1.9 -r1.9.2.1 php.patch
  --- openpkg-src/php/php.patch 6 Feb 2005 13:41:53 -0000       1.9
  +++ openpkg-src/php/php.patch 4 Oct 2005 20:00:38 -0000       1.9.2.1
  @@ -110,3 +110,21 @@
    #define u_int32_t uint32_t
    #endif
    
  +-----------------------------------------------------------------------------
  +
  +Security Fix (CAN-2005-3054)
  +
  +Index: main/fopen_wrappers.c
  +--- main/fopen_wrappers.c.orig       2005-02-03 00:44:07 +0100
  ++++ main/fopen_wrappers.c    2005-10-04 21:52:15 +0200
  +@@ -120,8 +120,8 @@
  +             /* Handler for basedirs that end with a / */
  +             resolved_basedir_len = strlen(resolved_basedir);
  +             if (basedir[strlen(basedir) - 1] == PHP_DIR_SEPARATOR) {
  +-                    if (resolved_basedir[resolved_basedir_len - 1] == '/') {
  +-                            resolved_basedir[resolved_basedir_len - 1] = 
PHP_DIR_SEPARATOR;
  ++                    if (resolved_basedir[resolved_basedir_len - 1] != 
PHP_DIR_SEPARATOR) {
  ++                            resolved_basedir[resolved_basedir_len] = 
PHP_DIR_SEPARATOR;
  +                             resolved_basedir[++resolved_basedir_len] = '\0';
  +                     }
  +             }
  @@ .
  patch -p0 <<'@@ .'
  Index: openpkg-src/php/php.spec
  ============================================================================
  $ cvs diff -u -r1.103.2.3 -r1.103.2.4 php.spec
  --- openpkg-src/php/php.spec  23 Jun 2005 13:58:32 -0000      1.103.2.3
  +++ openpkg-src/php/php.spec  4 Oct 2005 20:00:38 -0000       1.103.2.4
  @@ -38,7 +38,7 @@
   Group:        Language
   License:      PHP
   Version:      %{V_php}
  -Release:      2.3.2
  +Release:      2.3.3
   
   #   package options
   %option       with_bc                   no
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [email protected]

Reply via email to