[CVS] OpenPKG: openpkg-src/gzip/ gzip.patch

Thu, 07 Dec 2006 07:48:49 -0800 

  OpenPKG CVS Repository
  http://cvs.openpkg.org/
  ____________________________________________________________________________

  Server: cvs.openpkg.org                  Name:   Ralf S. Engelschall
  Root:   /v/openpkg/cvs                   Email:  [EMAIL PROTECTED]
  Module: openpkg-src                      Date:   07-Dec-2006 16:49:05
  Branch: HEAD                             Handle: 2006120715490400

  Modified files:
    openpkg-src/gzip        gzip.patch

  Log:
    ops, add back comments

  Summary:
    Revision    Changes     Path
    1.9         +15 -4      openpkg-src/gzip/gzip.patch
  ____________________________________________________________________________

  patch -p0 <<'@@ .'
  Index: openpkg-src/gzip/gzip.patch
  ============================================================================
  $ cvs diff -u -r1.8 -r1.9 gzip.patch
  --- openpkg-src/gzip/gzip.patch       7 Dec 2006 15:45:32 -0000       1.8
  +++ openpkg-src/gzip/gzip.patch       7 Dec 2006 15:49:04 -0000       1.9
  @@ -1,6 +1,8 @@
  +Security Fix
  +
   Index: gzip.c
   --- gzip.c.orig      2006-12-07 07:58:13 +0100
  -+++ gzip.c   2006-12-07 16:43:35 +0100
  ++++ gzip.c   2006-12-07 16:47:45 +0100
   @@ -176,7 +176,7 @@
    DECLARE(uch, inbuf,  INBUFSIZ +INBUF_EXTRA);
    DECLARE(uch, outbuf, OUTBUFSIZ+OUTBUF_EXTRA);
  @@ -10,9 +12,18 @@
    #ifndef MAXSEG_64K
        DECLARE(ush, tab_prefix, 1L<<BITS);
    #else
  +
  +-----------------------------------------------------------------------------
  +
  +Security Fixes 
  +- OOB write        (CVE-2006-4335)
  +- Buffer underflow (CVE-2006-4336)
  +- Buffer overflow  (CVE-2006-4337)
  +- Infinite loop    (CVE-2006-4338)
  +
   Index: gzip.h
   --- gzip.h.orig      2006-11-20 09:40:33 +0100
  -+++ gzip.h   2006-12-07 16:43:35 +0100
  ++++ gzip.h   2006-12-07 16:47:45 +0100
   @@ -220,6 +220,8 @@
    extern int to_stdout;      /* output to stdout (-c) */
    extern int save_orig_name; /* set if original name must be saved */
  @@ -24,7 +35,7 @@
    
   Index: unlzh.c
   --- unlzh.c.orig     2006-11-20 09:40:34 +0100
  -+++ unlzh.c  2006-12-07 16:43:35 +0100
  ++++ unlzh.c  2006-12-07 16:47:45 +0100
   @@ -145,12 +145,17 @@
        unsigned i, k, len, ch, jutbits, avail, nextcode, mask;
    
  @@ -154,7 +165,7 @@
        }
   Index: unpack.c
   --- unpack.c.orig    2006-11-20 09:40:34 +0100
  -+++ unpack.c 2006-12-07 16:43:35 +0100
  ++++ unpack.c 2006-12-07 16:47:45 +0100
   @@ -26,7 +26,6 @@
    #include "gzip.h"
    #include "crypt.h"
  @@ .
______________________________________________________________________
The OpenPKG Project                                    www.openpkg.org
CVS Repository Commit List                     [email protected]

Reply via email to