[CVS] OpenPKG: openpkg-src/w3m/ w3m.patch w3m.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 09:26:41
Branch: HEAD Handle: 2004042908264100
Modified files:
openpkg-src/w3m w3m.spec
Removed files:
openpkg-src/w3m w3m.patch
Log:
upgrading package: w3m 0.5 - 0.5.1
Summary:
RevisionChanges Path
1.3 +0 -11 openpkg-src/w3m/w3m.patch
1.52+2 -4 openpkg-src/w3m/w3m.spec
rm -f openpkg-src/w3m/w3m.patch '@@ .'
Index: openpkg-src/w3m/w3m.patch
[NO CHANGE SUMMARY BECAUSE FILE AS A WHOLE IS JUST REMOVED]
@@ .
patch -p0 '@@ .'
Index: openpkg-src/w3m/w3m.spec
$ cvs diff -u -r1.51 -r1.52 w3m.spec
--- openpkg-src/w3m/w3m.spec 24 Mar 2004 10:48:17 - 1.51
+++ openpkg-src/w3m/w3m.spec 29 Apr 2004 07:26:41 - 1.52
@@ -33,12 +33,11 @@
Class:BASE
Group:Web
License: BSD
-Version: 0.5
-Release: 20040324
+Version: 0.5.1
+Release: 20040429
# list of sources
Source0: http://osdn.dl.sourceforge.net/sourceforge/w3m/w3m-%{version}.tar.gz
-Patch0: w3m.patch
# build information
Prefix: %{l_prefix}
@@ -66,7 +65,6 @@
%prep
%setup -q
-%patch -p0
%{l_shtool} subst \
-e 's;^\(#define JP_CHARSET\);/*\1*/;g' \
fm.h \
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/perl-util/ perl-util.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 11:48:23
Branch: HEAD Handle: 2004042910482200
Modified files:
openpkg-src/perl-util perl-util.spec
Log:
modifying package: perl-util-5.8.4 20040422 - 20040429
Summary:
RevisionChanges Path
1.123 +2 -2 openpkg-src/perl-util/perl-util.spec
patch -p0 '@@ .'
Index: openpkg-src/perl-util/perl-util.spec
$ cvs diff -u -r1.122 -r1.123 perl-util.spec
--- openpkg-src/perl-util/perl-util.spec 22 Apr 2004 10:01:40 - 1.122
+++ openpkg-src/perl-util/perl-util.spec 29 Apr 2004 09:48:22 - 1.123
@@ -47,7 +47,7 @@
%define V_startup 0.103
%define V_string_divert0.93
%define V_test 1.24
-%define V_test_harness 2.40
+%define V_test_harness 2.42
%define V_test_inline 0.16
%define V_test_manifest0.93
%define V_test_simple 0.47
@@ -63,7 +63,7 @@
Group:Language
License: GPL/Artistic
Version: %{V_perl}
-Release: 20040422
+Release: 20040429
# list of sources
Source0: http://www.cpan.org/modules/by-module/Test/Test-%{V_test}.tar.gz
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/perl-ds/ perl-ds.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 11:48:27
Branch: HEAD Handle: 2004042910482700
Modified files:
openpkg-src/perl-ds perl-ds.spec
Log:
modifying package: perl-ds-5.8.4 20040422 - 20040429
Summary:
RevisionChanges Path
1.37+2 -2 openpkg-src/perl-ds/perl-ds.spec
patch -p0 '@@ .'
Index: openpkg-src/perl-ds/perl-ds.spec
$ cvs diff -u -r1.36 -r1.37 perl-ds.spec
--- openpkg-src/perl-ds/perl-ds.spec 22 Apr 2004 07:56:16 - 1.36
+++ openpkg-src/perl-ds/perl-ds.spec 29 Apr 2004 09:48:27 - 1.37
@@ -32,7 +32,7 @@
%define V_tie_ixhash 1.21
%define V_tree_dag_node 1.04
%define V_tree_nary 1.3
-%define V_tree_simple 1.0
+%define V_tree_simple 1.01
%define V_tree_trie 1.0
%define V_tree_bptree 1.06
@@ -47,7 +47,7 @@
Group:Language
License: GPL/Artistic
Version: %{V_perl}
-Release: 20040422
+Release: 20040429
# list of sources
Source0:
http://www.cpan.org/modules/by-module/Bit/Bit-Vector-%{V_bit_vector}.tar.gz
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/imagemagick/ imagemagick.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 11:48:39
Branch: HEAD Handle: 2004042910483800
Modified files:
openpkg-src/imagemagick imagemagick.spec
Log:
upgrading package: imagemagick 6.0.0.6 - 6.0.0.7
Summary:
RevisionChanges Path
1.133 +2 -2 openpkg-src/imagemagick/imagemagick.spec
patch -p0 '@@ .'
Index: openpkg-src/imagemagick/imagemagick.spec
$ cvs diff -u -r1.132 -r1.133 imagemagick.spec
--- openpkg-src/imagemagick/imagemagick.spec 27 Apr 2004 18:17:49 - 1.132
+++ openpkg-src/imagemagick/imagemagick.spec 29 Apr 2004 09:48:38 - 1.133
@@ -25,7 +25,7 @@
# package version
%define V_major 6.0.0
-%define V_minor 6
+%define V_minor 7
%if %{V_minor} == 0
%define V_dist %{V_major}
%else
@@ -43,7 +43,7 @@
Group:Graphics
License: GPL
Version: %{V_major}.%{V_minor}
-Release: 20040427
+Release: 20040429
# package options
%option with_perl no
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/uvscan/ uvscan.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 11:48:42
Branch: HEAD Handle: 2004042910484200
Modified files:
openpkg-src/uvscan uvscan.spec
Log:
upgrading package: uvscan 4.32.4353 - 4.32.4354
Summary:
RevisionChanges Path
1.174 +2 -2 openpkg-src/uvscan/uvscan.spec
patch -p0 '@@ .'
Index: openpkg-src/uvscan/uvscan.spec
$ cvs diff -u -r1.173 -r1.174 uvscan.spec
--- openpkg-src/uvscan/uvscan.spec28 Apr 2004 08:17:38 - 1.173
+++ openpkg-src/uvscan/uvscan.spec29 Apr 2004 09:48:42 - 1.174
@@ -26,7 +26,7 @@
# package versions
%define V_engine 4.32
%define V_engine_comp 432
-%define V_datfiles4353
+%define V_datfiles4354
# package information
Name: uvscan
@@ -39,7 +39,7 @@
Group:Filesystem
License: Commercial/Free-Trial
Version: %{V_engine}.%{V_datfiles}
-Release: 20040428
+Release: 20040429
# list of sources
Source0: ftp://ftp.mcafee.com/pub/antivirus/datfiles/4.x/dat-%{V_datfiles}.tar
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/png/ png.patch png.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Thomas Lotterer
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 17:01:59
Branch: HEAD Handle: 2004042916015800
Modified files:
openpkg-src/png png.patch png.spec
Log:
SA-2004.017-png
Summary:
RevisionChanges Path
1.2 +23 -0 openpkg-src/png/png.patch
1.34+1 -1 openpkg-src/png/png.spec
patch -p0 '@@ .'
Index: openpkg-src/png/png.patch
$ cvs diff -u -r1.1 -r1.2 png.patch
--- openpkg-src/png/png.patch 15 Jan 2003 13:50:46 - 1.1
+++ openpkg-src/png/png.patch 29 Apr 2004 15:01:58 - 1.2
@@ -22,3 +22,26 @@
for (i = 0; i row_width; i++)
{
*(--dp) = *(--sp);
+
+Steve G [EMAIL PROTECTED]
+Libpng accesses memory that is out of bounds when creating an error message
+
+Index: pngerror.c
+--- pngerror.c.orig 2002-10-03 13:32:27.0 +0200
pngerror.c 2004-04-28 13:24:22.0 +0200
+@@ -135,10 +135,13 @@
+ buffer[iout] = 0;
+else
+{
++ png_size_t len;
++ if ((len = png_strlen(error_message)) 63)
++ len = 63;
+ buffer[iout++] = ':';
+ buffer[iout++] = ' ';
+- png_memcpy(buffer+iout, error_message, 64);
+- buffer[iout+63] = 0;
++ png_memcpy(buffer+iout, error_message, len);
++ buffer[iout+len] = 0;
+}
+ }
+
@@ .
patch -p0 '@@ .'
Index: openpkg-src/png/png.spec
$ cvs diff -u -r1.33 -r1.34 png.spec
--- openpkg-src/png/png.spec 7 Feb 2004 17:58:01 - 1.33
+++ openpkg-src/png/png.spec 29 Apr 2004 15:01:58 - 1.34
@@ -34,7 +34,7 @@
Group:Graphics
License: BSD
Version: 1.2.5
-Release: 20040207
+Release: 20040429
# list of sources
Source0:
http://osdn.dl.sourceforge.net/sourceforge/libpng/libpng-%{version}.tar.gz
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/abiword/ abiword.patch abiword.spec openpkg...
;
++ if ((len = png_strlen(error_message)) 63)
++ len = 63;
+ buffer[iout++] = ':';
+ buffer[iout++] = ' ';
+- png_memcpy(buffer+iout, error_message, 64);
+- buffer[iout+63] = 0;
++ png_memcpy(buffer+iout, error_message, len);
++ buffer[iout+len] = 0;
+}
+ }
+
@@ .
patch -p0 '@@ .'
Index: openpkg-src/abiword/abiword.spec
$ cvs diff -u -r1.16 -r1.17 abiword.spec
--- openpkg-src/abiword/abiword.spec 6 Apr 2004 07:47:41 - 1.16
+++ openpkg-src/abiword/abiword.spec 29 Apr 2004 15:06:52 - 1.17
@@ -24,8 +24,8 @@
##
# package version
-%define V_opkg 2.1.1
-%define V_dist 2.1.1
+%define V_opkg 2.1.2
+%define V_dist 2.1.2
# package information
Name: abiword
@@ -38,7 +38,7 @@
Group:Editor
License: GPL
Version: %{V_opkg}
-Release: 20040406
+Release: 20040429
# list of sources
Source0:
http://download.sourceforge.net/sourceforge/abiword/abiword-%{V_dist}.tar.gz
@@ .
patch -p0 '@@ .'
Index: openpkg-src/analog/analog.patch
$ cvs diff -u -r0 -r1.1 analog.patch
--- /dev/null 2004-04-29 17:06:53.0 +0200
+++ analog.patch 2004-04-29 17:06:53.0 +0200
@@ -0,0 +1,22 @@
+Steve G [EMAIL PROTECTED]
+Libpng accesses memory that is out of bounds when creating an error message
+
+Index: pngerror.c
+--- src/libpng/pngerror.c.orig 2002-10-03 13:32:27.0 +0200
src/libpng/pngerror.c2004-04-28 13:24:22.0 +0200
+@@ -135,10 +135,13 @@
+ buffer[iout] = 0;
+else
+{
++ png_size_t len;
++ if ((len = png_strlen(message)) 63)
++ len = 63;
+ buffer[iout++] = ':';
+ buffer[iout++] = ' ';
+- png_memcpy(buffer+iout, message, 64);
+- buffer[iout+63] = 0;
++ png_memcpy(buffer+iout, message, len);
++ buffer[iout+len] = 0;
+}
+ }
+
@@ .
patch -p0 '@@ .'
Index: openpkg-src/analog/analog.spec
$ cvs diff -u -r1.38 -r1.39 analog.spec
--- openpkg-src/analog/analog.spec7 Feb 2004 17:53:22 - 1.38
+++ openpkg-src/analog/analog.spec29 Apr 2004 15:06:52 - 1.39
@@ -34,10 +34,11 @@
Group:Web
License: GPL
Version: 5.32
-Release: 20040207
+Release: 20040429
# list of sources
Source0: http://www.analog.cx/analog-%{version}.tar.gz
+Patch0: analog.patch
# build information
Prefix: %{l_prefix}
@@ -62,6 +63,7 @@
%prep
%setup -q
+%patch
%build
cd src
@@ .
patch -p0 '@@ .'
Index: openpkg-src/doxygen/doxygen.patch
$ cvs diff -u -r0 -r1.1 doxygen.patch
--- /dev/null 2004-04-29 17:06:53.0 +0200
+++ doxygen.patch 2004-04-29 17:06:53.0 +0200
@@ -0,0 +1,47 @@
+--- libpng/pngrtran.c.orig Wed Oct 2 20:20:24 2002
libpng/pngrtran.cWed Jan 15 11:30:23 2003
+@@ -1965,8 +1965,8 @@
+ /* This changes the data from RRGGBB to RRGGBBXX */
+ if (flags PNG_FLAG_FILLER_AFTER)
+ {
+-png_bytep sp = row + (png_size_t)row_width * 3;
+-png_bytep dp = sp + (png_size_t)row_width;
++png_bytep sp = row + (png_size_t)row_width * 6;
++png_bytep dp = sp + (png_size_t)row_width * 2;
+ for (i = 1; i row_width; i++)
+ {
+*(--dp) = hi_filler;
+@@ -1987,8 +1987,8 @@
+ /* This changes the data from RRGGBB to XXRRGGBB */
+ else
+ {
+-png_bytep sp = row + (png_size_t)row_width * 3;
+-png_bytep dp = sp + (png_size_t)row_width;
++png_bytep sp = row + (png_size_t)row_width * 6;
++png_bytep dp = sp + (png_size_t)row_width * 2;
+ for (i = 0; i row_width; i++)
+ {
+*(--dp) = *(--sp);
+
+Steve G [EMAIL PROTECTED]
+Libpng accesses memory that is out of bounds when creating an error message
+
+Index: pngerror.c
+--- libpng/pngerror.c.orig 2002-10-03 13:32:27.0 +0200
libpng/pngerror.c2004-04-28 13:24:22.0 +0200
+@@ -135,10 +135,13 @@
+ buffer[iout] = 0;
+else
+{
++ png_size_t len;
++ if ((len = png_strlen(message)) 63)
++ len = 63;
+ buffer[iout++] = ':';
+ buffer[iout++] = ' ';
+- png_memcpy(buffer+iout, message, 64);
+- buffer[iout+63] = 0;
++ png_memcpy(buffer+iout, message, len);
++ buffer
[CVS] OpenPKG: openpkg-src/rsync/ rsync.patch rsync.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 17:27:25
Branch: HEAD Handle: 2004042916272500
Modified files:
openpkg-src/rsync rsync.patch rsync.spec
Log:
replace rsh/ssh hack with new --with-rsh option and add a bugfix from
the rsync mailing list (see
http://lists.samba.org/archive/rsync/2004-April/009334.html)
Summary:
RevisionChanges Path
1.6 +22 -36 openpkg-src/rsync/rsync.patch
1.62+3 -2 openpkg-src/rsync/rsync.spec
patch -p0 '@@ .'
Index: openpkg-src/rsync/rsync.patch
$ cvs diff -u -r1.5 -r1.6 rsync.patch
--- openpkg-src/rsync/rsync.patch 1 Jan 2004 19:17:57 - 1.5
+++ openpkg-src/rsync/rsync.patch 29 Apr 2004 15:27:25 - 1.6
@@ -1,41 +1,27 @@
-Index: main.c
main.c.orig 2003-12-20 17:57:24.0 +0100
-+++ main.c 2004-01-01 20:12:53.0 +0100
-@@ -209,7 +209,7 @@
- if (!cmd)
- cmd = rsh_env;
- if (!cmd)
--cmd = RSYNC_RSH;
-+cmd = RSYNC_SSH;
- cmd = strdup(cmd);
- if (!cmd)
- goto oom;
-Index: options.c
options.c.orig 2003-12-30 19:16:25.0 +0100
-+++ options.c2004-01-01 20:14:14.0 +0100
-@@ -238,7 +238,7 @@
- rprintf(F, --no-whole-file turn off --whole-file\n);
- rprintf(F, -x, --one-file-system don't cross filesystem boundaries\n);
- rprintf(F, -B, --block-size=SIZE checksum blocking size (default
%d)\n,BLOCK_SIZE);
-- rprintf(F, -e, --rsh=COMMAND specify the remote shell\n);
-+ rprintf(F, -e, --rsh=COMMAND specify rsh replacement (default %s)\n,
RSYNC_SSH);
- rprintf(F, --rsync-path=PATH specify path to rsync on the remote
machine\n);
- rprintf(F, --existing only update files that already exist\n);
- rprintf(F, --ignore-existing ignore files that already exist on
receiving side\n);
-Index: rsync.h
rsync.h.orig 2003-12-17 00:04:59.0 +0100
-+++ rsync.h 2004-01-01 20:12:53.0 +0100
-@@ -121,6 +121,7 @@
- #ifdef HAVE_SYS_PARAM_H
- #include sys/param.h
- #endif
-+#define RSYNC_SSH ssh
-
- #ifdef HAVE_STDLIB_H
- #include stdlib.h
+Index: uidlist.c
+--- uidlist.c.orig 2004-02-20 18:09:30.0 +0100
uidlist.c2004-04-29 17:22:32.0 +0200
+@@ -81,7 +81,7 @@
+ static int map_uid(int id, char *name)
+ {
+ uid_t uid;
+-if (uid != 0 name_to_uid(name, uid))
++if (id != 0 name_to_uid(name, uid))
+ return uid;
+ return id;
+ }
+@@ -89,7 +89,7 @@
+ static int map_gid(int id, char *name)
+ {
+ gid_t gid;
+-if (gid != 0 name_to_gid(name, gid))
++if (id != 0 name_to_gid(name, gid))
+ return gid;
+ return id;
+ }
Index: zlib/infcodes.c
--- zlib/infcodes.c.orig 2002-03-12 02:14:58.0 +0100
-+++ zlib/infcodes.c 2004-01-01 20:12:53.0 +0100
zlib/infcodes.c 2004-04-29 17:21:36.0 +0200
@@ -197,8 +197,18 @@
c-mode = COPY;
case COPY: /* o: copying bytes in window, waiting for space */
@@ .
patch -p0 '@@ .'
Index: openpkg-src/rsync/rsync.spec
$ cvs diff -u -r1.61 -r1.62 rsync.spec
--- openpkg-src/rsync/rsync.spec 28 Apr 2004 16:46:00 - 1.61
+++ openpkg-src/rsync/rsync.spec 29 Apr 2004 15:27:25 - 1.62
@@ -34,7 +34,7 @@
Group:Filesystem
License: GPL
Version: 2.6.1
-Release: 20040428
+Release: 20040429
# list of sources
Source0: http://rsync.samba.org/ftp/rsync/rsync-%{version}.tar.gz
@@ -80,7 +80,8 @@
--prefix=%{l_prefix} \
--with-rsyncd-conf=%{l_prefix}/etc/rsync/rsync.conf \
--disable-debug \
---with-included-popt
+--with-included-popt \
+--with-rsh=ssh
# build vendor sources
%{l_make} %{l_mflags -O}
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/ripe-whois/ ripe-whois.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Michael Schloh
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 18:24:57
Branch: HEAD Handle: 2004042917245600
Modified files:
openpkg-src/ripe-whois ripe-whois.spec
Log:
add option to match default port number with that of corresponding
server package (ripe-dbase 43001)
Summary:
RevisionChanges Path
1.5 +9 -1 openpkg-src/ripe-whois/ripe-whois.spec
patch -p0 '@@ .'
Index: openpkg-src/ripe-whois/ripe-whois.spec
$ cvs diff -u -r1.4 -r1.5 ripe-whois.spec
--- openpkg-src/ripe-whois/ripe-whois.spec7 Feb 2004 17:58:28 - 1.4
+++ openpkg-src/ripe-whois/ripe-whois.spec29 Apr 2004 16:24:56 - 1.5
@@ -34,7 +34,10 @@
Group:Network
License: RIPE NCC
Version: 3.1.1
-Release: 20040207
+Release: 20040429
+
+# package options
+%option with_altport yes
# list of sources
Source0: ftp://ftp.ripe.net/tools/ripe-whois-%{version}v6.tar.gz
@@ -60,6 +63,11 @@
%prep
%setup -q -n whois-%{version}v6
+%if %{with_altport} == yes
+%{l_shtool} subst \
+-e 's;\(DEFAULT_WHOIS_PORT \)43;\143001;' \
+whois3.c
+%endif
%build
CC=%{l_cc} \
@@ .
__
The OpenPKG Projectwww.openpkg.org
CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-src/shsql/ shsql.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 20:34:08
Branch: HEAD Handle: 2004042919340700
Added files:
openpkg-src/shsql shsql.spec
Log:
new package: shsql 1.24 (Shell SQL RDBMS)
Summary:
RevisionChanges Path
1.1 +101 -0 openpkg-src/shsql/shsql.spec
patch -p0 '@@ .'
Index: openpkg-src/shsql/shsql.spec
$ cvs diff -u -r0 -r1.1 shsql.spec
--- /dev/null 2004-04-29 20:34:08.0 +0200
+++ shsql.spec2004-04-29 20:34:08.0 +0200
@@ -0,0 +1,101 @@
+##
+## shsql.spec -- OpenPKG RPM Specification
+## Copyright (c) 2000-2004 The OpenPKG Project http://www.openpkg.org/
+## Copyright (c) 2000-2004 Ralf S. Engelschall [EMAIL PROTECTED]
+## Copyright (c) 2000-2004 Cable Wireless http://www.cw.com/
+##
+## Permission to use, copy, modify, and distribute this software for
+## any purpose with or without fee is hereby granted, provided that
+## the above copyright notice and this permission notice appear in all
+## copies.
+##
+## THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED
+## WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
+## MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+## IN NO EVENT SHALL THE AUTHORS AND COPYRIGHT HOLDERS AND THEIR
+## CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+## SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+## LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
+## USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+## ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+## OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
+## OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+## SUCH DAMAGE.
+##
+
+# package version
+%define V_real 1.24
+%define V_comp 124
+
+# package information
+Name: shsql
+Summary: Shell SQL RDBMS
+URL: http://quisp.sourceforge.net/sqlman/html/shsql_home.html
+Vendor: Steve Grubb
+Packager: The OpenPKG Project
+Distribution: OpenPKG
+Class:EVAL
+Group:Database
+License: GPL
+Version: %{V_real}
+Release: 20040429
+
+# list of sources
+Source0: http://quisp.sourceforge.net/download/quisp%{V_comp}.tar.gz
+
+# build information
+Prefix: %{l_prefix}
+BuildRoot:%{l_buildroot}
+BuildPreReq: OpenPKG, openpkg = 20040130
+PreReq: OpenPKG, openpkg = 20040130
+AutoReq: no
+AutoReqProv: no
+
+%description
+SHSQL is a standalone SQL database that stores data in ASCII
+text files. It has a small memory footprint and code size and
+can be embedded directly into applications -- there is no server
+process. SHSQL is a pared-down SQL implementation but retains useful
+features such as timeout record locking and search engine comparison
+operators. A SHSQL database can be updated via SQL, or by editing
+data files with a text editor. Applications link to the supplied C
+language API. There is also a command-line SQL utility.
+
+%track
+prog shsql = {
+version = %{V_comp}
+url = http://quisp.sourceforge.net/download/
+regex = quisp(__VER__)\.tar\.gz
+}
+
+%prep
+%setup -q -n quisp%{V_comp}
+
+%build
+( cd sqlsrc
+ %{l_make} %{l_mflags} \
+ CC=%{l_cc} CFLAGS=%{l_cflags -O} -DSHSQL
+) || exit $?
+mv bin/newproject.sh shsql_newproject
+
+%install
+rm -rf $RPM_BUILD_ROOT
+%{l_shtool} mkdir -f -p -m 755 \
+$RPM_BUILD_ROOT%{l_prefix}/bin \
+$RPM_BUILD_ROOT%{l_prefix}/lib \
+$RPM_BUILD_ROOT%{l_prefix}/man/man1
+%{l_shtool} install -c -m 755 \
+shsql_newproject $RPM_BUILD_ROOT%{l_prefix}/bin/
+%{l_shtool} install -c -s -m 755 \
+bin/* $RPM_BUILD_ROOT%{l_prefix}/bin/
+%{l_shtool} install -c -m 644 \
+lib/* $RPM_BUILD_ROOT%{l_prefix}/lib/
+%{l_shtool} install -c -m 644 \
+sqlman/manshsql/*.1 $RPM_BUILD_ROOT%{l_prefix}/man/man1/
+%{l_rpmtool} files -v -ofiles -r$RPM_BUILD_ROOT %{l_files_std}
+
+%files -f files
+
+%clean
+rm -rf $RPM_BUILD_ROOT
+
@@ .
__
The OpenPKG Project
[CVS] OpenPKG: OPENPKG_1_3_SOLID: openpkg-src/analog/ analog.patch ana...
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Thomas Lotterer
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 21:56:28
Branch: OPENPKG_1_3_SOLIDHandle: 2004042920562404
Added files: (Branch: OPENPKG_1_3_SOLID)
openpkg-src/analog analog.patch
openpkg-src/doxygen doxygen.patch
openpkg-src/ghostscript ghostscript.patch
openpkg-src/pdflib pdflib.patch
openpkg-src/perl-tk perl-tk.patch
openpkg-src/rrdtool rrdtool.patch
openpkg-src/tetex tetex.patch
Modified files: (Branch: OPENPKG_1_3_SOLID)
openpkg-src/analog analog.spec
openpkg-src/doxygen doxygen.spec
openpkg-src/ghostscript ghostscript.spec
openpkg-src/pdflib pdflib.spec
openpkg-src/perl-tk perl-tk.spec
openpkg-src/png png.patch png.spec
openpkg-src/rrdtool rrdtool.spec
openpkg-src/tetex tetex.spec
Log:
SA-2004.017-png
Summary:
RevisionChanges Path
1.1.4.1 +22 -0 openpkg-src/analog/analog.patch
1.31.2.2.2.2+3 -1 openpkg-src/analog/analog.spec
1.1.4.1 +47 -0 openpkg-src/doxygen/doxygen.patch
1.21.2.3.2.2+3 -1 openpkg-src/doxygen/doxygen.spec
1.6.2.1 +47 -0 openpkg-src/ghostscript/ghostscript.patch
1.33.2.2.2.2+3 -1 openpkg-src/ghostscript/ghostscript.spec
1.2.2.1 +47 -0 openpkg-src/pdflib/pdflib.patch
1.16.2.2.2.2+3 -1 openpkg-src/pdflib/pdflib.spec
1.3.2.1 +50 -0 openpkg-src/perl-tk/perl-tk.patch
1.16.2.3.2.2+3 -1 openpkg-src/perl-tk/perl-tk.spec
1.1.10.1+23 -0 openpkg-src/png/png.patch
1.29.2.2.2.2+1 -1 openpkg-src/png/png.spec
1.4.2.1 +47 -0 openpkg-src/rrdtool/rrdtool.patch
1.31.2.2.2.2+3 -1 openpkg-src/rrdtool/rrdtool.spec
1.1.4.1.2.1 +47 -0 openpkg-src/tetex/tetex.patch
1.36.2.2.2.3+3 -1 openpkg-src/tetex/tetex.spec
patch -p0 '@@ .'
Index: openpkg-src/analog/analog.patch
$ cvs diff -u -r0 -r1.1.4.1 analog.patch
--- /dev/null 2004-04-29 21:56:24.0 +0200
+++ analog.patch 2004-04-29 21:56:24.0 +0200
@@ -0,0 +1,22 @@
+Steve G [EMAIL PROTECTED]
+Libpng accesses memory that is out of bounds when creating an error message
+
+Index: pngerror.c
+--- src/libpng/pngerror.c.orig 2002-10-03 13:32:27.0 +0200
src/libpng/pngerror.c2004-04-28 13:24:22.0 +0200
+@@ -135,10 +135,13 @@
+ buffer[iout] = 0;
+else
+{
++ png_size_t len;
++ if ((len = png_strlen(message)) 63)
++ len = 63;
+ buffer[iout++] = ':';
+ buffer[iout++] = ' ';
+- png_memcpy(buffer+iout, message, 64);
+- buffer[iout+63] = 0;
++ png_memcpy(buffer+iout, message, len);
++ buffer[iout+len] = 0;
+}
+ }
+
@@ .
patch -p0 '@@ .'
Index: openpkg-src/analog/analog.spec
$ cvs diff -u -r1.31.2.2.2.1 -r1.31.2.2.2.2 analog.spec
--- openpkg-src/analog/analog.spec29 Jul 2003 14:58:12 - 1.31.2.2.2.1
+++ openpkg-src/analog/analog.spec29 Apr 2004 19:56:24 - 1.31.2.2.2.2
@@ -33,10 +33,11 @@
Group:Web
License: GPL
Version: 5.32
-Release: 1.3.0
+Release: 1.3.1
# list of sources
Source0: http://www.analog.cx/analog-%{version}.tar.gz
+Patch0: analog.patch
# build information
Prefix: %{l_prefix}
@@ -54,6 +55,7 @@
%prep
%setup -q
+%patch
%build
cd src
@@ .
patch -p0 '@@ .'
Index: openpkg-src/doxygen/doxygen.patch
$ cvs diff -u -r0 -r1.1.4.1 doxygen.patch
--- /dev/null 2004-04-29 21:56:25.0 +0200
+++ doxygen.patch 2004-04-29 21:56:25.0 +0200
@@ -0,0 +1,47 @@
+--- libpng/pngrtran.c.orig Wed Oct 2 20:20:24 2002
libpng/pngrtran.cWed Jan 15 11:30:23 2003
+@@ -1965,8 +1965,8 @@
+ /* This changes the data from RRGGBB to RRGGBBXX */
+ if (flags PNG_FLAG_FILLER_AFTER)
+ {
+-png_bytep sp = row + (png_size_t)row_width * 3;
+-png_bytep dp = sp + (png_size_t)row_width;
++png_bytep sp = row + (png_size_t)row_width * 6;
++png_bytep dp = sp + (png_size_t)row_width * 2;
+ for (i = 1; i row_width; i++)
+ {
+*(--dp) = hi_filler;
[CVS] OpenPKG: openpkg-web/ security.txt security.wml openpkg-web/secu...
OpenPKG CVS Repository http://cvs.openpkg.org/ Server: cvs.openpkg.org Name: Thomas Lotterer Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 29-Apr-2004 22:04:08 Branch: HEAD Handle: 2004042921040701 Added files: openpkg-web/securityOpenPKG-SA-2004.017-png.txt Modified files: openpkg-web security.txt security.wml Log: SA-2004.017-png Summary: RevisionChanges Path 1.73+1 -0 openpkg-web/security.txt 1.93+1 -0 openpkg-web/security.wml 1.1 +125 -0 openpkg-web/security/OpenPKG-SA-2004.017-png.txt patch -p0 '@@ .' Index: openpkg-web/security.txt $ cvs diff -u -r1.72 -r1.73 security.txt --- openpkg-web/security.txt 19 Apr 2004 08:06:35 - 1.72 +++ openpkg-web/security.txt 29 Apr 2004 20:04:07 - 1.73 @@ -1,3 +1,4 @@ +29-Apr-2004: Security Advisory: SOpenPKG-SA-2004.017-png 16-Apr-2004: Security Advisory: SOpenPKG-SA-2004.016-neon 16-Apr-2004: Security Advisory: SOpenPKG-SA-2004.015-ethereal 14-Apr-2004: Security Advisory: SOpenPKG-SA-2004.014-mysql @@ . patch -p0 '@@ .' Index: openpkg-web/security.wml $ cvs diff -u -r1.92 -r1.93 security.wml --- openpkg-web/security.wml 19 Apr 2004 08:06:35 - 1.92 +++ openpkg-web/security.wml 29 Apr 2004 20:04:07 - 1.93 @@ -76,6 +76,7 @@ /define-tag box bdwidth=1 bdcolor=#a5a095 bdspace=10 bgcolor=#e5e0d5 table cellspacing=0 cellpadding=0 border=0 + sa 2004.017 png sa 2004.016 neon sa 2004.015 ethereal sa 2004.014 mysql @@ . patch -p0 '@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.017-png.txt $ cvs diff -u -r0 -r1.1 OpenPKG-SA-2004.017-png.txt --- /dev/null 2004-04-29 22:04:08.0 +0200 +++ OpenPKG-SA-2004.017-png.txt 2004-04-29 22:04:08.0 +0200 @@ -0,0 +1,125 @@ +#FIXME, this is a template +#FIXME, the first three lines are just dummies +#FIXME, to help comparing this against sibling signed documents + + +OpenPKG Security AdvisoryThe OpenPKG Project +http://www.openpkg.org/security.html http://www.openpkg.org [EMAIL PROTECTED] [EMAIL PROTECTED] +OpenPKG-SA-2004.017 29-Apr-2004 + + +Package: png +Vulnerability: denial of service, program crash +OpenPKG Specific:no + +Affected Releases: Affected Packages: Corrected Packages: +OpenPKG CURRENT = abiword- = abiword-2.1.2-20040429 + = analog- = analog-5.32-20040429 + = doxygen- = doxygen-1.3.6-20040429 + = firefox- = firefox-0.8-20040429 + = ghostscript- = ghostscript-8.14-20040429 + = kde- = kde-qt-3.2.3-20040429 + = mozilla- = mozilla-1.7rc1-20040429 + = pdflib- = pdflib-5.0.3-20040429 + = perl-= perl-tk-5.8.4-20040429 + = png- = png-1.2.5-20040429 + = qt- = qt-3.3.2-20040429 + = rrdtool- = rrdtool-1.0.48-20040429 + = tetex- = tetex-2.0.2-20040429 + = wx- = wx-2.4.2-20040429 + +OpenPKG 2.0 = analog-5.32-2.0.0= analog-5.32-2.0.1 + = doxygen-1.3.6-2.0.0 = doxygen-1.3.6-2.0.1 + = ghostscript-8.13-2.0.0 = ghostscript-8.13-2.0.1 + = mozilla-1.6-2.0.0= mozilla-1.6-2.0.1 + = pdflib-5.0.3-2.0.0 = pdflib-5.0.3-2.0.1 + = perl-tk-5.8.3-2.0.0 = perl-tk-5.8.3-2.0.1 + = png-1.2.5-2.0.0 = png-1.2.5-2.0.1 + = qt-3.2.3-2.0.0 = qt-3.2.3-2.0.1 + = rrdtool-1.0.46-2.0.0 = rrdtool-1.0.46-2.0.1 + = tetex-2.0.2-2.0.0= tetex-2.0.2-2.0.1 + +OpenPKG 1.3 = analog-5.32-1.3.0
[CVS] OpenPKG: openpkg-web/security/ OpenPKG-SA-2004.017-png.txt
OpenPKG CVS Repository http://cvs.openpkg.org/ Server: cvs.openpkg.org Name: Thomas Lotterer Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 29-Apr-2004 22:11:21 Branch: HEAD Handle: 2004042921112000 Modified files: openpkg-web/securityOpenPKG-SA-2004.017-png.txt Log: fill in CURRENT affected package versions and releases Summary: RevisionChanges Path 1.2 +14 -14 openpkg-web/security/OpenPKG-SA-2004.017-png.txt patch -p0 '@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.017-png.txt $ cvs diff -u -r1.1 -r1.2 OpenPKG-SA-2004.017-png.txt --- openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:04:08 - 1.1 +++ openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:11:20 - 1.2 @@ -14,20 +14,20 @@ OpenPKG Specific:no Affected Releases: Affected Packages: Corrected Packages: -OpenPKG CURRENT = abiword- = abiword-2.1.2-20040429 - = analog- = analog-5.32-20040429 - = doxygen- = doxygen-1.3.6-20040429 - = firefox- = firefox-0.8-20040429 - = ghostscript- = ghostscript-8.14-20040429 - = kde- = kde-qt-3.2.3-20040429 - = mozilla- = mozilla-1.7rc1-20040429 - = pdflib- = pdflib-5.0.3-20040429 - = perl-= perl-tk-5.8.4-20040429 - = png- = png-1.2.5-20040429 - = qt- = qt-3.3.2-20040429 - = rrdtool- = rrdtool-1.0.48-20040429 - = tetex- = tetex-2.0.2-20040429 - = wx- = wx-2.4.2-20040429 +OpenPKG CURRENT = abiword-2.1.1-20040406 = abiword-2.1.2-20040429 + = analog-5.32-20040207 = analog-5.32-20040429 + = doxygen-1.3.6-20040212 = doxygen-1.3.6-20040429 + = firefox-0.8-20040210 = firefox-0.8-20040429 + = ghostscript-8.14-20040220 = ghostscript-8.14-20040429 + = kde-3.2.3-20040406 = kde-qt-3.2.3-20040429 + = mozilla-1.7rc1-20040423 = mozilla-1.7rc1-20040429 + = pdflib-5.0.3-20040212= pdflib-5.0.3-20040429 + = perl-tk-5.8.4-20040422 = perl-tk-5.8.4-20040429 + = png-1.2.5-20040207 = png-1.2.5-20040429 + = qt-3.3.2-20040428= qt-3.3.2-20040429 + = rrdtool-1.0.48-20040407 = rrdtool-1.0.48-20040429 + = tetex-2.0.2-20040207 = tetex-2.0.2-20040429 + = wx-2.4.2-20040425= wx-2.4.2-20040429 OpenPKG 2.0 = analog-5.32-2.0.0= analog-5.32-2.0.1 = doxygen-1.3.6-2.0.0 = doxygen-1.3.6-2.0.1 @@ . __ The OpenPKG Projectwww.openpkg.org CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-web/security/ OpenPKG-SA-2004.017-png.txt
OpenPKG CVS Repository http://cvs.openpkg.org/ Server: cvs.openpkg.org Name: Thomas Lotterer Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 29-Apr-2004 22:13:06 Branch: HEAD Handle: 2004042921130500 Modified files: openpkg-web/securityOpenPKG-SA-2004.017-png.txt Log: remove dummy header and insert a vertical space because ghostscript is too long to fit Summary: RevisionChanges Path 1.3 +32 -35 openpkg-web/security/OpenPKG-SA-2004.017-png.txt patch -p0 '@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.017-png.txt $ cvs diff -u -r1.2 -r1.3 OpenPKG-SA-2004.017-png.txt --- openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:11:20 - 1.2 +++ openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:13:05 - 1.3 @@ -1,6 +1,3 @@ -#FIXME, this is a template -#FIXME, the first three lines are just dummies -#FIXME, to help comparing this against sibling signed documents OpenPKG Security AdvisoryThe OpenPKG Project @@ -13,41 +10,41 @@ Vulnerability: denial of service, program crash OpenPKG Specific:no -Affected Releases: Affected Packages: Corrected Packages: -OpenPKG CURRENT = abiword-2.1.1-20040406 = abiword-2.1.2-20040429 - = analog-5.32-20040207 = analog-5.32-20040429 - = doxygen-1.3.6-20040212 = doxygen-1.3.6-20040429 - = firefox-0.8-20040210 = firefox-0.8-20040429 +Affected Releases: Affected Packages: Corrected Packages: +OpenPKG CURRENT = abiword-2.1.1-20040406= abiword-2.1.2-20040429 + = analog-5.32-20040207 = analog-5.32-20040429 + = doxygen-1.3.6-20040212= doxygen-1.3.6-20040429 + = firefox-0.8-20040210 = firefox-0.8-20040429 = ghostscript-8.14-20040220 = ghostscript-8.14-20040429 - = kde-3.2.3-20040406 = kde-qt-3.2.3-20040429 - = mozilla-1.7rc1-20040423 = mozilla-1.7rc1-20040429 - = pdflib-5.0.3-20040212= pdflib-5.0.3-20040429 - = perl-tk-5.8.4-20040422 = perl-tk-5.8.4-20040429 - = png-1.2.5-20040207 = png-1.2.5-20040429 - = qt-3.3.2-20040428= qt-3.3.2-20040429 - = rrdtool-1.0.48-20040407 = rrdtool-1.0.48-20040429 - = tetex-2.0.2-20040207 = tetex-2.0.2-20040429 - = wx-2.4.2-20040425= wx-2.4.2-20040429 + = kde-3.2.3-20040406= kde-qt-3.2.3-20040429 + = mozilla-1.7rc1-20040423 = mozilla-1.7rc1-20040429 + = pdflib-5.0.3-20040212 = pdflib-5.0.3-20040429 + = perl-tk-5.8.4-20040422= perl-tk-5.8.4-20040429 + = png-1.2.5-20040207= png-1.2.5-20040429 + = qt-3.3.2-20040428 = qt-3.3.2-20040429 + = rrdtool-1.0.48-20040407 = rrdtool-1.0.48-20040429 + = tetex-2.0.2-20040207 = tetex-2.0.2-20040429 + = wx-2.4.2-20040425 = wx-2.4.2-20040429 -OpenPKG 2.0 = analog-5.32-2.0.0= analog-5.32-2.0.1 - = doxygen-1.3.6-2.0.0 = doxygen-1.3.6-2.0.1 - = ghostscript-8.13-2.0.0 = ghostscript-8.13-2.0.1 - = mozilla-1.6-2.0.0= mozilla-1.6-2.0.1 - = pdflib-5.0.3-2.0.0 = pdflib-5.0.3-2.0.1 - = perl-tk-5.8.3-2.0.0 = perl-tk-5.8.3-2.0.1 - = png-1.2.5-2.0.0 = png-1.2.5-2.0.1 - = qt-3.2.3-2.0.0 = qt-3.2.3-2.0.1 - = rrdtool-1.0.46-2.0.0 = rrdtool-1.0.46-2.0.1 - = tetex-2.0.2-2.0.0= tetex-2.0.2-2.0.1 +OpenPKG 2.0 = analog-5.32-2.0.0 = analog-5.32-2.0.1 + = doxygen-1.3.6-2.0.0 = doxygen-1.3.6-2.0.1 + = ghostscript-8.13-2.0.0= ghostscript-8.13-2.0.1 + = mozilla-1.6-2.0.0 = mozilla-1.6-2.0.1 + = pdflib-5.0.3-2.0.0= pdflib-5.0.3-2.0.1 + = perl-tk-5.8.3-2.0.0 = perl-tk-5.8.3-2.0.1 + = png-1.2.5-2.0.0
[CVS] OpenPKG: openpkg-src/libjit/ libjit.patch libjit.spec
OpenPKG CVS Repository
http://cvs.openpkg.org/
Server: cvs.openpkg.org Name: Ralf S. Engelschall
Root: /e/openpkg/cvs Email: [EMAIL PROTECTED]
Module: openpkg-src Date: 29-Apr-2004 22:20:37
Branch: HEAD Handle: 2004042921203600
Added files:
openpkg-src/libjit libjit.patch libjit.spec
Log:
new package: libjit 0.0.0f (Just-In-Time Compiler/Interpreter Library)
Summary:
RevisionChanges Path
1.1 +44 -0 openpkg-src/libjit/libjit.patch
1.1 +94 -0 openpkg-src/libjit/libjit.spec
patch -p0 '@@ .'
Index: openpkg-src/libjit/libjit.patch
$ cvs diff -u -r0 -r1.1 libjit.patch
--- /dev/null 2004-04-29 22:20:37.0 +0200
+++ libjit.patch 2004-04-29 22:20:37.0 +0200
@@ -0,0 +1,44 @@
+Index: jit/jit-apply.c
+--- jit/jit-apply.c.orig 2004-04-22 03:52:11.0 +0200
jit/jit-apply.c 2004-04-29 22:16:22.0 +0200
+@@ -23,6 +23,7 @@
+ #include jit-apply-rules.h
+ #include jit-apply-func.h
+ #include jit-cache.h
++#include stdlib.h
+ #if HAVE_ALLOCA_H
+ #include alloca.h
+ #endif
+Index: jit/jit-insn.c
+--- jit/jit-insn.c.orig 2004-04-26 13:09:36.0 +0200
jit/jit-insn.c 2004-04-29 22:16:38.0 +0200
+@@ -21,6 +21,7 @@
+ #include jit-internal.h
+ #include jit-rules.h
+ #include config.h
++#include stdlib.h
+ #if HAVE_ALLOCA_H
+ #include alloca.h
+ #endif
+Index: jit/jit-interp.cpp
+--- jit/jit-interp.cpp.orig 2004-04-26 11:15:53.0 +0200
jit/jit-interp.cpp 2004-04-29 22:16:02.0 +0200
+@@ -30,6 +30,7 @@
+ #include jit-rules.h
+ #include jit-memory.h
+ #include config.h
++#include stdlib.h
+ #if HAVE_ALLOCA_H
+ #include alloca.h
+ #endif
+Index: tools/gen-apply.c
+--- tools/gen-apply.c.orig 2004-04-23 09:27:04.0 +0200
tools/gen-apply.c2004-04-29 22:17:05.0 +0200
+@@ -21,6 +21,7 @@
+ #include jit/jit-defs.h
+ #include jit-apply-func.h
+ #include stdio.h
++#include stdlib.h
+ #include config.h
+ #if HAVE_ALLOCA_H
+ #include alloca.h
@@ .
patch -p0 '@@ .'
Index: openpkg-src/libjit/libjit.spec
$ cvs diff -u -r0 -r1.1 libjit.spec
--- /dev/null 2004-04-29 22:20:37.0 +0200
+++ libjit.spec 2004-04-29 22:20:37.0 +0200
@@ -0,0 +1,94 @@
+##
+## libjit.spec -- OpenPKG RPM Specification
+## Copyright (c) 2000-2004 The OpenPKG Project http://www.openpkg.org/
+## Copyright (c) 2000-2004 Ralf S. Engelschall [EMAIL PROTECTED]
+## Copyright (c) 2000-2004 Cable Wireless http://www.cw.com/
+##
+## Permission to use, copy, modify, and distribute this software for
+## any purpose with or without fee is hereby granted, provided that
+## the above copyright notice and this permission notice appear in all
+## copies.
+##
+## THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESSED OR IMPLIED
+## WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
+## MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+## IN NO EVENT SHALL THE AUTHORS AND COPYRIGHT HOLDERS AND THEIR
+## CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+## SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+## LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
+## USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
+## ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
+## OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
+## OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
+## SUCH DAMAGE.
+##
+
+# package information
+Name: libjit
+Summary: Just-In-Time Compiler/Interpreter Library
+URL: http://www.southern-storm.com.au/libjit.html
+Vendor: R. Weather
+Packager: The OpenPKG Project
+Distribution: OpenPKG
+Class:EVAL
+Group:Language
+License: GPL
+Version: 0.0.0f
+Release: 20040429
+
+# list of sources
+Source0: http://www.southern-storm.com.au/download/libjit-%{version}.tar.gz
+Patch0: libjit.patch
+
+# build information
+Prefix: %{l_prefix}
+BuildRoot:%{l_buildroot}
+BuildPreReq: OpenPKG, openpkg = 20040130
+PreReq: OpenPKG, openpkg = 20040130
+AutoReq: no
+AutoReqProv: no
+
+%description
+The libjit library implements Just-In-Time compilation
+functionality. Unlike
[CVS] OpenPKG: openpkg-web/security/ OpenPKG-SA-2004.017-png.txt
OpenPKG CVS Repository http://cvs.openpkg.org/ Server: cvs.openpkg.org Name: Ralf S. Engelschall Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 29-Apr-2004 22:26:34 Branch: HEAD Handle: 2004042921263400 Modified files: openpkg-web/securityOpenPKG-SA-2004.017-png.txt Log: small adjustments only Summary: RevisionChanges Path 1.4 +11 -9 openpkg-web/security/OpenPKG-SA-2004.017-png.txt patch -p0 '@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.017-png.txt $ cvs diff -u -r1.3 -r1.4 OpenPKG-SA-2004.017-png.txt --- openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:13:05 - 1.3 +++ openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:26:34 - 1.4 @@ -7,7 +7,7 @@ Package: png -Vulnerability: denial of service, program crash +Vulnerability: denial of service OpenPKG Specific:no Affected Releases: Affected Packages: Corrected Packages: @@ -66,17 +66,19 @@ Description: - According to a security advisory from Steve Grubb libpng accesses + According to a security advisory from Steve Grubb, libpng accesses memory that is out of bounds when creating an error message. Depending - on machine architecture bounds checking and other protective measures, - this problem could cause the program to core dump. If a daemon - processes png images, this would be a DOS. + on machine architecture, bounds checking and other protective + measures, this problem could cause the program to crash if a defective + or intentionally prepared PNG image file is handled by libpng. This + can even lead to a Denial of Service (DoS) situation. Please check whether you are affected by running prefix/bin/rpm - -q png. If you have the png package installed and its version - is affected (see above), we recommend that you immediately upgrade - it (see Solution) and its dependent packages (see above), if any, - too [3][4]. + -q png (and similarly for the other affected packages which have + PNG included). If you have the png package (or one of the others) + installed and its version is affected (see above), we recommend that + you immediately upgrade it (see Solution) and its dependent packages + (see above), if any, too [3][4]. Solution: Select the updated source RPM appropriate for your OpenPKG release @@ . __ The OpenPKG Projectwww.openpkg.org CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-web/security/ OpenPKG-SA-2004.017-png.txt
OpenPKG CVS Repository http://cvs.openpkg.org/ Server: cvs.openpkg.org Name: Thomas Lotterer Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 29-Apr-2004 22:27:48 Branch: HEAD Handle: 2004042921274800 Modified files: openpkg-web/securityOpenPKG-SA-2004.017-png.txt Log: last minute CVE info CAN-2004-0421 Summary: RevisionChanges Path 1.5 +6 -4 openpkg-web/security/OpenPKG-SA-2004.017-png.txt patch -p0 '@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.017-png.txt $ cvs diff -u -r1.4 -r1.5 OpenPKG-SA-2004.017-png.txt --- openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:26:34 - 1.4 +++ openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:27:48 - 1.5 @@ -66,12 +66,14 @@ Description: - According to a security advisory from Steve Grubb, libpng accesses + According to a security advisory from Steve Grubb, libpng [1] accesses memory that is out of bounds when creating an error message. Depending on machine architecture, bounds checking and other protective measures, this problem could cause the program to crash if a defective - or intentionally prepared PNG image file is handled by libpng. This - can even lead to a Denial of Service (DoS) situation. + or intentionally prepared PNG image file is handled by libpng. + This can even lead to a Denial of Service (DoS) situation. The + Common Vulnerabilities and Exposures (CVE) project assigned the id + CAN-2004-0421 [2] to the problem. Please check whether you are affected by running prefix/bin/rpm -q png (and similarly for the other affected packages which have @@ -105,7 +107,7 @@ References: [1] http://www.libpng.org/pub/png/ - [2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-... + [2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0421 [3] http://www.openpkg.org/tutorial.html#regular-source [4] http://www.openpkg.org/tutorial.html#regular-binary [5] ftp://ftp.openpkg.org/release/1.3/UPD/png-1.2.5-1.3.1.src.rpm @@ . __ The OpenPKG Projectwww.openpkg.org CVS Repository Commit List [EMAIL PROTECTED]
[CVS] OpenPKG: openpkg-web/security/ OpenPKG-SA-2004.017-png.txt
OpenPKG CVS Repository http://cvs.openpkg.org/ Server: cvs.openpkg.org Name: Ralf S. Engelschall Root: /e/openpkg/cvs Email: [EMAIL PROTECTED] Module: openpkg-web Date: 29-Apr-2004 22:37:24 Branch: HEAD Handle: 2004042921372300 Modified files: openpkg-web/securityOpenPKG-SA-2004.017-png.txt Log: release OpenPKG Security Advisory 2004.017 (png) Summary: RevisionChanges Path 1.7 +10 -0 openpkg-web/security/OpenPKG-SA-2004.017-png.txt patch -p0 '@@ .' Index: openpkg-web/security/OpenPKG-SA-2004.017-png.txt $ cvs diff -u -r1.6 -r1.7 OpenPKG-SA-2004.017-png.txt --- openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:32:06 - 1.6 +++ openpkg-web/security/OpenPKG-SA-2004.017-png.txt 29 Apr 2004 20:37:23 - 1.7 @@ -1,3 +1,6 @@ +-BEGIN PGP SIGNED MESSAGE- +Hash: SHA1 + OpenPKG Security AdvisoryThe OpenPKG Project @@ -124,3 +127,10 @@ for details on how to verify the integrity of this advisory. +-BEGIN PGP SIGNATURE- +Comment: OpenPKG [EMAIL PROTECTED] + +iD8DBQFAkWdagHWT4GPEy58RAhUzAJ91BK7ra6vUQfzOxYR0tF6OJKD9ZACcDu9K +bQeFjP+LBoyEg6ikl+zNOf4= +=EMRS +-END PGP SIGNATURE- @@ . __ The OpenPKG Projectwww.openpkg.org CVS Repository Commit List [EMAIL PROTECTED]
