From 23d295ff9fa7656f930658aeba57a02c09cd91fa Mon Sep 17 00:00:00 2001 From: Mikhail Teterin Date: Fri, 25 Jun 2004 12:08:51 +0000 Subject: How stupid of me -- forgot to `cvs add' the patch fixing the recent security issue prior to last commit. Now have to also bump the PORTREVISION. --- print/rlpr/Makefile | 1 + print/rlpr/files/patch-msg | 39 +++++++++++++++++++++++++++++++++++++++ 2 files changed, 40 insertions(+) create mode 100644 print/rlpr/files/patch-msg (limited to 'print/rlpr') diff --git a/print/rlpr/Makefile b/print/rlpr/Makefile index 44358a0548c8..76f6222cc470 100644 --- a/print/rlpr/Makefile +++ b/print/rlpr/Makefile @@ -7,6 +7,7 @@ PORTNAME= rlpr PORTVERSION= 2.04 +PORTREVISION= 1 CATEGORIES= print net MASTER_SITES= ftp://www.truffula.com/pub/ diff --git a/print/rlpr/files/patch-msg b/print/rlpr/files/patch-msg new file mode 100644 index 000000000000..1a775ee4bb50 --- /dev/null +++ b/print/rlpr/files/patch-msg @@ -0,0 +1,39 @@ +Don't allow the network obtained strings to be interpreted +as sprintf() format directives. See http://www.osvdb.org/7194 + +This fix is different from Debian's. It is better, because it +requires no extra work, when errno is zero, and saves syslog(3) +the hassle of handling %m, when it is. + + -mi + +--- src/msg.c Thu Sep 16 01:10:23 1999 ++++ src/msg.c Thu Jun 24 17:14:13 2004 +@@ -160,20 +160,14 @@ + + } else if (rlpr_msg->use_syslog) { +- +- /* +- * sigh. this really sucks, but what can we do: vsnprintf() +- * isn't yet standard enough to rely on. maybe if i can find +- * a portable implementation lying around somewhere i can make +- * a ../lib/vsnprintf.c +- */ +- + char buf[BUFSIZ]; ++ const char *_format; + +- vsprintf(buf, _(format), ap); +- +- if (errno != 0) +- strcat(buf, ": %m"); ++ if (errno != 0) { ++ snprintf(buf, sizeof buf, "%s: %s", _(format), strerror(errno)); ++ _format = buf; ++ } else ++ _format = _(format); + +- syslog(rlpr_msg->syslog_prio[level], buf); ++ vsyslog(rlpr_msg->syslog_prio[level], _format, ap); + + } else { -- cgit v1.2.3