diff options
author | seb <seb> | 2005-12-15 08:54:51 +0000 |
---|---|---|
committer | seb <seb> | 2005-12-15 08:54:51 +0000 |
commit | 564213b2de5eef98cd65070431f7fd60cd0d0f70 (patch) | |
tree | a6fdf24684b2572979af861acfa0b9aac820b8a7 | |
parent | 02c3abaeed327f2a7e03ecd2f41e8585d75efc02 (diff) | |
download | pkgsrc-564213b2de5eef98cd65070431f7fd60cd0d0f70.tar.gz |
Pullup ticket 956 - requested by Lubomir Sedlacik
security fix via patch for chat/centericq
Module Name: pkgsrc
Committed By: adrianp
Date: Sat Dec 3 17:04:23 UTC 2005
Modified Files:
pkgsrc/chat/centericq: Makefile distinfo
Added Files:
pkgsrc/chat/centericq/patches: patch-at
Log Message:
Patch via Debian for:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3694
-rw-r--r-- | chat/centericq/Makefile | 4 | ||||
-rw-r--r-- | chat/centericq/distinfo | 3 | ||||
-rw-r--r-- | chat/centericq/patches/patch-at | 14 |
3 files changed, 18 insertions, 3 deletions
diff --git a/chat/centericq/Makefile b/chat/centericq/Makefile index 28bf6e694dd..a09fe394c7e 100644 --- a/chat/centericq/Makefile +++ b/chat/centericq/Makefile @@ -1,8 +1,8 @@ -# $NetBSD: Makefile,v 1.53 2005/09/19 19:42:11 adrianp Exp $ +# $NetBSD: Makefile,v 1.53.2.1 2005/12/15 08:54:51 seb Exp $ # DISTNAME= centericq-4.20.0 -PKGREVISION= 2 +PKGREVISION= 3 CATEGORIES= chat MASTER_SITES= http://konst.org.ua/download/ \ http://centericq.de/archive/source/releases/ diff --git a/chat/centericq/distinfo b/chat/centericq/distinfo index 43f706b836e..30a2ef61fbd 100644 --- a/chat/centericq/distinfo +++ b/chat/centericq/distinfo @@ -1,4 +1,4 @@ -$NetBSD: distinfo,v 1.18 2005/09/19 19:42:11 adrianp Exp $ +$NetBSD: distinfo,v 1.18.2.1 2005/12/15 08:54:51 seb Exp $ SHA1 (centericq-4.20.0.tar.bz2) = 14b37c5257039853f0a1b948c7eaa49581a5913c RMD160 (centericq-4.20.0.tar.bz2) = 7f17cd87aa4b98269fa65173b3e6317143c7c8ca @@ -14,3 +14,4 @@ SHA1 (patch-ah) = 2e643c6cfd5812f5f35a08e29cfa858902e1760b SHA1 (patch-ai) = 2ac32940347733dbb63e12bdd54212435795b30d SHA1 (patch-aj) = 1e4ea16dfc5c8eeae9b70b4bda01a2b367ea2879 SHA1 (patch-ak) = 155067c43db79d398465bac2d70878e8b714fa8b +SHA1 (patch-at) = b46777e3ba12c8ce3c423d1b0487e7a09c969671 diff --git a/chat/centericq/patches/patch-at b/chat/centericq/patches/patch-at new file mode 100644 index 00000000000..d32796fd2a7 --- /dev/null +++ b/chat/centericq/patches/patch-at @@ -0,0 +1,14 @@ +$NetBSD: patch-at,v 1.1.2.2 2005/12/15 08:54:51 seb Exp $ + +Security fix for CVE-2005-3694, from Debian. + +--- libicq2000-0.1/src/DirectClient.cpp.orig 2004-02-11 00:51:14.000000000 +0100 ++++ libicq2000-0.1/src/DirectClient.cpp 2005-12-11 16:40:06.000000000 +0100 +@@ -162,6 +162,7 @@ + + m_recv.setLittleEndian(); + m_recv >> length; ++ if (length == 0) return; // short read, toss it back (nothing to do) + if (length > Incoming_Packet_Limit) throw ParseException("Received too long incoming packet"); + if (m_recv.remains() < length) return; // waiting for more of the packet + |