Add a patch via Debain to address:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3340 "The vulnerability is caused due to temporary files being created insecurely in the "/tmp" directory by the tuxpaint-import.sh script. This can be exploited via symlink attacks to create or overwrite arbitrary files with the privileges of the user running the affected script." Bump to nb6.
author: adrianp <adrianp@pkgsrc.org> 2006-01-17 22:48:57 +0000
committer: adrianp <adrianp@pkgsrc.org> 2006-01-17 22:48:57 +0000
commit: 3e1f5f983f1a47a97f76d773bcb598c49828a1a5 (patch)
tree: 49af2be4a6b55266919404b4413ff1c806ea6899 /graphics/tuxpaint/Makefile
parent: b3f5814d615d21d7a679eafdbc8b46c1a17fc113 (diff)
download: pkgsrc-3e1f5f983f1a47a97f76d773bcb598c49828a1a5.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/graphics/tuxpaint/Makefile b/graphics/tuxpaint/Makefile
index 3f04deb7e53..cf002777f70 100644
--- a/graphics/tuxpaint/Makefile
+++ b/graphics/tuxpaint/Makefile
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.34 2005/12/29 06:21:45 jlam Exp $
+# $NetBSD: Makefile,v 1.35 2006/01/17 22:48:57 adrianp Exp $
 #
 
 DISTNAME=	tuxpaint-0.9.14
-PKGREVISION=	5
+PKGREVISION=	6
 CATEGORIES=	graphics
 MASTER_SITES=	${MASTER_SITE_SOURCEFORGE:=tuxpaint/} \
 		ftp://ftp.sonic.net/pub/users/nbs/unix/x/tuxpaint/source/
author	adrianp <adrianp@pkgsrc.org>	2006-01-17 22:48:57 +0000
committer	adrianp <adrianp@pkgsrc.org>	2006-01-17 22:48:57 +0000
commit	3e1f5f983f1a47a97f76d773bcb598c49828a1a5 (patch)
tree	49af2be4a6b55266919404b4413ff1c806ea6899 /graphics/tuxpaint/Makefile
parent	b3f5814d615d21d7a679eafdbc8b46c1a17fc113 (diff)
download	pkgsrc-3e1f5f983f1a47a97f76d773bcb598c49828a1a5.tar.gz