being here, add a patch from

https://bugzilla.redhat.com/show_bug.cgi?id=659676 to fix a possible puffer overflow (CVE-2010-4262) bump PKGREVISION
author: drochner <drochner@pkgsrc.org> 2011-01-19 19:31:05 +0000
committer: drochner <drochner@pkgsrc.org> 2011-01-19 19:31:05 +0000
commit: ab345e2215c5b3644e877df2b355524e24471c4a (patch)
tree: 0f70ddc506c1f1b17f16927d11444e0154cb2bea /graphics/xfig/patches
parent: 9e2b30799a8402a1e7060ad79fd4d429b43efbdf (diff)
download: pkgsrc-ab345e2215c5b3644e877df2b355524e24471c4a.tar.gz
1 files changed, 24 insertions, 0 deletions
diff --git a/graphics/xfig/patches/patch-aq b/graphics/xfig/patches/patch-aq
new file mode 100644
index 00000000000..945b19c1c8e
--- /dev/null
+++ b/graphics/xfig/patches/patch-aq
@@ -0,0 +1,24 @@
+$NetBSD: patch-aq,v 1.1 2011/01/19 19:31:05 drochner Exp $
+
+--- w_msgpanel.c.orig	2009-03-30 15:52:41.000000000 +0000
++++ w_msgpanel.c
+@@ -60,7 +60,7 @@ DeclareStaticArgs(12);
+ /* for the popup message (file_msg) window */
+ 
+ static int	file_msg_length=0;
+-static char	tmpstr[300];
++static char	tmpstr[512];
+ static Widget	file_msg_panel,
+ 		file_msg_win, file_msg_dismiss;
+ 
+@@ -582,8 +582,8 @@ file_msg(char *format,...)
+     }
+ 
+     va_start(ap, format);
+-    /* format the string */
+-    vsprintf(tmpstr, format, ap);
++    /* format the string (but leave room for \n and \0) */
++    vsnprintf(tmpstr, sizeof(tmpstr)-2, format, ap);
+     va_end(ap);
+ 
+     strcat(tmpstr,"\n");
author	drochner <drochner@pkgsrc.org>	2011-01-19 19:31:05 +0000
committer	drochner <drochner@pkgsrc.org>	2011-01-19 19:31:05 +0000
commit	ab345e2215c5b3644e877df2b355524e24471c4a (patch)
tree	0f70ddc506c1f1b17f16927d11444e0154cb2bea /graphics/xfig/patches
parent	9e2b30799a8402a1e7060ad79fd4d429b43efbdf (diff)
download	pkgsrc-ab345e2215c5b3644e877df2b355524e24471c4a.tar.gz