summaryrefslogtreecommitdiff
path: root/mail/spamassassin
diff options
context:
space:
mode:
authortron <tron>2003-01-29 17:34:28 +0000
committertron <tron>2003-01-29 17:34:28 +0000
commit90711073f7bb5b564a74676bf4569d8b18ba3afa (patch)
treeeae0e9cd3ea5044a321637532502d6d8dda155ec /mail/spamassassin
parent2c01ecd6569f904bb0f6fc6e8eb436be3c76f2bb (diff)
downloadpkgsrc-90711073f7bb5b564a74676bf4569d8b18ba3afa.tar.gz
Fix buffer overflow in "spamc" program can be remotely exploited.
Bump package revision.
Diffstat (limited to 'mail/spamassassin')
-rw-r--r--mail/spamassassin/Makefile4
-rw-r--r--mail/spamassassin/distinfo3
-rw-r--r--mail/spamassassin/patches/patch-aa13
3 files changed, 17 insertions, 3 deletions
diff --git a/mail/spamassassin/Makefile b/mail/spamassassin/Makefile
index 57702c44365..0aee6534055 100644
--- a/mail/spamassassin/Makefile
+++ b/mail/spamassassin/Makefile
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.15 2003/01/28 22:03:39 jlam Exp $
+# $NetBSD: Makefile,v 1.16 2003/01/29 17:34:28 tron Exp $
DISTNAME= Mail-SpamAssassin-2.43
PKGNAME= spamassassin-2.43
-PKGREVISION= 1
+PKGREVISION= 2
SVR4_PKGNAME= sa
CATEGORIES= mail
MASTER_SITES= ${MASTER_SITE_PERL_CPAN:=Mail/} \
diff --git a/mail/spamassassin/distinfo b/mail/spamassassin/distinfo
index 0d1ea602e15..fa915ed1a70 100644
--- a/mail/spamassassin/distinfo
+++ b/mail/spamassassin/distinfo
@@ -1,7 +1,8 @@
-$NetBSD: distinfo,v 1.9 2002/11/06 21:51:26 heinz Exp $
+$NetBSD: distinfo,v 1.10 2003/01/29 17:34:28 tron Exp $
SHA1 (Mail-SpamAssassin-2.43.tar.gz) = ffe0f4d80ab2367bb3df856ec777bafb6ac7616e
Size (Mail-SpamAssassin-2.43.tar.gz) = 538505 bytes
+SHA1 (patch-aa) = 734d63b947e934eee8809bbd0b643bc6232f193c
SHA1 (patch-ab) = df905aebb1e374a549808a5b925fbf9511dc3333
SHA1 (patch-ac) = 229d234f56d113022f08d5b3250c4f12d6808636
SHA1 (patch-ad) = 41a0130905fe000613a963acd7bb7cc8e743469c
diff --git a/mail/spamassassin/patches/patch-aa b/mail/spamassassin/patches/patch-aa
new file mode 100644
index 00000000000..0361317f725
--- /dev/null
+++ b/mail/spamassassin/patches/patch-aa
@@ -0,0 +1,13 @@
+$NetBSD: patch-aa,v 1.4 2003/01/29 17:34:29 tron Exp $
+
+--- spamd/libspamc.c.orig 2002-10-15 17:22:49.000000000 +0200
++++ spamd/libspamc.c 2003-01-29 18:32:03.000000000 +0100
+@@ -309,7 +309,7 @@
+ case MESSAGE_BSMTP:
+ total=full_write(fd, m->pre, m->pre_len);
+ for(i=0; i<m->out_len; ){
+- for(j=0; i<m->out_len && j<sizeof(buffer)/sizeof(*buffer)-1; ){
++ for(j=0; i<m->out_len && j<sizeof(buffer)/sizeof(*buffer)-2; ){
+ if(i+1<m->out_len && m->out[i]=='\n' && m->out[i+1]=='.'){
+ buffer[j++]=m->out[i++];
+ buffer[j++]=m->out[i++];