diff options
author | tron <tron> | 2003-01-29 17:34:28 +0000 |
---|---|---|
committer | tron <tron> | 2003-01-29 17:34:28 +0000 |
commit | 90711073f7bb5b564a74676bf4569d8b18ba3afa (patch) | |
tree | eae0e9cd3ea5044a321637532502d6d8dda155ec /mail/spamassassin | |
parent | 2c01ecd6569f904bb0f6fc6e8eb436be3c76f2bb (diff) | |
download | pkgsrc-90711073f7bb5b564a74676bf4569d8b18ba3afa.tar.gz |
Fix buffer overflow in "spamc" program can be remotely exploited.
Bump package revision.
Diffstat (limited to 'mail/spamassassin')
-rw-r--r-- | mail/spamassassin/Makefile | 4 | ||||
-rw-r--r-- | mail/spamassassin/distinfo | 3 | ||||
-rw-r--r-- | mail/spamassassin/patches/patch-aa | 13 |
3 files changed, 17 insertions, 3 deletions
diff --git a/mail/spamassassin/Makefile b/mail/spamassassin/Makefile index 57702c44365..0aee6534055 100644 --- a/mail/spamassassin/Makefile +++ b/mail/spamassassin/Makefile @@ -1,8 +1,8 @@ -# $NetBSD: Makefile,v 1.15 2003/01/28 22:03:39 jlam Exp $ +# $NetBSD: Makefile,v 1.16 2003/01/29 17:34:28 tron Exp $ DISTNAME= Mail-SpamAssassin-2.43 PKGNAME= spamassassin-2.43 -PKGREVISION= 1 +PKGREVISION= 2 SVR4_PKGNAME= sa CATEGORIES= mail MASTER_SITES= ${MASTER_SITE_PERL_CPAN:=Mail/} \ diff --git a/mail/spamassassin/distinfo b/mail/spamassassin/distinfo index 0d1ea602e15..fa915ed1a70 100644 --- a/mail/spamassassin/distinfo +++ b/mail/spamassassin/distinfo @@ -1,7 +1,8 @@ -$NetBSD: distinfo,v 1.9 2002/11/06 21:51:26 heinz Exp $ +$NetBSD: distinfo,v 1.10 2003/01/29 17:34:28 tron Exp $ SHA1 (Mail-SpamAssassin-2.43.tar.gz) = ffe0f4d80ab2367bb3df856ec777bafb6ac7616e Size (Mail-SpamAssassin-2.43.tar.gz) = 538505 bytes +SHA1 (patch-aa) = 734d63b947e934eee8809bbd0b643bc6232f193c SHA1 (patch-ab) = df905aebb1e374a549808a5b925fbf9511dc3333 SHA1 (patch-ac) = 229d234f56d113022f08d5b3250c4f12d6808636 SHA1 (patch-ad) = 41a0130905fe000613a963acd7bb7cc8e743469c diff --git a/mail/spamassassin/patches/patch-aa b/mail/spamassassin/patches/patch-aa new file mode 100644 index 00000000000..0361317f725 --- /dev/null +++ b/mail/spamassassin/patches/patch-aa @@ -0,0 +1,13 @@ +$NetBSD: patch-aa,v 1.4 2003/01/29 17:34:29 tron Exp $ + +--- spamd/libspamc.c.orig 2002-10-15 17:22:49.000000000 +0200 ++++ spamd/libspamc.c 2003-01-29 18:32:03.000000000 +0100 +@@ -309,7 +309,7 @@ + case MESSAGE_BSMTP: + total=full_write(fd, m->pre, m->pre_len); + for(i=0; i<m->out_len; ){ +- for(j=0; i<m->out_len && j<sizeof(buffer)/sizeof(*buffer)-1; ){ ++ for(j=0; i<m->out_len && j<sizeof(buffer)/sizeof(*buffer)-2; ){ + if(i+1<m->out_len && m->out[i]=='\n' && m->out[i+1]=='.'){ + buffer[j++]=m->out[i++]; + buffer[j++]=m->out[i++]; |