Add patches required to fix CVE-2008-180[123], taken from rdesktop CVS.

1) An integer underflow error in iso.c when processing RDP requests can be exploited to cause a heap-based buffer overflow. 2) An input validation error in rdp.c when processing RDP redirect requests can be exploited to cause a BSS-based buffer overflow. 3) A signedness error within "xrealloc()" in rdesktop.c can be exploited to cause a heap-based buffer overflow.
author: tonnerre <tonnerre@pkgsrc.org> 2008-05-10 15:28:04 +0000
committer: tonnerre <tonnerre@pkgsrc.org> 2008-05-10 15:28:04 +0000
commit: d98d170994da6b048b636ddebf562244a67a9cf3 (patch)
tree: d175d495c6f8a2bc8958e1142fec7a990dd39b54 /net/rdesktop/Makefile
parent: 6e448d297b09826cd122da59035fef42d99596cd (diff)
download: pkgsrc-d98d170994da6b048b636ddebf562244a67a9cf3.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/net/rdesktop/Makefile b/net/rdesktop/Makefile
index d441422b342..e351bc8ca1e 100644
--- a/net/rdesktop/Makefile
+++ b/net/rdesktop/Makefile
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.33 2008/01/18 05:08:49 tnn Exp $
+# $NetBSD: Makefile,v 1.34 2008/05/10 15:28:04 tonnerre Exp $
 #
 
 DISTNAME=		rdesktop-1.5.0
-PKGREVISION=		3
+PKGREVISION=		4
 CATEGORIES=		net
 MASTER_SITES=		${MASTER_SITE_SOURCEFORGE:=rdesktop/}
author	tonnerre <tonnerre@pkgsrc.org>	2008-05-10 15:28:04 +0000
committer	tonnerre <tonnerre@pkgsrc.org>	2008-05-10 15:28:04 +0000
commit	d98d170994da6b048b636ddebf562244a67a9cf3 (patch)
tree	d175d495c6f8a2bc8958e1142fec7a990dd39b54 /net/rdesktop/Makefile
parent	6e448d297b09826cd122da59035fef42d99596cd (diff)
download	pkgsrc-d98d170994da6b048b636ddebf562244a67a9cf3.tar.gz