From f470e049d940b9a6941d0693a84ca10f0b788c3f Mon Sep 17 00:00:00 2001 From: salo Date: Sat, 3 Dec 2005 15:06:42 +0000 Subject: Security update to version 0.53. Changes: - fix buffer overflow (CVE-2005-3862) --- archivers/unalz/Makefile | 4 ++-- archivers/unalz/distinfo | 10 +++++----- archivers/unalz/patches/patch-ab | 30 +++++------------------------- 3 files changed, 12 insertions(+), 32 deletions(-) diff --git a/archivers/unalz/Makefile b/archivers/unalz/Makefile index 494eb91e81c..479b9a6d1c9 100644 --- a/archivers/unalz/Makefile +++ b/archivers/unalz/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.7 2005/10/03 04:12:20 minskim Exp $ +# $NetBSD: Makefile,v 1.8 2005/12/03 15:06:42 salo Exp $ # -DISTNAME= unalz-0.52 +DISTNAME= unalz-0.53 CATEGORIES= archivers MASTER_SITES= http://www.kipple.pe.kr/win/unalz/ EXTRACT_SUFX= .tgz diff --git a/archivers/unalz/distinfo b/archivers/unalz/distinfo index 42ddc58c5c9..d570f5b23b1 100644 --- a/archivers/unalz/distinfo +++ b/archivers/unalz/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.12 2005/11/07 13:43:41 joerg Exp $ +$NetBSD: distinfo,v 1.13 2005/12/03 15:06:42 salo Exp $ -SHA1 (unalz-0.52.tgz) = fa5c99392e52661ca2c347cd4f147a7e203ac295 -RMD160 (unalz-0.52.tgz) = 4200a3ac2a909bd8acdf28df13569e2bcb7d18ba -Size (unalz-0.52.tgz) = 134048 bytes +SHA1 (unalz-0.53.tgz) = d5ac7018c8fceb6f6a16f62728f7ef5fbd7bf010 +RMD160 (unalz-0.53.tgz) = 0b252fc7f7c5bdf8e1bee7ece642a2fecea3da46 +Size (unalz-0.53.tgz) = 133702 bytes SHA1 (patch-aa) = 327fd080040946fe7a0707698f90d7709a2d3c5b -SHA1 (patch-ab) = 1b6d85c6fa68169080a7ee6eaee31c067bb47d1e +SHA1 (patch-ab) = 9bd272b8159f290d9767d30b5ec5a81d602ed1cc SHA1 (patch-ac) = 00c6255437f4ebdf3676787ed63cc838a16476d4 SHA1 (patch-ad) = cc0951b807e25b5f8097583d674b5ed9ff24f5c7 diff --git a/archivers/unalz/patches/patch-ab b/archivers/unalz/patches/patch-ab index 717312c2ccd..cecb07ab965 100644 --- a/archivers/unalz/patches/patch-ab +++ b/archivers/unalz/patches/patch-ab @@ -1,7 +1,7 @@ -$NetBSD: patch-ab,v 1.8 2005/11/07 13:43:41 joerg Exp $ +$NetBSD: patch-ab,v 1.9 2005/12/03 15:06:42 salo Exp $ ---- UnAlz.cpp.orig 2005-07-23 15:27:49.000000000 +0000 -+++ UnAlz.cpp +--- UnAlz.cpp.orig 2005-11-21 14:18:13.000000000 +0100 ++++ UnAlz.cpp 2005-12-03 15:57:40.000000000 +0100 @@ -1,6 +1,6 @@ //#include "stdafx.h" -#include "zlib/zlib.h" @@ -11,18 +11,7 @@ $NetBSD: patch-ab,v 1.8 2005/11/07 13:43:41 joerg Exp $ #include "UnAlz.h" // utime ÇÔ¼ö ó¸® -@@ -30,6 +30,10 @@ - # include // iconv.h ¶§¹®¿¡ ÇÊ¿ä - #endif - -+#if defined(__NetBSD__) -+# include // __NetBSD_Version__ -+# include // iconv.h ¶§¹®¿¡ ÇÊ¿ä -+#endif - - #define swapint64(Data) (INT64) ( (((Data)&0x00000000000000FFLL) << 56) | (((Data)&0x000000000000FF00LL) << 40) | (((Data)&0x0000000000FF0000LL) << 24) | (((Data)&0x00000000FF000000LL) << 8) | (((Data)&0x000000FF00000000LL) >> 8) | (((Data)&0x0000FF0000000000LL) >> 24) | (((Data)&0x00FF000000000000LL) >> 40) | (((Data)&0xFF00000000000000LL) >> 56) ) - #define swapint32(a) ((((a)&0xff)<<24)+(((a>>8)&0xff)<<16)+(((a>>16)&0xff)<<8)+(((a>>24)&0xff))) -@@ -39,13 +43,13 @@ +@@ -43,13 +43,13 @@ //// byte-order : little to host //// //////////////////////////////////////////////////////////////////////////// @@ -33,17 +22,8 @@ $NetBSD: patch-ab,v 1.8 2005/11/07 13:43:41 joerg Exp $ inline UINT64 unalz_le64toh(UINT64 a){return a;} #endif --#ifdef __FreeBSD__ +-#if defined(__FreeBSD__) || defined(__NetBSD__) +#if defined(__FreeBSD__) || defined(__NetBSD__) || defined(__DragonFly__) # include inline UINT16 unalz_le16toh(UINT16 a){return le16toh(a);} inline UINT32 unalz_le32toh(UINT32 a){return le32toh(a);} -@@ -416,7 +420,7 @@ BOOL CUnAlz::ReadLocalFileheader() - size_t size; - char inbuf[ICONV_BUF_SIZE]; - char outbuf[ICONV_BUF_SIZE]; --#if defined(__FreeBSD__) || defined(__CYGWIN__) || defined(__APPLE__) -+#if defined(__FreeBSD__) || defined(__CYGWIN__) || defined(__APPLE__) || defined(__NetBSD__) - const char *inptr = inbuf; - #else - char *inptr = inbuf; -- cgit v1.2.3