[gentoo-commits] gentoo-x86 commit in app-i18n/skktools/files: skktools-1.2-CVE-2007-3916.patch digest-skktools-1.2-r1 - gentoo-commits

From:	"Matsuu Takuto (matsuu)" <matsuu@g.o>
To:	gentoo-commits@l.g.o
Subject:	[gentoo-commits] gentoo-x86 commit in app-i18n/skktools/files: skktools-1.2-CVE-2007-3916.patch digest-skktools-1.2-r1
Date:	Thu, 20 Sep 2007 00:11:59
Message-Id:	`E1IY9WX-0005yK-KQ@stork.gentoo.org`

1

matsuu      07/09/20 00:04:05

2

3

  Added:                skktools-1.2-CVE-2007-3916.patch

4

                        digest-skktools-1.2-r1

5

  Log:

6

  Fixed bug #193121. the patch is from debian.

7

  (Portage version: 2.1.3.9)

8

9

Revision  Changes    Path

10

1.1                  app-i18n/skktools/files/skktools-1.2-CVE-2007-3916.patch

11

12

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/skktools-1.2-CVE-2007-3916.patch?rev=1.1&view=markup

13

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/skktools-1.2-CVE-2007-3916.patch?rev=1.1&content-type=text/plain

14

15

Index: skktools-1.2-CVE-2007-3916.patch

16

===================================================================

17

--- skktools-1.2+0.20061004.orig/skkdic-expr.c

18

+++ skktools-1.2+0.20061004/skkdic-expr.c

19

@@ -92,6 +92,7 @@

20

 char file_name[256];

21

 char okuri_tail_name[256];

22

 char okuri_head_name[256];

23

+char tmpsubdir[256];

24

25

 /* ºî¶ÈÍÑ¥Ç¡¼¥¿¥Ù¡¼¥¹ */

26

 DBM *db;

27

@@ -127,28 +128,28 @@

28

     char dir_name[256];

29

30

     db_remove_file(file_name);

31

-    sprintf(pag_name, "%s.pag", file_name);

32

+    snprintf(pag_name, sizeof(pag_name), "%s.pag", file_name);

33

     db_remove_file(pag_name);

34

-    sprintf(dir_name, "%s.dir", file_name);

35

+    snprintf(dir_name, sizeof(dir_name), "%s.dir", file_name);

36

     db_remove_file(dir_name);

37

-    sprintf(dir_name, "%s.db", file_name);

38

+    snprintf(dir_name, sizeof(dir_name), "%s.db", file_name);

39

     db_remove_file(dir_name);

40

41

     if (okurigana_flag) {

42

 	db_remove_file(okuri_head_name);

43

-	sprintf(pag_name, "%s.pag", okuri_head_name);

44

+	snprintf(pag_name, sizeof(pag_name), "%s.pag", okuri_head_name);

45

 	db_remove_file(pag_name);

46

-	sprintf(dir_name, "%s.dir", okuri_head_name);

47

+	snprintf(dir_name, sizeof(dir_name), "%s.dir", okuri_head_name);

48

 	db_remove_file(dir_name);

49

-	sprintf(dir_name, "%s.db", okuri_head_name);

50

+	snprintf(dir_name, sizeof(dir_name), "%s.db", okuri_head_name);

51

 	db_remove_file(dir_name);

52

53

 	db_remove_file(okuri_tail_name);

54

-	sprintf(pag_name, "%s.pag", okuri_tail_name);

55

+	snprintf(pag_name, sizeof(pag_name), "%s.pag", okuri_tail_name);

56

 	db_remove_file(pag_name);

57

-	sprintf(dir_name, "%s.dir", okuri_tail_name);

58

+	snprintf(dir_name, sizeof(dir_name), "%s.dir", okuri_tail_name);

59

 	db_remove_file(dir_name);

60

-	sprintf(dir_name, "%s.db", okuri_tail_name);

61

+	snprintf(dir_name, sizeof(dir_name), "%s.db", okuri_tail_name);

62

 	db_remove_file(dir_name);

63

}

64

}

65

@@ -235,6 +236,7 @@

66

      int signo;

67

{

68

     db_remove_files();

69

+    rmdir(tmpsubdir);

70

     signal(signo, SIG_DFL);

71

     kill(getpid(), signo);

72

}

73

@@ -816,10 +818,16 @@

74

 	exit(1);

75

}

76

77

-    sprintf(file_name, "%s/skkdic%d", tmpdir, getpid());

78

+    snprintf(tmpsubdir, sizeof(tmpsubdir), "%s/skkdic%d", tmpdir, getpid());

79

+    if (mkdir(tmpsubdir, 0700)) {

80

+	perror(tmpsubdir);

81

+	exit(1);

82

+    }

83

+    tmpdir = tmpsubdir;

84

+    snprintf(file_name, sizeof(file_name), "%s/skkdic%d", tmpdir, getpid());

85

     if (okurigana_flag) {

86

-	sprintf(okuri_head_name, "%s/skkhead%d", tmpdir, getpid());

87

-	sprintf(okuri_tail_name, "%s/skktail%d", tmpdir, getpid());

88

+	snprintf(okuri_head_name, sizeof(okuri_head_name), "%s/skkhead%d", tmpdir, getpid());

89

+	snprintf(okuri_tail_name, sizeof(okuri_tail_name), "%s/skktail%d", tmpdir, getpid());

90

}

91

     set_signal_handler();

92

     db_make_files();

93

@@ -845,6 +853,7 @@

94

}

95

     type_out(output);

96

     db_remove_files();

97

+    rmdir(tmpsubdir);

98

     return 0;

99

}

1.1                  app-i18n/skktools/files/digest-skktools-1.2-r1

105

106

file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/digest-skktools-1.2-r1?rev=1.1&view=markup

107

plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/digest-skktools-1.2-r1?rev=1.1&content-type=text/plain

108

109

Index: digest-skktools-1.2-r1

110

===================================================================

111

MD5 eec35c1ce3fedf9b5d3939d4e625cf4d skktools-1.2.tar.gz 206799

112

RMD160 cb157d231bf3132b6a9476fcafbeb30ec019811d skktools-1.2.tar.gz 206799

113

SHA256 e68b6b2b3f6a62bc37e35aca42bbff69ab5bcd4d7e7061354f1a6f3419f14e80 skktools-1.2.tar.gz 206799

--

118

gentoo-commits@g.o mailing list

1	matsuu 07/09/20 00:04:05
2
3	Added: skktools-1.2-CVE-2007-3916.patch
4	digest-skktools-1.2-r1
5	Log:
6	Fixed bug #193121. the patch is from debian.
7	(Portage version: 2.1.3.9)
8
9	Revision Changes Path
10	1.1 app-i18n/skktools/files/skktools-1.2-CVE-2007-3916.patch
11
12	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/skktools-1.2-CVE-2007-3916.patch?rev=1.1&view=markup
13	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/skktools-1.2-CVE-2007-3916.patch?rev=1.1&content-type=text/plain
14
15	Index: skktools-1.2-CVE-2007-3916.patch
16	===================================================================
17	--- skktools-1.2+0.20061004.orig/skkdic-expr.c
18	+++ skktools-1.2+0.20061004/skkdic-expr.c
19	@@ -92,6 +92,7 @@
20	char file_name[256];
21	char okuri_tail_name[256];
22	char okuri_head_name[256];
23	+char tmpsubdir[256];
24
25	/* ºî¶ÈÍÑ¥Ç¡¼¥¿¥Ù¡¼¥¹ */
26	DBM *db;
27	@@ -127,28 +128,28 @@
28	char dir_name[256];
29
30	db_remove_file(file_name);
31	- sprintf(pag_name, "%s.pag", file_name);
32	+ snprintf(pag_name, sizeof(pag_name), "%s.pag", file_name);
33	db_remove_file(pag_name);
34	- sprintf(dir_name, "%s.dir", file_name);
35	+ snprintf(dir_name, sizeof(dir_name), "%s.dir", file_name);
36	db_remove_file(dir_name);
37	- sprintf(dir_name, "%s.db", file_name);
38	+ snprintf(dir_name, sizeof(dir_name), "%s.db", file_name);
39	db_remove_file(dir_name);
40
41	if (okurigana_flag) {
42	db_remove_file(okuri_head_name);
43	- sprintf(pag_name, "%s.pag", okuri_head_name);
44	+ snprintf(pag_name, sizeof(pag_name), "%s.pag", okuri_head_name);
45	db_remove_file(pag_name);
46	- sprintf(dir_name, "%s.dir", okuri_head_name);
47	+ snprintf(dir_name, sizeof(dir_name), "%s.dir", okuri_head_name);
48	db_remove_file(dir_name);
49	- sprintf(dir_name, "%s.db", okuri_head_name);
50	+ snprintf(dir_name, sizeof(dir_name), "%s.db", okuri_head_name);
51	db_remove_file(dir_name);
52
53	db_remove_file(okuri_tail_name);
54	- sprintf(pag_name, "%s.pag", okuri_tail_name);
55	+ snprintf(pag_name, sizeof(pag_name), "%s.pag", okuri_tail_name);
56	db_remove_file(pag_name);
57	- sprintf(dir_name, "%s.dir", okuri_tail_name);
58	+ snprintf(dir_name, sizeof(dir_name), "%s.dir", okuri_tail_name);
59	db_remove_file(dir_name);
60	- sprintf(dir_name, "%s.db", okuri_tail_name);
61	+ snprintf(dir_name, sizeof(dir_name), "%s.db", okuri_tail_name);
62	db_remove_file(dir_name);
63	}
64	}
65	@@ -235,6 +236,7 @@
66	int signo;
67	{
68	db_remove_files();
69	+ rmdir(tmpsubdir);
70	signal(signo, SIG_DFL);
71	kill(getpid(), signo);
72	}
73	@@ -816,10 +818,16 @@
74	exit(1);
75	}
76
77	- sprintf(file_name, "%s/skkdic%d", tmpdir, getpid());
78	+ snprintf(tmpsubdir, sizeof(tmpsubdir), "%s/skkdic%d", tmpdir, getpid());
79	+ if (mkdir(tmpsubdir, 0700)) {
80	+ perror(tmpsubdir);
81	+ exit(1);
82	+ }
83	+ tmpdir = tmpsubdir;
84	+ snprintf(file_name, sizeof(file_name), "%s/skkdic%d", tmpdir, getpid());
85	if (okurigana_flag) {
86	- sprintf(okuri_head_name, "%s/skkhead%d", tmpdir, getpid());
87	- sprintf(okuri_tail_name, "%s/skktail%d", tmpdir, getpid());
88	+ snprintf(okuri_head_name, sizeof(okuri_head_name), "%s/skkhead%d", tmpdir, getpid());
89	+ snprintf(okuri_tail_name, sizeof(okuri_tail_name), "%s/skktail%d", tmpdir, getpid());
90	}
91	set_signal_handler();
92	db_make_files();
93	@@ -845,6 +853,7 @@
94	}
95	type_out(output);
96	db_remove_files();
97	+ rmdir(tmpsubdir);
98	return 0;
99	}
100
101
102
103
104	1.1 app-i18n/skktools/files/digest-skktools-1.2-r1
105
106	file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/digest-skktools-1.2-r1?rev=1.1&view=markup
107	plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/app-i18n/skktools/files/digest-skktools-1.2-r1?rev=1.1&content-type=text/plain
108
109	Index: digest-skktools-1.2-r1
110	===================================================================
111	MD5 eec35c1ce3fedf9b5d3939d4e625cf4d skktools-1.2.tar.gz 206799
112	RMD160 cb157d231bf3132b6a9476fcafbeb30ec019811d skktools-1.2.tar.gz 206799
113	SHA256 e68b6b2b3f6a62bc37e35aca42bbff69ab5bcd4d7e7061354f1a6f3419f14e80 skktools-1.2.tar.gz 206799
114
115
116
117	--
118	gentoo-commits@g.o mailing list

Gentoo Archives: gentoo-commits