[uucp] uucp: pass string literal as format string for fprintf
Pavel Raiskup
praiskup at fedoraproject.org
Tue Dec 3 08:02:32 UTC 2013
commit 03314197de5cb6c68425b6e3466e0b1c11ea6bc7
Author: Pavel Raiskup <praiskup at redhat.com>
Date: Tue Dec 3 09:00:00 2013 +0100
uucp: pass string literal as format string for fprintf
Version: 1.07-40
Resolves: #1037372
uucp-1.07-format.patch | 13 +++++++++++++
uucp.spec | 9 ++++++++-
2 files changed, 21 insertions(+), 1 deletions(-)
---
diff --git a/uucp-1.07-format.patch b/uucp-1.07-format.patch
new file mode 100644
index 0000000..ff172dd
--- /dev/null
+++ b/uucp-1.07-format.patch
@@ -0,0 +1,13 @@
+diff --git a/uuconv.c b/uuconv.c
+index 8576556..a6a2291 100644
+--- a/uuconv.c
++++ b/uuconv.c
+@@ -676,7 +676,7 @@ uvwrite_chat_script (e, pzarg)
+ {
+ if ((*pz)[0] != '-' && pz != pzarg)
+ fprintf (e, " ");
+- fprintf (e, *pz);
++ fprintf (e, "%s", *pz);
+ }
+ }
+
diff --git a/uucp.spec b/uucp.spec
index 36a2949..96b842a 100644
--- a/uucp.spec
+++ b/uucp.spec
@@ -20,7 +20,7 @@
Summary: A set of utilities for operations between systems
Name: uucp
Version: 1.07
-Release: 39%{?dist}
+Release: 40%{?dist}
License: GPLv2+
Group: Applications/Communications
Url: http://www.airs.com/ian/uucp.html
@@ -41,6 +41,10 @@ Patch8: uucp-1.06.1-pipe.patch
Patch9: uucp-1.07-lfs.patch
#fix crashes with SIGFPE (#150978) (from Wolfgang Ocker)
Patch10: uucp-1.07-sigfpe2.patch
+# Fix FTBFS for -Werror=format-security enablement
+# ~> downstream, #1037372
+Patch11: uucp-1.07-format.patch
+
Requires(preun): /sbin/install-info
Requires(post): /sbin/install-info
Requires(post): coreutils
@@ -258,6 +262,9 @@ fi
%attr(755,uucp,uucp) /var/spool/uucp
%changelog
+* Tue Dec 03 2013 Pavel Raiskup <praiskup at redhat.com> - 1.07-40
+- pass string literal as format string for fprintf (#1037372)
+
* Sat Jul 27 2013 Ville Skyttä <ville.skytta at iki.fi> - 1.07-39
- Honor %%{_pkgdocdir} where available.
More information about the scm-commits
mailing list