[ipxripd] fix format-security issue

Dmitry Butskoy buc at fedoraproject.org
Tue Dec 3 14:55:16 UTC 2013 

commit cada447e07785dd8faa8c70f77f445c366dc1ae4
Author: Dmitry Butskoy <Dmitry at Butskoy.name>
Date:   Tue Dec 3 18:54:58 2013 +0400

    fix format-security issue

 ipxripd-0.8-printf.patch |   12 ++++++++++++
 ipxripd.spec             |    7 ++++++-
 2 files changed, 18 insertions(+), 1 deletions(-)
---
diff --git a/ipxripd-0.8-printf.patch b/ipxripd-0.8-printf.patch
new file mode 100644
index 0000000..7c1c49d
--- /dev/null
+++ b/ipxripd-0.8-printf.patch
@@ -0,0 +1,12 @@
+diff -Nrbu ipxripd-0.8/ipxsap.c ipxripd-0.8-OK/ipxsap.c
+--- ipxripd-0.8/ipxsap.c	2001-07-01 01:07:34.000000000 +0400
++++ ipxripd-0.8-OK/ipxsap.c	2013-12-03 18:50:48.506149763 +0400
+@@ -230,7 +230,7 @@
+ 	name[IPX_SAP_SERVER_NAME_LEN] = 0;
+ 	len = strlen(name);
+ 	memset(name + len, ' ', IPX_SAP_SERVER_NAME_LEN - len);
+-	fprintf(file, name);
++	fprintf(file, "%s", name);
+ }
+ 
+ static void 
diff --git a/ipxripd.spec b/ipxripd.spec
index 4ec6d85..b8fc5d3 100644
--- a/ipxripd.spec
+++ b/ipxripd.spec
@@ -1,7 +1,7 @@
 Summary: IPX RIP/SAP daemon - routing for IPX networks
 Name: ipxripd
 Version: 0.8
-Release: 14%{?dist}
+Release: 15%{?dist}
 Group: System Environment/Daemons
 License: GPLv2+
 URL: ftp://ftp.ibiblio.org/pub/Linux/system/filesystems/ncpfs/
@@ -11,6 +11,7 @@ Source2: ipxripd.service
 Patch0: ipxripd-0.8-glibc2.1.patch
 Patch1: ipxripd-0.7-gcc3.patch
 Patch2: ipxripd-0.7-kernel2.6.patch
+Patch3: ipxripd-0.8-printf.patch
 BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 BuildRequires: systemd-units
 
@@ -30,6 +31,7 @@ It automagically builds and updates IPX routing table in the Linux kernel.
 %patch0  -p1
 %patch1  -p1
 %patch2  -p1
+%patch3  -p1
 
 
 %build
@@ -81,6 +83,9 @@ rm -rf $RPM_BUILD_ROOT
 
 
 %changelog
+* Tue Dec  3 2013 Dmitry Butskoy <Dmitry at Butskoy.name> - 0.8-15
+- fix format-security issue (#1037134)
+
 * Sat Aug 03 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.8-14
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild

More information about the scm-commits mailing list