[ipxripd] fix format-security issue
Dmitry Butskoy
buc at fedoraproject.org
Tue Dec 3 14:55:16 UTC 2013
commit cada447e07785dd8faa8c70f77f445c366dc1ae4
Author: Dmitry Butskoy <Dmitry at Butskoy.name>
Date: Tue Dec 3 18:54:58 2013 +0400
fix format-security issue
ipxripd-0.8-printf.patch | 12 ++++++++++++
ipxripd.spec | 7 ++++++-
2 files changed, 18 insertions(+), 1 deletions(-)
---
diff --git a/ipxripd-0.8-printf.patch b/ipxripd-0.8-printf.patch
new file mode 100644
index 0000000..7c1c49d
--- /dev/null
+++ b/ipxripd-0.8-printf.patch
@@ -0,0 +1,12 @@
+diff -Nrbu ipxripd-0.8/ipxsap.c ipxripd-0.8-OK/ipxsap.c
+--- ipxripd-0.8/ipxsap.c 2001-07-01 01:07:34.000000000 +0400
++++ ipxripd-0.8-OK/ipxsap.c 2013-12-03 18:50:48.506149763 +0400
+@@ -230,7 +230,7 @@
+ name[IPX_SAP_SERVER_NAME_LEN] = 0;
+ len = strlen(name);
+ memset(name + len, ' ', IPX_SAP_SERVER_NAME_LEN - len);
+- fprintf(file, name);
++ fprintf(file, "%s", name);
+ }
+
+ static void
diff --git a/ipxripd.spec b/ipxripd.spec
index 4ec6d85..b8fc5d3 100644
--- a/ipxripd.spec
+++ b/ipxripd.spec
@@ -1,7 +1,7 @@
Summary: IPX RIP/SAP daemon - routing for IPX networks
Name: ipxripd
Version: 0.8
-Release: 14%{?dist}
+Release: 15%{?dist}
Group: System Environment/Daemons
License: GPLv2+
URL: ftp://ftp.ibiblio.org/pub/Linux/system/filesystems/ncpfs/
@@ -11,6 +11,7 @@ Source2: ipxripd.service
Patch0: ipxripd-0.8-glibc2.1.patch
Patch1: ipxripd-0.7-gcc3.patch
Patch2: ipxripd-0.7-kernel2.6.patch
+Patch3: ipxripd-0.8-printf.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
BuildRequires: systemd-units
@@ -30,6 +31,7 @@ It automagically builds and updates IPX routing table in the Linux kernel.
%patch0 -p1
%patch1 -p1
%patch2 -p1
+%patch3 -p1
%build
@@ -81,6 +83,9 @@ rm -rf $RPM_BUILD_ROOT
%changelog
+* Tue Dec 3 2013 Dmitry Butskoy <Dmitry at Butskoy.name> - 0.8-15
+- fix format-security issue (#1037134)
+
* Sat Aug 03 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.8-14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
More information about the scm-commits
mailing list