robert pushed to catdoc (epel7). "Fix buffer overflow vulnerability; RH#872390 / RH#872391"
notifications at fedoraproject.org
notifications at fedoraproject.org
Mon Apr 13 20:34:08 UTC 2015
>From 35134abaaaa7a6f8dbde739f65c816fb56533361 Mon Sep 17 00:00:00 2001
From: Adel Gadllah <adel.gadllah at gmail.com>
Date: Fri, 2 Nov 2012 11:06:25 +0100
Subject: Fix buffer overflow vulnerability; RH#872390 / RH#872391
diff --git a/catdoc-0.94.2-bufferoverflow-rh872390-rh872391.patch b/catdoc-0.94.2-bufferoverflow-rh872390-rh872391.patch
new file mode 100644
index 0000000..0a272da
--- /dev/null
+++ b/catdoc-0.94.2-bufferoverflow-rh872390-rh872391.patch
@@ -0,0 +1,15 @@
+diff -ru catdoc-0.94.2.orign/src/xlsparse.c catdoc-0.94.2/src/xlsparse.c
+--- catdoc-0.94.2.orign/src/xlsparse.c 2006-02-24 18:44:06.000000000 +0100
++++ catdoc-0.94.2/src/xlsparse.c 2012-11-02 11:01:42.675639679 +0100
+@@ -584,8 +584,9 @@
+
+ void CleanUpFormatIdxUsed() {
+ int i;
+- for (i=0;i<NUMOFDATEFORMATS; i++);
+- FormatIdxUsed[i]=0;
++ for (i=0;i<NUMOFDATEFORMATS; i++) {
++ FormatIdxUsed[i]=0;
++ }
+ }
+
+ /*
diff --git a/catdoc.spec b/catdoc.spec
index 41e2f41..1c250f0 100644
--- a/catdoc.spec
+++ b/catdoc.spec
@@ -1,6 +1,6 @@
Name: catdoc
Version: 0.94.2
-Release: 9%{?dist}
+Release: 10%{?dist}
Summary: A program which converts Microsoft office files to plain text
Group: Applications/Text
@@ -8,8 +8,10 @@ License: GPL+
URL: http://www.wagner.pp.ru/~vitus/software/catdoc/
Source0: http://ftp.wagner.pp.ru/pub/catdoc/%{name}-%{version}.tar.gz
Patch0: makefilefix.patch
+Patch1: catdoc-0.94.2-bufferoverflow-rh872390-rh872391.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
+
BuildRequires: tk
Requires: tk
@@ -26,6 +28,7 @@ from Powerpoint files
%prep
%setup -q
%patch0 -p1 -b .makefilefix
+%patch1 -p1 -b .bufferoverflow
%build
%configure
@@ -57,6 +60,9 @@ rm -rf $RPM_BUILD_ROOT
%changelog
+* Fri Nov 02 2012 Adel Gadllah <adel.gadllah at gmail.com> - 0.94.2-10
+- Fix buffer overflow vulnerability; RH#872390 / RH#872391
+
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.94.2-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--
cgit v0.10.2
http://pkgs.fedoraproject.org/cgit/catdoc.git/commit/?h=epel7&id=35134abaaaa7a6f8dbde739f65c816fb56533361
More information about the scm-commits
mailing list