diff options
| author | Jacques Vidrine <nectar@FreeBSD.org> | 2005-06-01 17:08:52 +0000 |
|---|---|---|
| committer | Jacques Vidrine <nectar@FreeBSD.org> | 2005-06-01 17:08:52 +0000 |
| commit | 43eb26289a5b40616c37d5c6595927f4aa25b711 (patch) | |
| tree | 23e32db471ca1110b9f12719dceb3442c0a41303 /x11-toolkits/xview | |
| parent | Document vulnerabilities in XView library. (diff) | |
Correct buffer overflows in xview libraries.
Obtained from: Debian
Security: http://vuxml.freebsd.org/ae6ec9b8-2f43-4d02-8129-c6a3a53ef09d.html
Notes
Notes:
svn path=/head/; revision=136624
Diffstat (limited to 'x11-toolkits/xview')
| -rw-r--r-- | x11-toolkits/xview/Makefile | 2 | ||||
| -rw-r--r-- | x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c | 29 |
2 files changed, 30 insertions, 1 deletions
diff --git a/x11-toolkits/xview/Makefile b/x11-toolkits/xview/Makefile index cf227259a982..67cc4d065152 100644 --- a/x11-toolkits/xview/Makefile +++ b/x11-toolkits/xview/Makefile @@ -7,7 +7,7 @@ PORTNAME= xview PORTVERSION= 3.2.1 -PORTREVISION= 2 +PORTREVISION= 3 CATEGORIES= x11-toolkits MASTER_SITES= ftp://ftp.efd.lth.se/pub/X11/ \ ftp://ftp.uni-heidelberg.de/pub/X11/contrib/libraries/ \ diff --git a/x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c b/x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c new file mode 100644 index 000000000000..53952e100420 --- /dev/null +++ b/x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c @@ -0,0 +1,29 @@ +--- lib/libxview/base/xv_parse.c~ 2005-01-15 17:11:54.000000000 +0100 ++++ lib/libxview/base/xv_parse.c 2005-01-15 17:20:23.000000000 +0100 +@@ -312,7 +312,7 @@ xv_parse_one(app_name, argc, argv) + if (argc <= slot->num_args) { + char dummy[128]; + +- (void) sprintf(dummy, ++ (void) snprintf(dummy, sizeof(dummy), + XV_MSG("%s: missing argument after %s"), + app_name, + argv[0]); +@@ -392,7 +392,7 @@ xv_parse_one(app_name, argc, argv) + if (defaults_lookup(argv[1], known_scales) == -1) { + char dummy[1024]; + +- (void) sprintf(dummy, ++ (void) snprintf(dummy, sizeof(dummy), + XV_MSG("%s: unknown scale \"%s\" used with %s option"), + app_name, argv[1], argv[0]); + xv_error(XV_NULL, +@@ -611,7 +611,7 @@ NegArg: + { + char dummy[128]; + +- (void) sprintf(dummy, ++ (void) snprintf(dummy, sizeof(dummy), + XV_MSG("%s: can't have negative argument %s after %s"), + app_name, argv[bad_arg], argv[0]); + xv_error(XV_NULL, |