From 8efd38a2acd90422d224e1fa1d4f626f7860bf65 Mon Sep 17 00:00:00 2001 From: Jason Helfman Date: Wed, 30 May 2012 22:26:15 +0000 Subject: - Address postgresql*-servers for crypt vulnerability (CVE-2012-2143) http://www.postgresql.org/about/news/1397/ With hat: pgsql --- databases/postgresql83-server/Makefile | 2 +- databases/postgresql83-server/files/patch-crypt-des.c | 12 ++++++++++++ 2 files changed, 13 insertions(+), 1 deletion(-) create mode 100644 databases/postgresql83-server/files/patch-crypt-des.c (limited to 'databases/postgresql83-server') diff --git a/databases/postgresql83-server/Makefile b/databases/postgresql83-server/Makefile index f93de7faac03..6a3dca1ccb8a 100644 --- a/databases/postgresql83-server/Makefile +++ b/databases/postgresql83-server/Makefile @@ -6,7 +6,7 @@ # DISTVERSION?= 8.3.18 -PORTREVISION?= 0 +PORTREVISION?= 1 PKGNAMESUFFIX?= -server MAINTAINER?= pgsql@FreeBSD.org diff --git a/databases/postgresql83-server/files/patch-crypt-des.c b/databases/postgresql83-server/files/patch-crypt-des.c new file mode 100644 index 000000000000..ce61aaa5b2b7 --- /dev/null +++ b/databases/postgresql83-server/files/patch-crypt-des.c @@ -0,0 +1,12 @@ +--- ./contrib/pgcrypto/crypt-des.c ++++ ./contrib/pgcrypto/crypt-des.c +@@ -670,7 +670,8 @@ px_crypt_des(const char *key, const char *setting) + q = (uint8 *) keybuf; + while (q - (uint8 *) keybuf - 8) + { +- if ((*q++ = *key << 1)) ++ *q++ = *key << 1; ++ if (*key != '\0') + key++; + } + if (des_setkey((char *) keybuf)) -- cgit v1.2.3