From 1026ab92c2d580642b2c3dcd9142864aca1fd063 Mon Sep 17 00:00:00 2001
From: Yen-Ming Lee <leeym@FreeBSD.org>
Date: Sun, 1 Jun 2003 09:29:13 +0000
Subject: Security Update Fix "Possible remote exploit from rogue server"
 problem

PR:		52723
Submitted by:	Anders Andersson <anders@andersa.net>
---
 irc/epic4/Makefile           |  2 +-
 irc/epic4/files/patch-ctcp.c | 12 ++++++++++++
 2 files changed, 13 insertions(+), 1 deletion(-)
 create mode 100644 irc/epic4/files/patch-ctcp.c

(limited to 'irc/epic4')

diff --git a/irc/epic4/Makefile b/irc/epic4/Makefile
index 38b837f9ea69..07431bd544e9 100644
--- a/irc/epic4/Makefile
+++ b/irc/epic4/Makefile
@@ -8,7 +8,7 @@
 PORTNAME=	epic4
 PORTVERSION=	1.0.1
 # Make these variables overridable for slave ports
-PORTREVISION?=	2
+PORTREVISION?=	3
 CATEGORIES?=	irc ipv6
 MASTER_SITES=	http://ftp.prbh.org/pub/epic/EPIC4-PRODUCTION/ \
 		ftp://ftp.icm.edu.pl/vol/rzm0/irc/EPIC/%SUBDIR%/ \
diff --git a/irc/epic4/files/patch-ctcp.c b/irc/epic4/files/patch-ctcp.c
new file mode 100644
index 000000000000..b8f4eef94264
--- /dev/null
+++ b/irc/epic4/files/patch-ctcp.c
@@ -0,0 +1,12 @@
+--- source/ctcp.c.orig  Tue Dec  5 01:11:56 2000
++++ source/ctcp.c       Tue May 27 16:55:04 2003
+@@ -897,7 +897,8 @@
+	int	len;
+
+ 	/* Make sure that the final \001 doesnt get truncated */
+-	len = IRCD_BUFFER_SIZE - (12 + strlen(to));
++	if ((len = IRCD_BUFFER_SIZE - (12 + strlen(to))) < 0)
++		return;
+ 	putbuf2 = alloca(len);
+ 
+ 	if (format)
-- 
cgit v1.2.3