summaryrefslogtreecommitdiffstats
path: root/x11-toolkits/xview
diff options
context:
space:
mode:
authornectar <nectar@FreeBSD.org>2005-06-01 17:08:52 +0000
committernectar <nectar@FreeBSD.org>2005-06-01 17:08:52 +0000
commit4411b01fb03a6b5dd8ac7bab1f6599cd2db7bc1a (patch)
tree1b9c80b0730475b828d3ab5727d4920144a4f1c9 /x11-toolkits/xview
parentacb6055ba2c8548734ecf79f009b0675079ec4da (diff)
downloadFreeBSD-ports-4411b01fb03a6b5dd8ac7bab1f6599cd2db7bc1a.zip
FreeBSD-ports-4411b01fb03a6b5dd8ac7bab1f6599cd2db7bc1a.tar.gz
Correct buffer overflows in xview libraries.
Obtained from: Debian Security: http://vuxml.freebsd.org/ae6ec9b8-2f43-4d02-8129-c6a3a53ef09d.html
Diffstat (limited to 'x11-toolkits/xview')
-rw-r--r--x11-toolkits/xview/Makefile2
-rw-r--r--x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c29
2 files changed, 30 insertions, 1 deletions
diff --git a/x11-toolkits/xview/Makefile b/x11-toolkits/xview/Makefile
index cf22725..67cc4d0 100644
--- a/x11-toolkits/xview/Makefile
+++ b/x11-toolkits/xview/Makefile
@@ -7,7 +7,7 @@
PORTNAME= xview
PORTVERSION= 3.2.1
-PORTREVISION= 2
+PORTREVISION= 3
CATEGORIES= x11-toolkits
MASTER_SITES= ftp://ftp.efd.lth.se/pub/X11/ \
ftp://ftp.uni-heidelberg.de/pub/X11/contrib/libraries/ \
diff --git a/x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c b/x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c
new file mode 100644
index 0000000..53952e1
--- /dev/null
+++ b/x11-toolkits/xview/files/patch-lib+libxview+base+xv_parse.c
@@ -0,0 +1,29 @@
+--- lib/libxview/base/xv_parse.c~ 2005-01-15 17:11:54.000000000 +0100
++++ lib/libxview/base/xv_parse.c 2005-01-15 17:20:23.000000000 +0100
+@@ -312,7 +312,7 @@ xv_parse_one(app_name, argc, argv)
+ if (argc <= slot->num_args) {
+ char dummy[128];
+
+- (void) sprintf(dummy,
++ (void) snprintf(dummy, sizeof(dummy),
+ XV_MSG("%s: missing argument after %s"),
+ app_name,
+ argv[0]);
+@@ -392,7 +392,7 @@ xv_parse_one(app_name, argc, argv)
+ if (defaults_lookup(argv[1], known_scales) == -1) {
+ char dummy[1024];
+
+- (void) sprintf(dummy,
++ (void) snprintf(dummy, sizeof(dummy),
+ XV_MSG("%s: unknown scale \"%s\" used with %s option"),
+ app_name, argv[1], argv[0]);
+ xv_error(XV_NULL,
+@@ -611,7 +611,7 @@ NegArg:
+ {
+ char dummy[128];
+
+- (void) sprintf(dummy,
++ (void) snprintf(dummy, sizeof(dummy),
+ XV_MSG("%s: can't have negative argument %s after %s"),
+ app_name, argv[bad_arg], argv[0]);
+ xv_error(XV_NULL,
OpenPOWER on IntegriCloud