headers
voroskoi | 1 Oct 2007 09:43
Picon

homepage-ng: FSA281-sylpheed

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=024d5435cc85b2826dc460ce70c7a2a91ce20668

commit 024d5435cc85b2826dc460ce70c7a2a91ce20668
Author: voroskoi <voroskoi@...>
Date:   Mon Oct 1 09:32:04 2007 +0200

FSA281-sylpheed

diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml
index 1003107..e64976e 100644
--- a/frugalware/xml/security.xml
+++ b/frugalware/xml/security.xml
 <at>  <at>  -27,6 +27,19  <at>  <at> 

<fsas>
<fsa>
+		<id>281</id>
+		<date>2007-10-01</date>
+		<author>voroskoi</author>
+		<package>sylpheed</package>
+		<vulnerable>2.3.1-1</vulnerable>
+		<unaffected>2.3.1-2terminus1</unaffected>
+		<bts>http://bugs.frugalware.org/task/2378</bts>
+		<cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2958</cve>
+		<desc>Secunia Research has discovered a vulnerability in Sylpheed, which can be exploited by
malicious people to compromise a vulnerable system.
+			A format string error in the "inc_put_error()" function in src/inc.c when displaying a POP3 server's
error response can be exploited via specially crafted POP3 server replies containing format specifiers.
+			Successful exploitation may allow execution of arbitrary code, but requires that the user is tricked
into connecting to a malicious POP3 server.</desc>
(Continue reading)

Permalink | Reply | 0 comments |
headers
voroskoi | 1 Oct 2007 09:48
Picon

homepage-ng: FSA282-claws-mail

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=20da034040a725775bc287760baadbb34248316a

commit 20da034040a725775bc287760baadbb34248316a
Author: voroskoi <voroskoi@...>
Date:   Mon Oct 1 09:37:02 2007 +0200

FSA282-claws-mail

diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml
index e64976e..bc35a13 100644
--- a/frugalware/xml/security.xml
+++ b/frugalware/xml/security.xml
 <at>  <at>  -27,6 +27,19  <at>  <at> 

<fsas>
<fsa>
+		<id>282</id>
+		<date>2007-10-01</date>
+		<author>voroskoi</author>
+		<package>claws-mail</package>
+		<vulnerable>2.8.1-1</vulnerable>
+		<unaffected>2.8.1-2terminus1</unaffected>
+		<bts>http://bugs.frugalware.org/task/2378</bts>
+		<cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2958</cve>
+		<desc>Secunia Research has discovered a vulnerability in Sylpheed-Claws (Claws Mail), which can be
exploited by malicious people to compromise a vulnerable system.
+			A format string error in the "inc_put_error()" function in src/inc.c when displaying a POP3 server's
error response can be exploited via specially crafted POP3 server replies containing format specifiers.
+			Successful exploitation may allow execution of arbitrary code, but requires that the user is tricked
into connecting to a malicious POP3 server.</desc>
(Continue reading)

Permalink | Reply | 0 comments |
headers
voroskoi | 1 Oct 2007 09:59
Picon

homepage-ng: FSA283-qt4

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=aa7128b9a73932cf863c2e673a3fbad94b125c5f

commit aa7128b9a73932cf863c2e673a3fbad94b125c5f
Author: voroskoi <voroskoi@...>
Date:   Mon Oct 1 09:48:37 2007 +0200

FSA283-qt4

diff --git a/frugalware/xml/security.xml b/frugalware/xml/security.xml
index bc35a13..fd2079b 100644
--- a/frugalware/xml/security.xml
+++ b/frugalware/xml/security.xml
 <at>  <at>  -27,6 +27,18  <at>  <at> 

<fsas>
<fsa>
+		<id>283</id>
+		<date>2007-10-01</date>
+		<author>voroskoi</author>
+		<package>qt4</package>
+		<vulnerable>4.2.3-2terminus1</vulnerable>
+		<unaffected>4.2.3-2terminus2</unaffected>
+		<bts>http://bugs.frugalware.org/task/2422</bts>
+		<cve>http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4137</cve>
+		<desc>A vulnerability has been reported in Qt, which can potentially be exploited by malicious people
to cause a DoS (Denial of Service) or to compromise an application using the library.
+			The vulnerability is caused due to an off-by-one error within the "QUtf8Decoder::toUnicode()"
function ("QUtf8Codec::convertToUnicode()" in Qt 4.x) in codecs/qutfcodec.cpp. This can be
exploited to cause a one-byte heap-based buffer overflow via a specially crafted unicode string.</desc>
+	</fsa>
(Continue reading)

Permalink | Reply | 0 comments |
headers
crazy | 1 Oct 2007 10:35
Picon

bf07: util-linux-ng-2.13-2-i686

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=bf07.git;a=commitdiff;h=3294e61e4afaf97c252608320e6c3befed373e24

commit 3294e61e4afaf97c252608320e6c3befed373e24
Author: crazy <crazy@...>
Date:   Mon Oct 1 10:32:23 2007 +0200

util-linux-ng-2.13-2-i686
* relbump
* added patches from git to fix some strange bugs

diff --git a/source/base/util-linux-ng/FrugalBuild b/source/base/util-linux-ng/FrugalBuild
index 5d7a93a..eb2ac3f 100644
--- a/source/base/util-linux-ng/FrugalBuild
+++ b/source/base/util-linux-ng/FrugalBuild
 <at>  <at>  -3,7 +3,7  <at>  <at> 

pkgname=util-linux-ng
pkgver=2.13
-pkgrel=1
+pkgrel=2
pkgdesc="Miscellaneous system utilities for Linux"
url="http://www.kernel.org/pub/linux/utils/util-linux"
backup=('etc/sysconfig/console' 'etc/sysconfig/numlock')
 <at>  <at>  -18,8 +18,13  <at>  <at>  source=(http://ftp.kernel.org/pub/linux/utils/util-linux-ng/v$pkgver/util-linux-
frugalwaregetty numlock rc.{bootclean,console,mount,rmount,swap,time} \
rc.bootclean-{de,hu}.po rc.mount-{de,hu}.po rc.rmount-{de,hu}.po \
rc.swap-{de,hu}.po rc.time-{de,hu}.po \
-	README.Frugalware)
-signatures=($source.sign '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '' '')
+	README.Frugalware \
(Continue reading)

Permalink | Reply | 0 comments |
headers
VMiklos | 1 Oct 2007 13:33
Picon
Gravatar

pacman-tools: fwmirror: us Farchs

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=pacman-tools.git;a=commitdiff;h=5e220dbfc1e2f3e26f1598b3e85dfb30cf095f7e

commit 5e220dbfc1e2f3e26f1598b3e85dfb30cf095f7e
Author: VMiklos <vmiklos@...>
Date:   Sun Sep 30 22:42:04 2007 +0200

fwmirror: us Farchs

diff --git a/fwmirror b/fwmirror
index 6457c83..f58b67e 100755
--- a/fwmirror
+++ b/fwmirror
 <at>  <at>  -1,7 +1,6  <at>  <at> 
#!/bin/bash

myver="0.7.9"
-archs=('i686' 'x86_64' 'ppc')

usage()
{
 <at>  <at>  -117,7 +116,7  <at>  <at>  rsync_opts="$*"
[ "`type -p rsync`" ] || die "Can't find rsync! Please install it with 'pacman -S rsync'!"

# exclude the non-requested archs
-for i in "${archs[ <at> ]}"
+for i in "${Farchs[ <at> ]}"
do
if ! in_array $i ${myarchs[ <at> ]}; then
rsync_opts="$rsync_opts --exclude /frugalware-$i/"
(Continue reading)

Permalink | Reply | 0 comments |
headers
VMiklos | 1 Oct 2007 13:33
Picon
Gravatar

pacman-tools: dependency fix for the install target

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=pacman-tools.git;a=commitdiff;h=ef464437d0aa9116e126a13320dd4bdf256e90d0

commit ef464437d0aa9116e126a13320dd4bdf256e90d0
Author: VMiklos <vmiklos@...>
Date:   Sun Sep 30 22:34:54 2007 +0200

dependency fix for the install target

diff --git a/Makefile b/Makefile
index 1f79296..23417d6 100644
--- a/Makefile
+++ b/Makefile
 <at>  <at>  -48,7 +48,7  <at>  <at>  compile: genauthors apidocs docs

docs: $(subst .txt,.1,$(DOCS))

-install:
+install: compile
$(INSTALL) -d $(DESTDIR)$(bindir)
$(INSTALL) -d $(DESTDIR)$(sbindir)
$(INSTALL) -d $(DESTDIR)$(libdir)
Permalink | Reply | 0 comments |
headers
VMiklos | 1 Oct 2007 13:33
Picon
Gravatar

pacman-tools: fwmakepkg manpage is now moved to fst/source/include

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=pacman-tools.git;a=commitdiff;h=f02b759d4c50a4cf97140450b3338b3356b686de

commit f02b759d4c50a4cf97140450b3338b3356b686de
Author: VMiklos <vmiklos@...>
Date:   Sun Sep 30 22:26:38 2007 +0200

fwmakepkg manpage is now moved to fst/source/include

diff --git a/Makefile b/Makefile
index 16c1e03..1f79296 100644
--- a/Makefile
+++ b/Makefile
 <at>  <at>  -38,7 +38,7  <at>  <at>  FINCDIR = $(shell source /usr/lib/frugalware/fwmakepkg; echo $$Fincdir)
XML_PATH = /usr/share/sgml/docbook/dtd/xml-dtd-4.2
DOCS = $(wildcard *.txt) $(wildcard syncpkgd/*.txt)

-compile: genauthors apidocs fwmakepkg.3 docs
+compile: genauthors apidocs docs
$(MAKE) -C mkiso
$(MAKE) -C repoman.d
help2man -n "mirrors Frugalware archives" -S Frugalware -N ./fwmirror |sed 's/\\(co/(c)/' >fwmirror.1
 <at>  <at>  -89,11 +89,10  <at>  <at>  install:
$(INSTALL) -m644 mkiso/mkiso.8 $(DESTDIR)$(man8dir)
$(INSTALL) -m644 mkiso/volumes.xml $(DESTDIR)$(docdir)/volumes.xml
$(INSTALL) -m644 apidocs/*.3 $(DESTDIR)$(man3dir)
-	$(INSTALL) -m644 fwmakepkg.3 $(DESTDIR)$(man3dir)
make -C syncpkgd DESTDIR=$(DESTDIR) install

clean:
-	rm -rf genauthors apidocs fwmakepkg.3 *.1
(Continue reading)

Permalink | Reply | 0 comments |
headers
VMiklos | 1 Oct 2007 13:33
Picon
Gravatar

pacman-tools: remove an unused variable

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=pacman-tools.git;a=commitdiff;h=7729fbb40d4bead5f60789b0a1aad03d955c414f

commit 7729fbb40d4bead5f60789b0a1aad03d955c414f
Author: VMiklos <vmiklos@...>
Date:   Sun Sep 30 23:14:59 2007 +0200

remove an unused variable

diff --git a/Makefile b/Makefile
index f1099fe..f771dfd 100644
--- a/Makefile
+++ b/Makefile
 <at>  <at>  -18,8 +18,6  <at>  <at> 

VERSION = 1.0.0

-LANGS = hu pl
-
CFLAGS ?= -Wall -Werror -g -O2 -pipe
CFLAGS += $(shell pkg-config --cflags libxml-2.0)
LDFLAGS += $(shell pkg-config --libs libxml-2.0)
Permalink | Reply | 0 comments |
headers
VMiklos | 1 Oct 2007 13:33
Picon
Gravatar

pacman-tools: order: bin, obsolete

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=pacman-tools.git;a=commitdiff;h=02ab26da285cc1e27376862fa96989a1f1487d0a

commit 02ab26da285cc1e27376862fa96989a1f1487d0a
Author: VMiklos <vmiklos@...>
Date:   Sun Sep 30 23:18:28 2007 +0200

order: bin, obsolete
libpacman provides this feature (you can create a transaction, prepare and then
query the targets)

diff --git a/order b/order
deleted file mode 100644
index d3dd693..0000000
--- a/order
+++ /dev/null
 <at>  <at>  -1,5 +0,0  <at>  <at> 
-#!/bin/sh
-# must be run as root
-OWNTMPDIR=`mktemp -d /tmp/order.XXXXXX` || exit 1
-echo -n | pacman -r $OWNTMPDIR -Sy $* | grep -- '-[0-9\.]\+' | sed 's/^Targets: //;s/\(-[0-9]\+\)
\([a-z]\)/\1\n\2/g;s/^ \+\(.*\)/\1/' | sed 's/-[^-]\+-[^-]\+$//'
-rm -rf $OWNTMPDIR
Permalink | Reply | 0 comments |
headers
VMiklos | 1 Oct 2007 13:33
Picon
Gravatar

pacman-tools: added fwmirror manpage

Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=pacman-tools.git;a=commitdiff;h=3007e564e37af88f345e8619722624f8047e389c

commit 3007e564e37af88f345e8619722624f8047e389c
Author: VMiklos <vmiklos@...>
Date:   Sun Sep 30 22:48:23 2007 +0200

added fwmirror manpage

diff --git a/fwmirror b/fwmirror
index f58b67e..f188cb2 100755
--- a/fwmirror
+++ b/fwmirror
 <at>  <at>  -4,28 +4,7  <at>  <at>  myver="0.7.9"

usage()
{
-	echo "Usage: $0 [options] -- [rsync options]"
-	echo
-	echo "Options:"
-	echo "  -a <archs>       Coma separated list of architectures you want
-	to mirror. If you want to mirror the sources, too then use the special
-	'source' arch."
-	echo "  -d <directory>   Destination directory."
-	echo "  --help      This help."
-	echo "  -s <server>      The mirror server you want to use"
-	echo "  -v <versions>    Coma separated list of versions you want to
-	mirror. You can use explicit versions and aliases
-	(current,testing,stable), too."
-	echo "  --version        fwmirror version."
-	echo
(Continue reading)

Permalink | Reply | 0 comments |

Gmane