From 98175558d7a0dcd6e001ae887a44c05cf7955d63 Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Mon, 26 Sep 2022 19:43:54 +0000 Subject: Mon Sep 26 19:43:54 UTC 2022 a/bash-5.2.000-x86_64-1.txz: Upgraded. ap/vim-9.0.0594-x86_64-1.txz: Upgraded. Fixed stack-based buffer overflow. Thanks to marav for the heads-up. In addition, Mig21 pointed out an issue where the defaults.vim file might need to be edited for some purposes as its contents will override the settings in the system-wide vimrc. Usually this file is replaced whenever vim is upgraded, which in those situations would be inconvenient for the admin. So, I've added support for a file named defaults.vim.custom which (if it exists) will be used instead of the defaults.vim file shipped in the package and will persist through upgrades. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3296 (* Security fix *) l/fluidsynth-2.3.0-x86_64-1.txz: Upgraded. l/imagemagick-7.1.0_49-x86_64-1.txz: Upgraded. l/libcap-2.66-x86_64-1.txz: Upgraded. l/netpbm-10.99.03-x86_64-1.txz: Upgraded. l/readline-8.2.000-x86_64-1.txz: Upgraded. l/xapian-core-1.4.21-x86_64-1.txz: Upgraded. n/dnsmasq-2.87-x86_64-1.txz: Upgraded. Fix write-after-free error in DHCPv6 server code. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0934 (* Security fix *) x/xterm-373-x86_64-1.txz: Upgraded. xap/vim-gvim-9.0.0594-x86_64-1.txz: Upgraded. --- source/a/bash/bash-5.1-patches/bash51-009 | 59 ------------------------------- 1 file changed, 59 deletions(-) delete mode 100644 source/a/bash/bash-5.1-patches/bash51-009 (limited to 'source/a/bash/bash-5.1-patches/bash51-009') diff --git a/source/a/bash/bash-5.1-patches/bash51-009 b/source/a/bash/bash-5.1-patches/bash51-009 deleted file mode 100644 index 2796c3b9b..000000000 --- a/source/a/bash/bash-5.1-patches/bash51-009 +++ /dev/null @@ -1,59 +0,0 @@ - BASH PATCH REPORT - ================= - -Bash-Release: 5.1 -Patch-ID: bash51-009 - -Bug-Reported-by: Julien Moutinho -Bug-Reference-ID: <20211004035906.5kiobuzkpeckmvwg@sourcephile.fr> -Bug-Reference-URL: https://lists.gnu.org/archive/html/bug-bash/2021-10/msg00022.html - -Bug-Description: - -The bash malloc implementation of malloc_usable_size() does not follow the -specification. This can cause library functions that use it to overwrite -memory bounds checking. - -Patch (apply with `patch -p0'): - -*** ../bash-5.1-patched/lib/malloc/malloc.c 2020-07-08 10:19:30.000000000 -0400 ---- lib/malloc/malloc.c 2021-10-05 16:10:55.000000000 -0400 -*************** -*** 1287,1297 **** - } - -! /* XXX - should we return 0 if ISFREE? */ -! maxbytes = binsize(p->mh_index); -! -! /* So the usable size is the maximum number of bytes in the bin less the -! malloc overhead */ -! maxbytes -= MOVERHEAD + MSLOP; -! return (maxbytes); - } - ---- 1358,1367 ---- - } - -! /* return 0 if ISFREE */ -! if (p->mh_alloc == ISFREE) -! return 0; -! -! /* Since we use bounds checking, the usable size is the last requested size. */ -! return (p->mh_nbytes); - } - -*** ../bash-5.1/patchlevel.h 2020-06-22 14:51:03.000000000 -0400 ---- patchlevel.h 2020-10-01 11:01:28.000000000 -0400 -*************** -*** 26,30 **** - looks for to find the patch level (for the sccs version string). */ - -! #define PATCHLEVEL 8 - - #endif /* _PATCHLEVEL_H_ */ ---- 26,30 ---- - looks for to find the patch level (for the sccs version string). */ - -! #define PATCHLEVEL 9 - - #endif /* _PATCHLEVEL_H_ */ -- cgit v1.2.3-65-gdbad