Update socat to 1.7.1.3 Changelog: security: fixed a stack overflow vulnerability that occurred when command line arguments (whole addresses, host names, file names) were longer than 512 bytes. Note that this could only be exploited when an attacker was able to inject data into socat's command line. Full credits to Felix Grobert, Google Security Team, for finding and reporting this issuediff -r1.23 -r1.24 pkgsrc/net/socat/Makefile
(zafer)
@@ -1,16 +1,16 @@ | @@ -1,16 +1,16 @@ | |||
1 | # $NetBSD: Makefile,v 1.23 2010/04/19 19:52:13 zafer Exp $ | 1 | # $NetBSD: Makefile,v 1.24 2010/08/12 17:54:14 zafer Exp $ | |
2 | 2 | |||
3 | DISTNAME= socat-1.7.1.2 | 3 | DISTNAME= socat-1.7.1.3 | |
4 | CATEGORIES= net | 4 | CATEGORIES= net | |
5 | MASTER_SITES= http://www.dest-unreach.org/socat/download/ | 5 | MASTER_SITES= http://www.dest-unreach.org/socat/download/ | |
6 | 6 | |||
7 | MAINTAINER= pkgsrc-users@NetBSD.org | 7 | MAINTAINER= pkgsrc-users@NetBSD.org | |
8 | HOMEPAGE= http://www.dest-unreach.org/socat/ | 8 | HOMEPAGE= http://www.dest-unreach.org/socat/ | |
9 | COMMENT= "netcat++" (extended design, new implementation) | 9 | COMMENT= "netcat++" (extended design, new implementation) | |
10 | LICENSE= gnu-gpl-v2 | 10 | LICENSE= gnu-gpl-v2 | |
11 | 11 | |||
12 | PKG_DESTDIR_SUPPORT= user-destdir | 12 | PKG_DESTDIR_SUPPORT= user-destdir | |
13 | 13 | |||
14 | GNU_CONFIGURE= YES | 14 | GNU_CONFIGURE= YES | |
15 | USE_GNU_READLINE= YES | 15 | USE_GNU_READLINE= YES | |
16 | ONLY_FOR_COMPILER= gcc # uses -Werror in the configure script | 16 | ONLY_FOR_COMPILER= gcc # uses -Werror in the configure script |
@@ -1,6 +1,6 @@ | @@ -1,6 +1,6 @@ | |||
1 | $NetBSD: distinfo,v 1.14 2010/04/19 19:52:13 zafer Exp $ | 1 | $NetBSD: distinfo,v 1.15 2010/08/12 17:54:14 zafer Exp $ | |
2 | 2 | |||
3 | SHA1 (socat-1.7.1.2.tar.gz) = dbd76e9fdac13ae95c46be9bb8a95ef4258bb466 | 3 | SHA1 (socat-1.7.1.3.tar.gz) = 5a42275da0d8a5182452b36535a74c3cdf21793b | |
4 | RMD160 (socat-1.7.1.2.tar.gz) = 2ef9b80cf5e6cc57a837c0c78e269538460aaeee | 4 | RMD160 (socat-1.7.1.3.tar.gz) = fa4fdb731b5bef344f6c24a5bc242ae910728d57 | |
5 | Size (socat-1.7.1.2.tar.gz) = 554091 bytes | 5 | Size (socat-1.7.1.3.tar.gz) = 553489 bytes | |
6 | SHA1 (patch-aa) = c10b68a5ca36ec27c6e77a01f6f89a832a4862eb | 6 | SHA1 (patch-aa) = c10b68a5ca36ec27c6e77a01f6f89a832a4862eb |