Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/net-im/silc-server/files
diff options
context:
space:
mode:
authorSven Wegener <swegener@gentoo.org>2005-09-08 13:31:27 +0000
committerSven Wegener <swegener@gentoo.org>2005-09-08 13:31:27 +0000
commit2b26cbdc9a96684d683b25a80d6d71df3a5080f0 (patch)
treec350427657f69caa8aaf2daacb5c32465106cf8b /net-im/silc-server/files
parentMarked Stable on AMD64. (diff)
downloadgentoo-2-2b26cbdc9a96684d683b25a80d6d71df3a5080f0.tar.gz
gentoo-2-2b26cbdc9a96684d683b25a80d6d71df3a5080f0.tar.bz2
gentoo-2-2b26cbdc9a96684d683b25a80d6d71df3a5080f0.zip
Revision bump, security bug #94587.
(Portage version: 2.0.51.22-r2)
Diffstat (limited to 'net-im/silc-server/files')
-rw-r--r--net-im/silc-server/files/1.0-tempfile-vuln.patch17
-rw-r--r--net-im/silc-server/files/digest-silc-server-1.0-r1 (renamed from net-im/silc-server/files/digest-silc-server-1.0)0
2 files changed, 17 insertions, 0 deletions
diff --git a/net-im/silc-server/files/1.0-tempfile-vuln.patch b/net-im/silc-server/files/1.0-tempfile-vuln.patch
new file mode 100644
index 000000000000..46acb32c4404
--- /dev/null
+++ b/net-im/silc-server/files/1.0-tempfile-vuln.patch
@@ -0,0 +1,17 @@
+--- apps/silcd/silcd.c.orig 2004-02-27 15:29:51.000000000 +0000
++++ apps/silcd/silcd.c 2005-06-20 13:49:34.511237224 +0100
+@@ -260,11 +260,13 @@
+ SILC_TASK_CALLBACK(dump_stats)
+ {
+ FILE *fdd;
++ int fdes;
+ char filename[256];
+
+ memset(filename, 0, sizeof(filename));
+ snprintf(filename, sizeof(filename) - 1, "/tmp/silcd.%d.stats", getpid());
+- fdd = fopen(filename, "w+");
++ fdes = open (filename, O_CREAT|O_EXCL|O_WRONLY, S_IRUSR|S_IWUSR);
++ fdd = fdopen(fdes, "w");
+ if (!fdd)
+ return;
+
diff --git a/net-im/silc-server/files/digest-silc-server-1.0 b/net-im/silc-server/files/digest-silc-server-1.0-r1
index 164ebf8878e0..164ebf8878e0 100644
--- a/net-im/silc-server/files/digest-silc-server-1.0
+++ b/net-im/silc-server/files/digest-silc-server-1.0-r1