diff options
| author |   Bernard Cafarelli <voyageur@gentoo.org> | 2007-09-20 23:16:10 +0000 |
|---|---|---|
| committer | Bernard Cafarelli <voyageur@gentoo.org> | 2007-09-20 23:16:10 +0000 |
| commit | a82f85f185ad35e2c0f183cf542a1e946b2fed43 (patch) | |
| tree | 5544b113c1843bbf4d7faa9e504aa6b7f503db61 /net-misc/nxserver-freenx | |
| parent | Add libXcomposite depend, remove vulnerable NX 2.1 versions bug #192712 (diff) | |
| download | gentoo-2-a82f85f185ad35e2c0f183cf542a1e946b2fed43.tar.gz gentoo-2-a82f85f185ad35e2c0f183cf542a1e946b2fed43.tar.bz2 gentoo-2-a82f85f185ad35e2c0f183cf542a1e946b2fed43.zip | |
Remove vulnerable NX 2.1 versions, security bug #192712
(Portage version: 2.1.3.9)
Diffstat (limited to 'net-misc/nxserver-freenx')
7 files changed, 7 insertions, 304 deletions
diff --git a/net-misc/nxserver-freenx/ChangeLog b/net-misc/nxserver-freenx/ChangeLog index 493d76bea2c7..7efb9e42b53a 100644 --- a/net-misc/nxserver-freenx/ChangeLog +++ b/net-misc/nxserver-freenx/ChangeLog @@ -1,6 +1,12 @@ # ChangeLog for net-misc/nxserver-freenx # Copyright 1999-2007 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/nxserver-freenx/ChangeLog,v 1.32 2007/09/20 12:48:26 opfer Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-misc/nxserver-freenx/ChangeLog,v 1.33 2007/09/20 23:16:10 voyageur Exp $ + + 20 Sep 2007; Bernard Cafarelli <voyageur@gentoo.org> + -files/nxserver-freenx-0.6.0-rdesktop.patch, + -files/nxserver-freenx-0.6.0-rootless-mode.patch, + -nxserver-freenx-0.6.0.ebuild, -nxserver-freenx-0.7.0.ebuild: + Remove vulnerable NX 2.1 versions, security bug #192712 20 Sep 2007; Christian Faulhammer <opfer@gentoo.org> nxserver-freenx-0.7.0-r1.ebuild: diff --git a/net-misc/nxserver-freenx/files/digest-nxserver-freenx-0.6.0 b/net-misc/nxserver-freenx/files/digest-nxserver-freenx-0.6.0 deleted file mode 100644 index 2d1c7bb1bff2..000000000000 --- a/net-misc/nxserver-freenx/files/digest-nxserver-freenx-0.6.0 +++ /dev/null @@ -1,3 +0,0 @@ -MD5 504aaa2c3c93c36eefab74e2b8a6506e freenx-0.6.0.tar.gz 110758 -RMD160 6000d5fed4d11dbb4c750b43c81626991460ccbb freenx-0.6.0.tar.gz 110758 -SHA256 928a4be2ecdfb560abc93737d049fa5b2459e64c431d4aa43e46c6c4df52b3ca freenx-0.6.0.tar.gz 110758 diff --git a/net-misc/nxserver-freenx/files/digest-nxserver-freenx-0.7.0 b/net-misc/nxserver-freenx/files/digest-nxserver-freenx-0.7.0 deleted file mode 100644 index 4c88fd9819e4..000000000000 --- a/net-misc/nxserver-freenx/files/digest-nxserver-freenx-0.7.0 +++ /dev/null @@ -1,3 +0,0 @@ -MD5 9c21eb45b4193ad7184109f3274c9e33 freenx-0.7.0.tar.gz 57614 -RMD160 a051d4fcb96fd80b167c5fdc526cb5a789732057 freenx-0.7.0.tar.gz 57614 -SHA256 61aedd3f8d3fae02b0e13de5f4ee1cb7bc1397dd7a379a67752a188d1f0119c9 freenx-0.7.0.tar.gz 57614 diff --git a/net-misc/nxserver-freenx/files/nxserver-freenx-0.6.0-rdesktop.patch b/net-misc/nxserver-freenx/files/nxserver-freenx-0.6.0-rdesktop.patch deleted file mode 100644 index e6ed42a5e558..000000000000 --- a/net-misc/nxserver-freenx/files/nxserver-freenx-0.6.0-rdesktop.patch +++ /dev/null @@ -1,12 +0,0 @@ ---- nxnode.orig 2007-02-02 19:54:15.000000000 +0100 -+++ nxnode 2007-02-02 19:50:28.000000000 +0100 -@@ -253,6 +253,9 @@ - - NODE_APPLICATION=$(node_find_application "$type") - -+ # For rdesktop/VNC, there is no application to start -+ [ -n "$NODE_APPLICATION" ] || return -+ - # - # Check if we want to use a mediahelper - # diff --git a/net-misc/nxserver-freenx/files/nxserver-freenx-0.6.0-rootless-mode.patch b/net-misc/nxserver-freenx/files/nxserver-freenx-0.6.0-rootless-mode.patch deleted file mode 100644 index eb30df2226f1..000000000000 --- a/net-misc/nxserver-freenx/files/nxserver-freenx-0.6.0-rootless-mode.patch +++ /dev/null @@ -1,39 +0,0 @@ ---- freenx-server/trunk/nxnode 2007/02/04 01:05:52 313 -+++ freenx-server/trunk/nxnode 2007/02/25 23:50:49 331 -@@ -969,7 +969,7 @@ - sync=$(getparam sync) - samba=$(getparam samba) - cups=$(getparam cups) -- agent_server=$(getparam agent_server) -+ agent_server=$(getparam agent_server | sed 's/%3A/:/g') - agent_user=$(getparam agent_user) - agent_password=$(getparam agent_password) - agent_domain=$(getparam agent_domain) -@@ -991,13 +991,17 @@ - rootless=0 - # Its still the clients decision - [ "$ENABLE_ROOTLESS_MODE" = "1" ] && rootless=$(getparam rootless) -+ -+ # Rootless fix from 2x nxserver 1.5.0 -+ realtype=$type -+ [ "$type" = "unix-application" -o "$type" = "unix-default" ] && realtype="unix-desktop" - - # FreeNX specific variables - clientproto=$(getparam clientproto) - status=$(getparam status) - host=$(getparam host) - -- fullscreen="" -+ fullscreen=$(getparam fullscreen) - [ "$geometry" = "fullscreen" ] && fullscreen="1" - - [ "$EXPORT_USERIP" = "1" ] && export NXUSERIP="$userip" -@@ -1061,7 +1065,7 @@ - umask 0077 - - cat << EOF > $USER_FAKE_HOME/.nx/C-$sess_id/options --${kbtype:+kbtype=$kbtype,}${kbload:+kbload=$kbload,}${keymap:+keymap=$keymap,}${resize:+resize=$resize,}${CACHE}${IMAGES}${PACK}link=$link,nodelay=$nodelay,type=$type,cleanup=0,${ACCEPT}cookie=$proxy_cookie,id=$sess_id,samba=$samba,media=$media${sync:+,sync=$sync}${cups:+,cups=$cups}${keybd:+,keybd=$keybd}${http:+,http=$http}${rdpcolors:+,rdpcolors=$rdpcolors}${rdpcache:+,rdpcache=$rdpcache}${fullscreen:+,fullscreen=1}:$display -+${kbtype:+kbtype=$kbtype,}${kbload:+kbload=$kbload,}${keymap:+keymap=$keymap,}${resize:+resize=$resize,}${CACHE}${IMAGES}${PACK}link=$link,nodelay=$nodelay,type=$realtype,cleanup=0,${ACCEPT}cookie=$proxy_cookie,id=$sess_id,samba=$samba,media=$media${sync:+,sync=$sync}${cups:+,cups=$cups}${keybd:+,keybd=$keybd}${http:+,http=$http}${rdpcolors:+,rdpcolors=$rdpcolors}${rdpcache:+,rdpcache=$rdpcache}${fullscreen:+,fullscreen=1}:$display - EOF - umask $OLD_UMASK - #samba=$samba, diff --git a/net-misc/nxserver-freenx/nxserver-freenx-0.6.0.ebuild b/net-misc/nxserver-freenx/nxserver-freenx-0.6.0.ebuild deleted file mode 100644 index dc78c48a0c3d..000000000000 --- a/net-misc/nxserver-freenx/nxserver-freenx-0.6.0.ebuild +++ /dev/null @@ -1,122 +0,0 @@ -# Copyright 1999-2007 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/nxserver-freenx/nxserver-freenx-0.6.0.ebuild,v 1.5 2007/07/03 11:14:53 opfer Exp $ - -inherit multilib eutils - -MY_PN="freenx" -DESCRIPTION="An X11/RDP/VNC proxy server especially well suited to low bandwidth links such as wireless, WANS, and worse" -HOMEPAGE="http://freenx.berlios.de/" -SRC_URI="http://download.berlios.de/${MY_PN}/${MY_PN}-${PV}.tar.gz" -LICENSE="GPL-2" -SLOT="0" -KEYWORDS="~amd64 x86" -RESTRICT="strip" -IUSE="arts cups esd nxclient" -DEPEND="virtual/ssh - dev-tcltk/expect - sys-apps/gawk - net-analyzer/gnu-netcat - nxclient? ( net-misc/nxclient ) - !nxclient? ( !net-misc/nxclient - || ( x11-misc/xdialog - x11-apps/xmessage ) ) - net-misc/nx - arts? ( kde-base/arts ) - cups? ( net-print/cups ) - esd? ( media-sound/esound ) - !net-misc/nxserver-freeedition - !net-misc/nxserver-2xterminalserver" - -RDEPEND="${DEPEND} - media-fonts/font-misc-misc - media-fonts/font-cursor-misc - x11-apps/xauth" - -S=${WORKDIR}/${MY_PN}-${PV} - -export NX_HOME_DIR=/var/lib/nxserver/home - -pkg_setup () { - enewuser nx -1 -1 ${NX_HOME_DIR} -} - -src_unpack() { - unpack ${A} - cd ${S} - - # fix fullscreen support and rootless mode image compression - epatch ${FILESDIR}/${P}-rootless-mode.patch - # fix rdesktop/vnc proxying - epatch ${FILESDIR}/${P}-rdesktop.patch - - mv node.conf.sample node.conf || die - - epatch ${FILESDIR}/${P}-nxloadconfig.patch - - # on amd64, get the correct path to NX 32bit libsA - if has_multilib_profile; then - sed -i "/PATH_LIB=/s/lib/$(get_abi_LIBDIR x86)/g" nxloadconfig || die - sed -i "/REAL_PATH_BIN=/s/lib/$(get_abi_LIBDIR x86)/g" nxloadconfig || die - fi - - # Change the defaults in nxloadconfig to meet the users needs. - if use arts ; then - einfo "Enabling arts support." - sed -i '/ENABLE_ARTSD_PRELOAD=/s/"0"/"1"/' nxloadconfig || die - sed -i '/ENABLE_ARTSD_PRELOAD=/s/"0"/"1"/' node.conf || die - fi - if use esd ; then - einfo "Enabling esd support." - sed -i '/ENABLE_ESD_PRELOAD=/s/"0"/"1"/' nxloadconfig || die - sed -i '/ENABLE_ESD_PRELOAD=/s/"0"/"1"/' node.conf || die - fi - if use cups ; then - einfo "Enabling cups support." - sed -i '/ENABLE_KDE_CUPS=/s/"0"/"1"/' nxloadconfig || die - sed -i '/ENABLE_KDE_CUPS=/s/"0"/"1"/' node.conf || die - fi -} - -src_compile() { - einfo "Nothing to compile" -} - -src_install() { - NX_ETC_DIR=/etc/nxserver - NX_SESS_DIR=/var/lib/nxserver/db - - dobin nxserver - dobin nxnode - dobin nxnode-login - dobin nxkeygen - dobin nxloadconfig - dobin nxsetup - use nxclient || dobin nxprint - use nxclient || dobin nxclient - - dodir ${NX_ETC_DIR} - for x in passwords passwords.orig ; do - touch ${D}${NX_ETC_DIR}/$x - chmod 600 ${D}${NX_ETC_DIR}/$x - done - - insinto ${NX_ETC_DIR} - doins node.conf - - dodir ${NX_HOME_DIR} - - for x in closed running failed ; do - keepdir ${NX_SESS_DIR}/$x - fperms 0700 ${NX_SESS_DIR}/$x - done -} - -pkg_postinst () { - usermod -s /usr/bin/nxserver nx || die "Unable to set login shell of nx user!!" - usermod -d ${NX_HOME_DIR} nx || die "Unable to set home directory of nx user!!" - - elog "To complete the installation, run:" - elog " nxsetup --install --setup-nomachine-key --clean --purge" - elog "This will use the default Nomachine SSH key" -} diff --git a/net-misc/nxserver-freenx/nxserver-freenx-0.7.0.ebuild b/net-misc/nxserver-freenx/nxserver-freenx-0.7.0.ebuild deleted file mode 100644 index 943ea1f36dc2..000000000000 --- a/net-misc/nxserver-freenx/nxserver-freenx-0.7.0.ebuild +++ /dev/null @@ -1,124 +0,0 @@ -# Copyright 1999-2007 Gentoo Foundation -# Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/nxserver-freenx/nxserver-freenx-0.7.0.ebuild,v 1.1 2007/08/10 18:33:35 voyageur Exp $ - -inherit multilib eutils - -MY_PN="freenx" -DESCRIPTION="An X11/RDP/VNC proxy server especially well suited to low bandwidth links such as wireless, WANS, and worse" -HOMEPAGE="http://freenx.berlios.de/" -SRC_URI="http://download.berlios.de/${MY_PN}/${MY_PN}-${PV}.tar.gz" -LICENSE="GPL-2" -SLOT="0" -KEYWORDS="~amd64 ~x86" -RESTRICT="strip" -IUSE="arts cups esd nxclient" -DEPEND="virtual/ssh - dev-tcltk/expect - sys-apps/gawk - net-analyzer/gnu-netcat - nxclient? ( net-misc/nxclient ) - !nxclient? ( !net-misc/nxclient - || ( x11-misc/xdialog - x11-apps/xmessage ) ) - ~net-misc/nx-2.1.0 - arts? ( kde-base/arts ) - cups? ( net-print/cups ) - esd? ( media-sound/esound ) - !net-misc/nxserver-freeedition - !net-misc/nxserver-2xterminalserver" - -RDEPEND="${DEPEND} - media-fonts/font-misc-misc - media-fonts/font-cursor-misc - x11-apps/xauth - x11-apps/xrdb" - -S=${WORKDIR}/${MY_PN}-${PV} - -export NX_HOME_DIR=/var/lib/nxserver/home - -pkg_setup () { - enewuser nx -1 -1 ${NX_HOME_DIR} -} - -src_unpack() { - unpack ${A} - cd ${S} - - mv node.conf.sample node.conf || die - - epatch ${FILESDIR}/${PN}-0.6.0-nxloadconfig.patch - epatch ${FILESDIR}/${P}-kdecups.patch - epatch ${FILESDIR}/${P}-xfsfonts.patch - - # Fix DISPLAY for XCB-enabled systems - sed -i "s/unix:/:/g" nxnode || die - - # on amd64, get the correct path to NX 32bit libsA - if has_multilib_profile; then - sed -i "/PATH_LIB=/s/lib/$(get_abi_LIBDIR x86)/g" nxloadconfig || die - sed -i "/REAL_PATH_BIN=/s/lib/$(get_abi_LIBDIR x86)/g" nxloadconfig || die - fi - - # Change the defaults in nxloadconfig to meet the users needs. - if use arts ; then - einfo "Enabling arts support." - sed -i '/ENABLE_ARTSD_PRELOAD=/s/"0"/"1"/' nxloadconfig || die - sed -i '/ENABLE_ARTSD_PRELOAD=/s/"0"/"1"/' node.conf || die - fi - if use esd ; then - einfo "Enabling esd support." - sed -i '/ENABLE_ESD_PRELOAD=/s/"0"/"1"/' nxloadconfig || die - sed -i '/ENABLE_ESD_PRELOAD=/s/"0"/"1"/' node.conf || die - fi - if use cups ; then - einfo "Enabling cups support." - sed -i '/ENABLE_KDE_CUPS=/s/"0"/"1"/' nxloadconfig || die - sed -i '/ENABLE_KDE_CUPS=/s/"0"/"1"/' node.conf || die - fi -} - -src_compile() { - einfo "Nothing to compile" -} - -src_install() { - NX_ETC_DIR=/etc/nxserver - NX_SESS_DIR=/var/lib/nxserver/db - - dobin nxserver - dobin nxnode - dobin nxnode-login - dobin nxkeygen - dobin nxloadconfig - dobin nxsetup - dobin nxcups-gethost - use nxclient || dobin nxprint - use nxclient || dobin nxclient - - dodir ${NX_ETC_DIR} - for x in passwords passwords.orig ; do - touch ${D}${NX_ETC_DIR}/$x - chmod 600 ${D}${NX_ETC_DIR}/$x - done - - insinto ${NX_ETC_DIR} - doins node.conf - - dodir ${NX_HOME_DIR} - - for x in closed running failed ; do - keepdir ${NX_SESS_DIR}/$x - fperms 0700 ${NX_SESS_DIR}/$x - done -} - -pkg_postinst () { - usermod -s /usr/bin/nxserver nx || die "Unable to set login shell of nx user!!" - usermod -d ${NX_HOME_DIR} nx || die "Unable to set home directory of nx user!!" - - elog "To complete the installation, run:" - elog " nxsetup --install --setup-nomachine-key --clean --purge" - elog "This will use the default Nomachine SSH key" -} |