diff options
author | Mike Frysinger <vapier@gentoo.org> | 2006-02-12 22:02:53 +0000 |
---|---|---|
committer | Mike Frysinger <vapier@gentoo.org> | 2006-02-12 22:02:53 +0000 |
commit | b2fe30581c63b377be10c5ac99dec2dbfb082fc1 (patch) | |
tree | e1fada882bf92b2ec0089c94d9cfe3f1854edce3 /games-action/bomberclone | |
parent | 2.2.1 version bump. Install scripts under aoi's lib directory. Fixes bug 1226... (diff) | |
download | gentoo-2-b2fe30581c63b377be10c5ac99dec2dbfb082fc1.tar.gz gentoo-2-b2fe30581c63b377be10c5ac99dec2dbfb082fc1.tar.bz2 gentoo-2-b2fe30581c63b377be10c5ac99dec2dbfb082fc1.zip |
Patch by Tim Yamin to fix security issues #121605.
(Portage version: 2.1_pre4-r1)
Diffstat (limited to 'games-action/bomberclone')
4 files changed, 99 insertions, 2 deletions
diff --git a/games-action/bomberclone/ChangeLog b/games-action/bomberclone/ChangeLog index 5d006b4e5e47..4b9fb9f04bef 100644 --- a/games-action/bomberclone/ChangeLog +++ b/games-action/bomberclone/ChangeLog @@ -1,6 +1,13 @@ # ChangeLog for games-action/bomberclone -# Copyright 2000-2006 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/games-action/bomberclone/ChangeLog,v 1.19 2006/01/13 22:08:31 genstef Exp $ +# Copyright 1999-2006 Gentoo Foundation; Distributed under the GPL v2 +# $Header: /var/cvsroot/gentoo-x86/games-action/bomberclone/ChangeLog,v 1.20 2006/02/12 22:02:53 vapier Exp $ + +*bomberclone-0.11.6.2-r1 (12 Feb 2006) + + 12 Feb 2006; Mike Frysinger <vapier@gentoo.org> + +files/bomberclone-0.11.6.2-fix-kaboom.patch, + +bomberclone-0.11.6.2-r1.ebuild: + Patch by Tim Yamin to fix security issues #121605. 13 Jan 2006; Stefan Schweizer <genstef@gentoo.org> bomberclone-0.11.6.2.ebuild: diff --git a/games-action/bomberclone/bomberclone-0.11.6.2-r1.ebuild b/games-action/bomberclone/bomberclone-0.11.6.2-r1.ebuild new file mode 100644 index 000000000000..4d19e980b768 --- /dev/null +++ b/games-action/bomberclone/bomberclone-0.11.6.2-r1.ebuild @@ -0,0 +1,50 @@ +# Copyright 1999-2006 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/games-action/bomberclone/bomberclone-0.11.6.2-r1.ebuild,v 1.1 2006/02/12 22:02:53 vapier Exp $ + +inherit eutils games + +DESCRIPTION="BomberMan clone with network game support" +HOMEPAGE="http://www.bomberclone.de/" +SRC_URI="mirror://sourceforge/${PN}/${P}.tar.gz" + +LICENSE="GPL-2" +SLOT="0" +KEYWORDS="amd64 ~mips ppc ppc64 x86" +IUSE="X" + +DEPEND=">=media-libs/libsdl-1.1.0 + media-libs/sdl-image + media-libs/sdl-mixer + X? ( || ( x11-libs/libXt virtual/x11 ) )" + +src_unpack() { + unpack ${A} + cd "${S}" + epatch "${FILESDIR}"/${P}-fix-kaboom.patch +} + +src_compile() { + egamesconf \ + --disable-dependency-tracking \ + $(use_with X x) \ + --datadir="${GAMES_DATADIR_BASE}" || die + sed -i \ + -e "/PACKAGE_DATA_DIR/ s:/usr/games/share/games/:${GAMES_DATADIR}/:" \ + config.h \ + || die "sed config.h failed" + emake || die "emake failed" +} + +src_install() { + dogamesbin src/${PN} || die "dogamesbin failed" + + dodir "${GAMES_DATADIR}/${PN}" + cp -R data/{gfx,maps,player,tileset}/ "${D}/${GAMES_DATADIR}/${PN}" \ + || die "cp failed" + + dodoc AUTHORS ChangeLog README TODO + doicon data/pixmaps/bomberclone.png + make_desktop_entry bomberclone Bomberclone + prepgamesdirs +} diff --git a/games-action/bomberclone/files/bomberclone-0.11.6.2-fix-kaboom.patch b/games-action/bomberclone/files/bomberclone-0.11.6.2-fix-kaboom.patch new file mode 100644 index 000000000000..78ae160197ba --- /dev/null +++ b/games-action/bomberclone/files/bomberclone-0.11.6.2-fix-kaboom.patch @@ -0,0 +1,39 @@ +# Fix remote buffer overflow vulnerability if an excessive remote error is sent +# and processed due to the text buffer overflowing. + +# Discovery: Stefan Cornelius <dercorny@gentoo.org> of Gentoo Security +# Patch: Tim Yamin <plasmaroo@gentoo.org> of Gentoo Auditing + +http://bugs.gentoo.org/121605 + +--- bomberclone-0.11.6.2/src/menu.c ++++ bomberclone-0.11.6.2/src/menu.c +@@ -629,7 +629,7 @@ + memset (text, 0, sizeof (text)); + memset (out, 0, sizeof (out)); + va_start (args, fmt); +- vsprintf (text, fmt, args); ++ vsnprintf (text, 512, fmt, args); + va_end (args); + + menu_formattext (text, out, lines, &linenr, &maxlinelen, MENU_MESSAGES_MAXLINELEN, +@@ -722,7 +724,7 @@ + memset (text, 0, sizeof (text)); + memset (out, 0, sizeof (out)); + va_start (args, fmt); +- vsprintf (text, fmt, args); ++ vsnprintf (text, 512, fmt, args); + va_end (args); + + menu_formattext (text, out, lines, &linenr, &maxlinelen, MENU_MESSAGES_MAXLINELEN, +--- bomberclone-0.11.6.2/src/menulabels.c ++++ bomberclone-0.11.6.2/src/menulabels.c +@@ -72,7 +72,7 @@ + memset (text, 0, sizeof (text)); + memset (out, 0, sizeof (out)); + va_start (args, fmt); +- vsprintf (text, fmt, args); ++ vsnprintf (text, 1024, fmt, args); + va_end (args); + + menu_formattext (text, out, lineptr, &linecnt, &maxchar, maxlen, maxlines); diff --git a/games-action/bomberclone/files/digest-bomberclone-0.11.6.2-r1 b/games-action/bomberclone/files/digest-bomberclone-0.11.6.2-r1 new file mode 100644 index 000000000000..74f35eed963e --- /dev/null +++ b/games-action/bomberclone/files/digest-bomberclone-0.11.6.2-r1 @@ -0,0 +1 @@ +MD5 07de9f101645999ad86699daf3d9a56c bomberclone-0.11.6.2.tar.gz 8001287 |