wallenstein/void-packages
1
0
Fork 0
mirror of https://github.com/void-linux/void-packages.git synced 2025-07-26 23:42:57 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

shadow: add patch for CVE-2016-6252

Browse source 
this commit adds CVE-2016-6252.patch taken commit
1d5a926cc2d6078d23a96222b1ef3e558724dad1 which
fixes the corresponding security issue.

Closes: #5822 [via git-merge-pr]
This commit is contained in:
Helmut Pozimski 2017-02-25 10:03:13 +01:00 committed by Jürgen Buchmüller
parent 05354bdefd
commit 0e9b60638f
2 changed files with 29 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

28
srcpkgs/shadow/patches/CVE-2016-6252.patch Normal file
View file

@ -0,0 +1,28 @@
--- lib/getulong.c
+++ lib/getulong.c
@@ -44,22 +44,19 @@
*/
int getulong (const char *numstr, /*@out@*/unsigned long int *result)
{
- long long int val;
+ unsigned long int val;
char *endptr;
errno = 0;
- val = strtoll (numstr, &endptr, 0);
+ val = strtoul (numstr, &endptr, 0);
if ( ('\0' == *numstr)
|| ('\0' != *endptr)
|| (ERANGE == errno)
- /*@+ignoresigns@*/
- || (val != (unsigned long int)val)
- /*@=ignoresigns@*/
) {
return 0;
}
- *result = (unsigned long int)val;
+ *result = val;
return 1;
}

2
srcpkgs/shadow/template
View file

@ -1,7 +1,7 @@
# Template file for 'shadow' # Template file for 'shadow'
pkgname=shadow pkgname=shadow
version=4.2.1 version=4.2.1
revision=14 revision=15
build_style=gnu-configure build_style=gnu-configure
configure_args="--bindir=/usr/bin --sbindir=/usr/bin configure_args="--bindir=/usr/bin --sbindir=/usr/bin
--libdir=/usr/lib --enable-shared --disable-static --libdir=/usr/lib --enable-shared --disable-static