diff options
| author |   Donnie Berkholz <spyderous@gentoo.org> | 2004-11-17 18:33:27 +0000 |
|---|---|---|
| committer | Donnie Berkholz <spyderous@gentoo.org> | 2004-11-17 18:33:27 +0000 |
| commit | caa2274832b1ce1d2eddeae75a3c22fb457da5b0 (patch) | |
| tree | c7b6662618eb2955623c768f05ecb48a6821d60b /x11-base/xfree | |
| parent | marked stable on x86 (Manifest recommit) (diff) | |
| download | gentoo-2-caa2274832b1ce1d2eddeae75a3c22fb457da5b0.tar.gz gentoo-2-caa2274832b1ce1d2eddeae75a3c22fb457da5b0.tar.bz2 gentoo-2-caa2274832b1ce1d2eddeae75a3c22fb457da5b0.zip | |
Update credits on xpm-secfix-thomas.diff.
Diffstat (limited to 'x11-base/xfree')
| -rw-r--r-- | x11-base/xfree/ChangeLog | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/x11-base/xfree/ChangeLog b/x11-base/xfree/ChangeLog index 7777e4c16cb2..7f3de4116f9e 100644 --- a/x11-base/xfree/ChangeLog +++ b/x11-base/xfree/ChangeLog @@ -1,6 +1,9 @@ # ChangeLog for x11-base/xfree # Copyright 2002-2004 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/x11-base/xfree/ChangeLog,v 1.367 2004/11/17 17:45:43 spyderous Exp $ +# $Header: /var/cvsroot/gentoo-x86/x11-base/xfree/ChangeLog,v 1.368 2004/11/17 18:33:27 spyderous Exp $ + + 17 Nov 2004; Donnie Berkholz <spyderous@gentoo.org>; : + Update credits on xpm-secfix-thomas.diff. 17 Nov 2004; Donnie Berkholz <spyderous@gentoo.org>; xfree-4.3.0-r8.ebuild: @@ -16,7 +19,9 @@ buffer overflow; stack-based overflows with sprintf() and string functions; replaces popen() with s_popen(); path traversal issues; buffer underruns; and memory leaks (missing free(), found by Egbert Eich). Patch by Thomas - Biege and Matthiew Herrb. + Biege and Matthiew Herrb. Petr Mladek identified the initial vulnerabilities + and provided a patch that was later expanded on. Jacques A. Vidrine aided in + the code audit and patch review. This issue is identified as CAN-2004-0914. 10 Nov 2004; Donnie Berkholz <spyderous@gentoo.org>; xfree-4.3.0-r7.ebuild: |