From 34baef7c6dbd73faff1b4a065721b45390d240c3 Mon Sep 17 00:00:00 2001 From: Peter Volkov Date: Thu, 13 Sep 2007 15:09:18 +0000 Subject: Fixes log injection reported by Sune Kloppenborg Jeppesen in bug #181213. Package-Manager: portage-2.1.3.9 --- .../files/denyhosts-2.6-log-injection-regex.patch | 21 +++++++++++++++++++++ app-admin/denyhosts/files/digest-denyhosts-2.6-r1 | 3 +++ 2 files changed, 24 insertions(+) create mode 100644 app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch create mode 100644 app-admin/denyhosts/files/digest-denyhosts-2.6-r1 (limited to 'app-admin/denyhosts/files') diff --git a/app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch b/app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch new file mode 100644 index 000000000000..c6fc20541019 --- /dev/null +++ b/app-admin/denyhosts/files/denyhosts-2.6-log-injection-regex.patch @@ -0,0 +1,21 @@ +Address Log injection reported at + +http://bugs.gentoo.org/show_bug.cgi?id=181213 + +diff -ur a/DenyHosts/regex.py b/DenyHosts/regex.py +--- a/DenyHosts/regex.py 2006-12-07 13:47:04.000000000 -0600 ++++ b/DenyHosts/regex.py 2007-06-19 18:51:54.000000000 -0500 +@@ -17,11 +17,11 @@ + + FAILED_ENTRY_REGEX4 = re.compile(r"""Authentication failure for (?P.*) .*from (?P.*)""") + +-FAILED_ENTRY_REGEX5 = re.compile(r"""User (?P.*) .*from (?P.*) not allowed because none of user's groups are listed in AllowGroups""") ++FAILED_ENTRY_REGEX5 = re.compile(r"""User (?P.*) .*from (?P.*) not allowed because none of user's groups are listed in AllowGroups$""") + + FAILED_ENTRY_REGEX6 = re.compile(r"""Did not receive identification string .*from (::ffff:)?(?P\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})""") + +-FAILED_ENTRY_REGEX7 = re.compile(r"""User (?P.*) not allowed because not listed in AllowUsers""") ++FAILED_ENTRY_REGEX7 = re.compile(r"""User (?P.*) .*from (::ffff:)?(?P\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}) not allowed because not listed in AllowUsers""") + + + # these are reserved for future versions diff --git a/app-admin/denyhosts/files/digest-denyhosts-2.6-r1 b/app-admin/denyhosts/files/digest-denyhosts-2.6-r1 new file mode 100644 index 000000000000..eaec57e06035 --- /dev/null +++ b/app-admin/denyhosts/files/digest-denyhosts-2.6-r1 @@ -0,0 +1,3 @@ +MD5 fc2365305a9402886a2b0173d1beb7df DenyHosts-2.6.tar.gz 42667 +RMD160 cab4206af992f5405ed1c9b302341c7b5649c71a DenyHosts-2.6.tar.gz 42667 +SHA256 5190ead13a7238e3ccf328cb3b71b16716e1c73939909a4f3fa6904ba58ddf7d DenyHosts-2.6.tar.gz 42667 -- cgit v1.2.3-65-gdbad