Date: Thu, 12 Sep 2002 21:03:50 -0700 (PDT) From: Joe Marcus Clarke <marcus@FreeBSD.org> To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: ports/textproc/scrollkeeper Makefile ports/textproc/scrollkeeper/files patch-cl_src_get-cl.c Message-ID: <200209130403.g8D43oQL090607@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
marcus 2002/09/12 21:03:50 PDT
Modified files:
textproc/scrollkeeper Makefile
Added files:
textproc/scrollkeeper/files patch-cl_src_get-cl.c
Log:
Attempt to fix a security bug in scrollkeeper in which the code will follow
symlinks when attempting to locate a temp file. Note, this is not the
author's patch, but one of my own. I think this should fix it, but I'm
not sure if I'm missing something. The patch is based on the description
from securityfocus.com.
See http://online.securityfocus.com/bid/5602/info/ for more details.
Reported by: Daniel Harris <dh@askdh.com>
Revision Changes Path
1.19 +1 -1 ports/textproc/scrollkeeper/Makefile
1.1 +11 -0 ports/textproc/scrollkeeper/files/patch-cl_src_get-cl.c (new)
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200209130403.g8D43oQL090607>