From owner-cvs-all  Thu Sep 12 21: 3:57 2002
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id EBCB337B400; Thu, 12 Sep 2002 21:03:50 -0700 (PDT)
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id A91AD43E3B; Thu, 12 Sep 2002 21:03:50 -0700 (PDT)
	(envelope-from marcus@FreeBSD.org)
Received: from freefall.freebsd.org (marcus@localhost [127.0.0.1])
	by freefall.freebsd.org (8.12.4/8.12.4) with ESMTP id g8D43oJU090608;
	Thu, 12 Sep 2002 21:03:50 -0700 (PDT)
	(envelope-from marcus@freefall.freebsd.org)
Received: (from marcus@localhost)
	by freefall.freebsd.org (8.12.4/8.12.4/Submit) id g8D43oQL090607;
	Thu, 12 Sep 2002 21:03:50 -0700 (PDT)
Message-Id: <200209130403.g8D43oQL090607@freefall.freebsd.org>
From: Joe Marcus Clarke <marcus@FreeBSD.org>
Date: Thu, 12 Sep 2002 21:03:50 -0700 (PDT)
To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject: cvs commit: ports/textproc/scrollkeeper Makefile ports/textproc/scrollkeeper/files
         patch-cl_src_get-cl.c
X-FreeBSD-CVS-Branch: HEAD
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

marcus      2002/09/12 21:03:50 PDT

  Modified files:
    textproc/scrollkeeper Makefile 
  Added files:
    textproc/scrollkeeper/files patch-cl_src_get-cl.c 
  Log:
  Attempt to fix a security bug in scrollkeeper in which the code will follow
  symlinks when attempting to locate a temp file.  Note, this is not the
  author's patch, but one of my own.  I think this should fix it, but I'm
  not sure if I'm missing something.  The patch is based on the description
  from securityfocus.com.
  
  See http://online.securityfocus.com/bid/5602/info/ for more details.
  
  Reported by:    Daniel Harris <dh@askdh.com>
  
  Revision  Changes    Path
  1.19      +1 -1      ports/textproc/scrollkeeper/Makefile
  1.1       +11 -0     ports/textproc/scrollkeeper/files/patch-cl_src_get-cl.c (new)

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message