[MacPorts] #51292: tardiff: CVE-2015-0857, CVE-2015-0858 and other bugs
#51292: tardiff: CVE-2015-0857, CVE-2015-0858 and other bugs -------------------------------+-------------------------- Reporter: raimue@… | Owner: ryandesign@… Type: enhancement | Status: new Priority: Normal | Milestone: Component: ports | Version: 2.3.4 Keywords: security haspatch | Port: tardiff -------------------------------+-------------------------- I am attaching a patch to update tardiff with patches created by Debian to fix security bugs. In order to apply these patches without re-editing, other fixes should be applied first. I stripped the path prefix from the patches to apply them with -p0 and retained the explicit `gnutar`. Details are published in Debian's security advisory: https://www.debian.org/security/2016/dsa-3562 The patch is meant to be applied using `svn patch`. -- Ticket URL: <https://trac.macports.org/ticket/51292> MacPorts <https://www.macports.org/> Ports system for OS X
#51292: tardiff: CVE-2015-0857, CVE-2015-0858 and other bugs --------------------------+------------------------------- Reporter: raimue@… | Owner: ryandesign@… Type: enhancement | Status: new Priority: Normal | Milestone: Component: ports | Version: 2.3.4 Resolution: | Keywords: security haspatch Port: tardiff | --------------------------+------------------------------- Description changed by raimue@…: Old description:
I am attaching a patch to update tardiff with patches created by Debian to fix security bugs. In order to apply these patches without re-editing, other fixes should be applied first. I stripped the path prefix from the patches to apply them with -p0 and retained the explicit `gnutar`.
Details are published in Debian's security advisory: https://www.debian.org/security/2016/dsa-3562
The patch is meant to be applied using `svn patch`.
New description: I am attaching a patch to update tardiff with patches created by Debian to fix security bugs. In order to apply these patches without re-editing, other fixes should be applied first. I stripped the path prefix from the patches to apply them with -p0 and retained the explicit `gnutar`. Details are published in Debian's security advisory: https://www.debian.org/security/2016/dsa-3562 -- -- Ticket URL: <https://trac.macports.org/ticket/51292#comment:1> MacPorts <https://www.macports.org/> Ports system for OS X
#51292: tardiff: CVE-2015-0857, CVE-2015-0858 and other bugs --------------------------+------------------------------- Reporter: raimue@… | Owner: ryandesign@… Type: enhancement | Status: new Priority: Normal | Milestone: Component: ports | Version: 2.3.4 Resolution: | Keywords: security haspatch Port: tardiff | --------------------------+------------------------------- Comment (by ryandesign@…): No objection, please commit, and please add openmaintainer on this port too. -- Ticket URL: <https://trac.macports.org/ticket/51292#comment:2> MacPorts <https://www.macports.org/> Ports system for OS X
#51292: tardiff: CVE-2015-0857, CVE-2015-0858 and other bugs --------------------------+------------------------------- Reporter: raimue@… | Owner: ryandesign@… Type: enhancement | Status: closed Priority: Normal | Milestone: Component: ports | Version: 2.3.4 Resolution: fixed | Keywords: security haspatch Port: tardiff | --------------------------+------------------------------- Changes (by raimue@…): * status: new => closed * resolution: => fixed Comment: Committed in r148304. -- Ticket URL: <https://trac.macports.org/ticket/51292#comment:3> MacPorts <https://www.macports.org/> Ports system for OS X
participants (1)
-
MacPorts