Hello community,
here is the log from the commit of package pipslite
checked in at Thu Oct 9 12:08:56 CEST 2008.
--------
--- pipslite/pipslite.changes 2008-05-07 17:09:28.000000000 +0200
+++ /mounts/work_src_done/STABLE/pipslite/pipslite.changes 2008-10-09 02:04:08.000000000 +0200
@@ -1,0 +2,7 @@
+Thu Oct 9 02:03:30 CEST 2008 - crrodriguez@suse.de
+
+- fix multiple buffer overflows in rscCtl.c
+- do not ship static libraries
+- use %%find_lang macro
+
+-------------------------------------------------------------------
calling whatdependson for head-i586
New:
----
pipslite-1.0.0-destbufferoverflow.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ pipslite.spec ++++++
--- /var/tmp/diff_new_pack.NR6079/_old 2008-10-09 12:08:32.000000000 +0200
+++ /var/tmp/diff_new_pack.NR6079/_new 2008-10-09 12:08:32.000000000 +0200
@@ -2,9 +2,16 @@
# spec file for package pipslite (Version 1.0.0)
#
# Copyright (c) 2008 SUSE LINUX Products GmbH, Nuernberg, Germany.
-# This file and all modifications and additions to the pristine
-# package are under the same license as the package itself.
#
+# All modifications and additions to the file contributed by third parties
+# remain the property of their copyright owners, unless otherwise agreed
+# upon. The license for this file, and modifications and additions to the
+# file, is the same license as for the pristine package itself (unless the
+# license for the pristine package is not an Open Source License, in which
+# case the license is the MIT License). An "Open Source License" is a
+# license that conforms to the Open Source Definition (Version 1.9)
+# published by the Open Source Initiative.
+
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
@@ -25,7 +32,7 @@
# from the free sources so that there is no need for the proprietary stuff.
Source0: pipslite-1.0.0.tar.bz2
Version: 1.0.0
-Release: 228
+Release: 300
# Patch0 fixes GCC4 "invalid lvalue in assignment" errors:
Patch0: fix-invalid_lvalue_in_assignment.diff
# Patch1 fixes a "label at end of compound statement" error in ekpstm/main.c:
@@ -42,6 +49,8 @@
Patch7: adapt-readmelite-for-free.patch
# Fix use of libltdl
Patch8: makeinstall-Makefile.am.diff
+# multiple buffer overflow :(
+Patch9: pipslite-1.0.0-destbufferoverflow.patch
# Install into this non-root directory (required when norootforbuild is used):
BuildRoot: %{_tmppath}/%{name}-%{version}-build
# Skip testing devel dependencies required by libtool .la files by the following comment:
@@ -76,6 +85,7 @@
%patch7
# Fix use of libltdl
%patch8
+%patch9
%build
# Make sure config.rpath is present:
@@ -85,22 +95,19 @@
export CFLAGS="$RPM_OPT_FLAGS -fno-strict-aliasing"
export CXXFLAGS="$RPM_OPT_FLAGS -fno-strict-aliasing"
# See /usr/lib/rpm/suse_macros regarding our RPM macros (e.g. sysconfdir is /etc):
-./configure --prefix=%{_prefix} \
- --sysconfdir=%{_sysconfdir} \
- --mandir=%{_mandir} \
- --libdir=%{_libdir}
-make
+%configure --disable-static --with-pic
+%{__make} %{?jobs:-j%jobs}
%install
make install DESTDIR=${RPM_BUILD_ROOT}
+%find_lang %{name}
+rm %{buildroot}%{_libdir}/*.la
-%post
-/sbin/ldconfig
+%post -p /sbin/ldconfig
-%postun
-/sbin/ldconfig
+%postun -p /sbin/ldconfig
-%files
+%files -f %{name}.lang
%defattr(-,root,root)
%doc README COPYING COPYING.LIB AUTHORS NEWS ChangeLog
%config %{_sysconfdir}/ekpdrc
@@ -114,7 +121,6 @@
%{_libdir}/cups/filter/rastertopips
%{_libdir}/liblite.*
%{_libdir}/EPAva/
-%{_datadir}/locale/*/LC_MESSAGES/pipslite.mo
%{_var}/run/ekplp0
%description
@@ -147,6 +153,10 @@
EPSON AVASYS corporation. http://www.avasys.jp/
%changelog
+* Thu Oct 09 2008 crrodriguez@suse.de
+- fix multiple buffer overflows in rscCtl.c
+- do not ship static libraries
+- use %%find_lang macro
* Wed May 07 2008 schwab@suse.de
- Fix use of libltdl.
* Wed May 23 2007 jsmeix@suse.de
++++++ pipslite-1.0.0-destbufferoverflow.patch ++++++
Index: src/rscCtl.c
===================================================================
--- src/rscCtl.c.orig 2006-01-24 07:43:18.000000000 +0100
+++ src/rscCtl.c 2008-10-09 01:45:09.000000000 +0200
@@ -190,7 +190,7 @@ get_model(char* printerID, char* prtOptn
found=0;
while(!feof(f))
{
- fgets(str,MAX_LINE_LEN+1,f);
+ fgets(str,MAX_LINE_LEN,f);
if(parse_line(str,&argc,argv)== LPR_PRINTER_ID)
{
if(strcmp(argv[0],printerID) ==0)
@@ -210,7 +210,7 @@ get_model(char* printerID, char* prtOptn
/* Read prtOpt Data */
while(!feof(f))
{
- fgets(str,MAX_LINE_LEN+1,f);
+ fgets(str,MAX_LINE_LEN,f);
if(parse_line(str,&argc,argv)==LPR_PRTOPT_ENTRY)
{
temp.idSize=atoi(argv[0]);
@@ -633,7 +633,7 @@ get_paper_auto(MODEL_CONFIG_LIST* model,
}
while( !feof(f))
{
- fgets(str,MAX_LINE_LEN+1,f);
+ fgets(str,MAX_LINE_LEN,f);
if(parse_line(str,&argc,argv)==LPR_PAPERINFO_ENTRY)
{
for(i=0;i