Hello community, here is the log from the commit of package avahi checked in at Mon Oct 30 17:54:31 CET 2006. -------- --- avahi/avahi.changes 2006-10-15 21:37:02.000000000 +0200 +++ /mounts/work_src_done/STABLE/avahi/avahi.changes 2006-10-30 13:51:56.000000000 +0100 @@ -1,0 +2,6 @@ +Mon Oct 30 13:51:56 CET 2006 - sbrabec@suse.cz + +- Check the sender ID of netlink packets before using them + (#216219). + +------------------------------------------------------------------- New: ---- avahi-0.6.11-security.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ avahi.spec ++++++ --- /var/tmp/diff_new_pack.VTHhgq/_old 2006-10-30 17:54:18.000000000 +0100 +++ /var/tmp/diff_new_pack.VTHhgq/_new 2006-10-30 17:54:18.000000000 +0100 @@ -18,13 +18,14 @@ BuildRequires: python-gtk qt-devel %endif Version: 0.6.14 -Release: 8 +Release: 17 URL: http://www.avahi.org/ Group: System/Daemons -License: LGPL +License: GNU Library General Public License v. 2.0 and 2.1 (LGPL) Summary: D-BUS Service for Zeroconf and Bonjour Source: %{name}-%{version}.tar.bz2 Patch: avahi-gacdir.patch +Patch1: avahi-0.6.11-security.patch Requires: dbus-1 python python-gdbm python-gtk Autoreqprov: on BuildRoot: %{_tmppath}/%{name}-%{version}-build @@ -328,6 +329,7 @@ %prep %setup %patch +%patch1 -p1 %build export CFLAGS="$RPM_OPT_FLAGS" @@ -489,6 +491,9 @@ %{_libdir}/pkgconfig/avahi-qt4.pc %changelog -n avahi +* Mon Oct 30 2006 - sbrabec@suse.cz +- Check the sender ID of netlink packets before using them + (#216219). * Sun Oct 15 2006 - danw@suse.de - Remove dead patches * Mon Oct 09 2006 - sbrabec@suse.cz ++++++ avahi-0.6.11-security.patch ++++++ --- avahi-0.6.11.orig/avahi-core/netlink.c 2006-10-09 11:52:13.000000000 -0400 +++ avahi-0.6.11/avahi-core/netlink.c 2006-10-09 11:56:30.000000000 -0400 @@ -61,9 +61,12 @@ int avahi_netlink_work(AvahiNetlink *nl, } p = (struct nlmsghdr *) nl->buffer; - + if (p->nlmsg_pid != 0) { + avahi_log_warn(__FILE__": packet not from the kernel"); + return -1; + } assert(nl->callback); for (; bytes > 0; p = NLMSG_NEXT(p, bytes)) { ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org