commit sblim-sfcb for openSUSE:Factory
Hello community,
here is the log from the commit of package sblim-sfcb for openSUSE:Factory
checked in at Thu Jan 29 00:49:32 CET 2009.
--------
--- sblim-sfcb/sblim-sfcb.changes 2009-01-07 22:00:14.000000000 +0100
+++ sblim-sfcb/sblim-sfcb.changes 2009-01-28 18:05:54.994600000 +0100
@@ -1,0 +2,19 @@
+Wed Jan 28 17:43:16 CET 2009 - kkaempf@suse.de
+
+- Fix tmp race during ssl cert gen (bnc#470203)
+
+-------------------------------------------------------------------
+Wed Jan 28 09:30:52 MST 2009 - bwhiteley@suse.de
+
+- Fix missing qualifiers on REF params. (bnc#466666)
+
+-------------------------------------------------------------------
+Fri Jan 16 17:28:19 CET 2009 - kkaempf@suse.de
+
+- Fix memory corruption (bnc#458641):
+ - check limit when parsing valueList, valueRefList and
+ keyBindings
+ - increase max valueList/valueRefList size to 512
+ - increase max keyBindings to 32
+
+-------------------------------------------------------------------
calling whatdependson for head-i586
New:
----
0340-bnc458541-2479947-valueList.patch
0350-bnc466666-2093567-ref-quals.patch
0360-bnc470203-genSslCert-mktemp.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ sblim-sfcb.spec ++++++
--- /var/tmp/diff_new_pack.oC6870/_old 2009-01-29 00:46:33.000000000 +0100
+++ /var/tmp/diff_new_pack.oC6870/_new 2009-01-29 00:46:33.000000000 +0100
@@ -21,7 +21,7 @@
Name: sblim-sfcb
Version: 1.3.2
-Release: 13
+Release: 16
Group: System/Management
License: Other uncritical OpenSource License; CPL 1.0
Url: http://sblim.sf.net/
@@ -68,6 +68,9 @@
Patch310: 0310-bnc457768-2433594-unaligned_access.patch
Patch320: 0320-bnc457366A-2140807-static_instances.patch
Patch330: 0330-bnc457366B-2441640-mofc_instance_migration.patch
+Patch340: 0340-bnc458541-2479947-valueList.patch
+Patch350: 0350-bnc466666-2093567-ref-quals.patch
+Patch360: 0360-bnc470203-genSslCert-mktemp.patch
Provides: cimserver
Provides: cim-server
%if 0%{?suse_version} >= 1030
@@ -137,6 +140,9 @@
cd mofc
%patch330 -p0 -b .0330-bnc457366B-2441640-mofc_instance_migration.patch
cd ..
+%patch340 -p0 -b .0340-bnc458541-2479947-valueList.patch
+%patch350 -p0 -b .0350-bnc466666-2093567-ref-quals.patch
+%patch360 -p0 -b .0360-bnc470203-genSslCert-mktemp.patch
export PATCH_GET=0
%build
@@ -230,6 +236,16 @@
%files -f _pkg_list
%changelog
+* Wed Jan 28 2009 kkaempf@suse.de
+- Fix tmp race during ssl cert gen (bnc#470203)
+* Wed Jan 28 2009 bwhiteley@suse.de
+- Fix missing qualifiers on REF params. (bnc#466666)
+* Fri Jan 16 2009 kkaempf@suse.de
+- Fix memory corruption (bnc#458641):
+ - check limit when parsing valueList, valueRefList and
+ keyBindings
+ - increase max valueList/valueRefList size to 512
+ - increase max keyBindings to 32
* Wed Jan 07 2009 bwhiteley@suse.de
- Restart sfcbd when package is upgraded (bnc#463993)
* Tue Jan 06 2009 bwhiteley@suse.de
@@ -247,7 +263,7 @@
- Fix location of docs (bnc#457195)
* Mon Dec 08 2008 bwhiteley@suse.de
- Adjust pam configuration to SUSE standard (bnc#457266)
-* Fri Dec 05 2008 bwhiteley@suse.de
+* Sat Dec 06 2008 bwhiteley@suse.de
- Fix startup deadlock (bnc#445795, sblim tracker #2095972).
- Limit message size (bnc#425457, sblim tracker #2169514)
- Better fix for content length check (bnc#425457,
@@ -257,7 +273,7 @@
- Fix some calls to mlogf (sblim tracker #2390100, bnc#425457)
- Check for empty string in decode64 (sblim tracker #2391132,
bnc#425457)
-* Wed Nov 19 2008 bwhiteley@suse.de
+* Thu Nov 20 2008 bwhiteley@suse.de
- Fix unix socket bind problem. (bnc#445334)
* Fri Nov 07 2008 bwhiteley@suse.de
- Better patch for HTTP connection close -- sblim tracker #2193250
++++++ 0340-bnc458541-2479947-valueList.patch ++++++
--- cimXmlOps.y.orig 2008-08-14 02:24:54.000000000 +0200
+++ cimXmlOps.y 2009-01-16 21:02:32.000000000 +0100
@@ -43,6 +43,10 @@
#define YYLEX_PARAM parm
#define YYERROR_VERBOSE 1
+/* Maximum size for valueList and valueRefList */
+
+#define MAX_LIST_SIZE 512
+
extern int yyerror(char*);
extern int yylex (void *lvalp, ParserControl *parm);
@@ -2656,15 +2660,19 @@
value
{
$$.next=1;
- $$.max=64;
- $$.values=(XtokValue*)malloc(sizeof(XtokValue)*64);
+ $$.max=MAX_LIST_SIZE;
+ $$.values=(XtokValue*)malloc(sizeof(XtokValue)*$$.max);
$$.values[0]=$1;
}
| valueList value
{
+ if ($$.next >= $$.max)
+ yyerror("Too many values in valueList");
+ else {
$$.values[$$.next]=$2;
$$.next++;
}
+ }
;
valueReference
@@ -2696,15 +2704,19 @@
: valueReference
{
$$.next=1;
- $$.max=64;
- $$.values=(XtokValueReference*)malloc(sizeof(XtokValueReference)*64);
+ $$.max=MAX_LIST_SIZE;
+ $$.values=(XtokValueReference*)malloc(sizeof(XtokValueReference)*$$.max);
$$.values[0]=$1;
}
| valueRefList valueReference
{
+ if ($$.next >= $$.max)
+ yyerror("Too many values in valueRefList");
+ else {
$$.values[$$.next]=$2;
$$.next++;
}
+ }
;
boolValue
@@ -2745,8 +2757,8 @@
: keyBinding
{
$$.next=1;
- $$.max=16;
- $$.keyBindings=(XtokKeyBinding*)calloc(16,sizeof(XtokKeyBinding));
+ $$.max=32;
+ $$.keyBindings=(XtokKeyBinding*)calloc($$.max,sizeof(XtokKeyBinding));
$$.keyBindings[0].name=$1.name;
$$.keyBindings[0].value=$1.value;
$$.keyBindings[0].type=$1.type;
@@ -2754,12 +2766,16 @@
}
| keyBindings keyBinding
{
+ if ($$.next >= $$.max)
+ yyerror("Too many keyBindings");
+ else {
$$.keyBindings[$$.next].name=$2.name;
$$.keyBindings[$$.next].value=$2.value;
$$.keyBindings[$$.next].type=$2.type;
$$.keyBindings[$$.next].ref=$2.ref;
$$.next++;
}
+ }
;
keyBinding
++++++ 0350-bnc466666-2093567-ref-quals.patch ++++++
diff -up ./cimXmlGen.c.orig ./cimXmlGen.c
--- ./cimXmlGen.c.orig 2009-01-23 13:36:31.000000000 -0700
+++ ./cimXmlGen.c 2009-01-23 13:36:51.000000000 -0700
@@ -844,16 +844,7 @@ int cls2xml(CMPIConstClass * cls, UtilSt
else {
type = dataType(data.type);
if (*type == '*') {
- if (data.state &CMPI_nullValue) {
- SFCB_APPENDCHARS_BLOCK(sb, "
participants (1)
-
root@Hilbert.suse.de