[Pkg-bugzilla-commits] r99 - in trunk/bugzilla-2.18/debian: . patches

Alexis Sukrieh sukria-guest@costa.debian.org
Sat, 11 Jun 2005 13:11:11 +0000 

Author: sukria-guest
Date: 2005-06-11 13:11:11 +0000 (Sat, 11 Jun 2005)
New Revision: 99

Added:
   trunk/bugzilla-2.18/debian/patches/00_security_287436.dpatch
Modified:
   trunk/bugzilla-2.18/debian/bugzilla.postinst
   trunk/bugzilla-2.18/debian/patches/00list
Log:
Adding the upstream patch for cloing Bugzilla's #287436

Modified: trunk/bugzilla-2.18/debian/bugzilla.postinst
===================================================================
--- trunk/bugzilla-2.18/debian/bugzilla.postinst	2005-06-11 12:40:33 UTC (rev 98)
+++ trunk/bugzilla-2.18/debian/bugzilla.postinst	2005-06-11 13:11:11 UTC (rev 99)
@@ -43,7 +43,6 @@
 			ucf --debconf-ok $file_source $file_dest || exit 11
 		fi
 		chown www-data:www-data $file_dest
-		#rm -f $file_source
 	fi
 }
 
@@ -72,10 +71,11 @@
 	$postinst_db || exit 2
 
 	# The answer file has been generated by $postinst_db before
+	# if not, we propably choose not to install bugzilla now.
 	answerfile=/usr/share/bugzilla/debian/checksetup-answer.conf.pl
 	if [ ! -f $answerfile ]; then
-		echo "Cannot find answer file for checksetup.pl" >&2
-		exit 3
+		debug "Cannot find answer file for checksetup.pl" 
+		exit 0
 	fi
 	
 	# We want checksetup.pl to write the new params file in params.new

Added: trunk/bugzilla-2.18/debian/patches/00_security_287436.dpatch
===================================================================
--- trunk/bugzilla-2.18/debian/patches/00_security_287436.dpatch	2005-06-11 12:40:33 UTC (rev 98)
+++ trunk/bugzilla-2.18/debian/patches/00_security_287436.dpatch	2005-06-11 13:11:11 UTC (rev 99)
@@ -0,0 +1,57 @@
+#! /bin/sh /usr/share/dpatch/dpatch-run
+## 00_security_287436.dpatch by Alexis Sukrieh <sukria@sukria.net>
+##
+## All lines beginning with `## DP:' are a description of the patch.
+## DP: Upstream security fix of #287436 - After having logged in, links to change the report type contain username and password
+
+@DPATCH@
+diff -urNad bugzilla-2.18/Bugzilla/Auth/CGI.pm /tmp/dpep.bohyzB/bugzilla-2.18/Bugzilla/Auth/CGI.pm
+--- bugzilla-2.18/Bugzilla/Auth/CGI.pm	2005-02-10 09:09:52.000000000 +0100
++++ /tmp/dpep.bohyzB/bugzilla-2.18/Bugzilla/Auth/CGI.pm	2005-06-11 15:02:14.000000000 +0200
+@@ -48,6 +48,8 @@
+     # First, try the actual login method against form variables
+     my $username = $cgi->param("Bugzilla_login");
+     my $passwd = $cgi->param("Bugzilla_password");
++    
++    $cgi->delete('Bugzilla_login', 'Bugzilla_password');
+ 
+     my $authmethod = Param("loginmethod");
+     my ($authres, $userid, $extra, $info) =
+diff -urNad bugzilla-2.18/chart.cgi /tmp/dpep.bohyzB/bugzilla-2.18/chart.cgi
+--- bugzilla-2.18/chart.cgi	2005-06-11 15:01:07.000000000 +0200
++++ /tmp/dpep.bohyzB/bugzilla-2.18/chart.cgi	2005-06-11 15:02:14.000000000 +0200
+@@ -284,8 +284,7 @@
+     $vars->{'time'} = time();
+ 
+     $vars->{'imagebase'} = $cgi->canonicalise_query(
+-                "action", "action-wrap", "ctype", "format", "width", "height",
+-                "Bugzilla_login", "Bugzilla_password");
++                "action", "action-wrap", "ctype", "format", "width", "height");
+ 
+     print $cgi->header();
+     $template->process("reports/chart.html.tmpl", $vars)
+diff -urNad bugzilla-2.18/userprefs.cgi /tmp/dpep.bohyzB/bugzilla-2.18/userprefs.cgi
+--- bugzilla-2.18/userprefs.cgi	2005-06-11 15:01:07.000000000 +0200
++++ /tmp/dpep.bohyzB/bugzilla-2.18/userprefs.cgi	2005-06-11 15:02:14.000000000 +0200
+@@ -327,12 +327,19 @@
+ # Live code (not subroutine definitions) starts here
+ ###############################################################################
+ 
++my $cgi = Bugzilla->cgi;
++
++# This script needs direct access to the username and password CGI variables,
++# so we save them before their removal in Bugzilla->login
++my $bugzilla_login    = $cgi->param('Bugzilla_login');
++my $bugzilla_password = $cgi->param('Bugzilla_password');
++
+ Bugzilla->login(LOGIN_REQUIRED);
++$cgi->param('Bugzilla_login', $bugzilla_login);
++$cgi->param('Bugzilla_password', $bugzilla_password);
+ 
+ GetVersionTable();
+ 
+-my $cgi = Bugzilla->cgi;
+-
+ $vars->{'changes_saved'} = $cgi->param('dosave');
+ 
+ my $current_tab_name = $cgi->param('tab') || "account";


Property changes on: trunk/bugzilla-2.18/debian/patches/00_security_287436.dpatch
___________________________________________________________________
Name: svn:executable
   + *

Modified: trunk/bugzilla-2.18/debian/patches/00list
===================================================================
--- trunk/bugzilla-2.18/debian/patches/00list	2005-06-11 12:40:33 UTC (rev 98)
+++ trunk/bugzilla-2.18/debian/patches/00list	2005-06-11 13:11:11 UTC (rev 99)
@@ -1,3 +1,4 @@
+00_security_287436
 01_libpath
 01_datadir
 02_checksetup