r30405 - in /desktop/unstable/gnome-session/debian: changelog patches/13_format_security.patch

biebl at users.alioth.debian.org biebl at users.alioth.debian.org
Fri Oct 14 10:35:58 UTC 2011 

Author: biebl
Date: Fri Oct 14 10:35:58 2011
New Revision: 30405

URL: http://svn.debian.org/wsvn/pkg-gnome/?sc=1&rev=30405
Log:
* debian/patches/13_format_security.patch:
  - Fix format string vulnerability. Patch cherry-picked from upstream Git.

Added:
    desktop/unstable/gnome-session/debian/patches/13_format_security.patch
Modified:
    desktop/unstable/gnome-session/debian/changelog

Modified: desktop/unstable/gnome-session/debian/changelog
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-session/debian/changelog?rev=30405&op=diff
==============================================================================
--- desktop/unstable/gnome-session/debian/changelog [utf-8] (original)
+++ desktop/unstable/gnome-session/debian/changelog [utf-8] Fri Oct 14 10:35:58 2011
@@ -9,6 +9,8 @@
   * debian/control.in:
     - Set pkg-gnome-maintainers at lists.alioth.debian.org as Maintainer.
     - Add Vcs-* fields.
+  * debian/patches/13_format_security.patch:
+    - Fix format string vulnerability. Patch cherry-picked from upstream Git.
 
  -- Michael Biebl <biebl at debian.org>  Fri, 14 Oct 2011 12:23:29 +0200
 

Added: desktop/unstable/gnome-session/debian/patches/13_format_security.patch
URL: http://svn.debian.org/wsvn/pkg-gnome/desktop/unstable/gnome-session/debian/patches/13_format_security.patch?rev=30405&op=file
==============================================================================
--- desktop/unstable/gnome-session/debian/patches/13_format_security.patch (added)
+++ desktop/unstable/gnome-session/debian/patches/13_format_security.patch [utf-8] Fri Oct 14 10:35:58 2011
@@ -1,0 +1,28 @@
+commit 3a866bc6f4df218bfa8d4f5a90163ba70fe8d145
+Author: Dexter Morgan <dmorganec at gmail.com>
+Date:   Wed Sep 28 01:54:18 2011 +0200
+
+    fix string format
+
+Index: gnome-session-3.0.2/gnome-session/gsm-manager.c
+===================================================================
+--- gnome-session-3.0.2.orig/gnome-session/gsm-manager.c	2011-10-14 12:32:23.305174455 +0200
++++ gnome-session-3.0.2/gnome-session/gsm-manager.c	2011-10-14 12:32:37.013002124 +0200
+@@ -1330,7 +1330,7 @@
+         dialog = gtk_message_dialog_new (NULL, 0,
+                                          GTK_MESSAGE_WARNING,
+                                          GTK_BUTTONS_CLOSE,
+-                                         title);
++                                         "%s", title);
+ 
+         gtk_window_set_icon_name (GTK_WINDOW (dialog), GSM_ICON_COMPUTER_FAIL);
+ 
+@@ -1340,7 +1340,7 @@
+ 
+         if (description) {
+                 gtk_message_dialog_format_secondary_markup (GTK_MESSAGE_DIALOG (dialog),
+-                                                            description);
++                                                            "%s", description);
+         }
+ 
+         hbox = gtk_message_dialog_get_message_area (GTK_MESSAGE_DIALOG (dialog));

More information about the pkg-gnome-commits mailing list