[SCM] Debian packaging of libproc-processtable-perl branch, master, updated. debian/0.45-6-20-gf3ddbc3
Salvatore Bonaccorso
carnil at debian.org
Sun Feb 17 07:20:31 UTC 2013
The following commit has been merged in the master branch:
commit 315494a03d8fdf296242abba21aa7ce5dea3270d
Author: Salvatore Bonaccorso <carnil at debian.org>
Date: Sun Feb 17 08:18:27 2013 +0100
Drop CVE-2011-4363.patch patch
Solution for CVE-2011-4363 was applied upstream in upstream version
0.47.
diff --git a/debian/patches/CVE-2011-4363.patch b/debian/patches/CVE-2011-4363.patch
deleted file mode 100644
index c9c7619..0000000
--- a/debian/patches/CVE-2011-4363.patch
+++ /dev/null
@@ -1,31 +0,0 @@
-Description: CVE-2011-4363: Fix unsafe use of /tmp
-Origin: upstream, https://github.com/jonswar/perl-proc-processtable/commit/7b6abfd80fa7e05caa862ec819ec9da061d32639
-Bug: https://rt.cpan.org/Ticket/Display.html?id=72862
-Bug-Debian: http://bugs.debian.org/650500
-Forwarded: not-needed
-Author: Salvatore Bonaccorso <carnil at debian.org>
-Last-Update: 2013-02-10
-
---- a/ProcessTable.pm
-+++ b/ProcessTable.pm
-@@ -4,6 +4,7 @@
-
- use strict;
- use Carp;
-+use Fcntl;
- use vars qw($VERSION @ISA @EXPORT @EXPORT_OK $AUTOLOAD);
-
- require Exporter;
-@@ -109,7 +110,11 @@
- $self->_get_tty_list;
- my $old_umask = umask;
- umask 022;
-- Storable::store(\%Proc::ProcessTable::TTYDEVS, $TTYDEVSFILE);
-+
-+ sysopen( my $ttydevs_fh, $TTYDEVSFILE, O_WRONLY | O_EXCL | O_CREAT )
-+ or die "$TTYDEVSFILE was created by other process";
-+ Storable::store_fd( \%Proc::ProcessTable::TTYDEVS, $ttydevs_fh );
-+ close $ttydevs_fh;
- umask $old_umask;
- }
- }
diff --git a/debian/patches/series b/debian/patches/series
index 9553fe2..2e86906 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -1,4 +1,3 @@
spelling.patch
646785-add-new-states.patch
696874-fix-Buffer-overflow-in-pctcpu.patch
-CVE-2011-4363.patch
--
Debian packaging of libproc-processtable-perl
More information about the Pkg-perl-cvs-commits
mailing list