emergency bump by security team #184071 - ** do not assign me bugs **

(Portage version: 2.1.2.9)

2 files changed, 35 insertions, 0 deletions

diff --git a/media-video/nvclock/files/digest-nvclock-0.7-r2 b/media-video/nvclock/files/digest-nvclock-0.7-r2
new file mode 100644
index 000000000000..43a189ed06ba
--- /dev/null
+++ b/media-video/nvclock/files/digest-nvclock-0.7-r2
@@ -0,0 +1,3 @@
+MD5 a3bb5ff1c2638317f1a69c7c2442b9e4 nvclock0.7.tar.gz 68966
+RMD160 aacdc3718a65ec63d1b16039294cd2976736402b nvclock0.7.tar.gz 68966
+SHA256 469678f436b974b62af51aa4bf71fdf695c402ed0cd890c25fc0b757577657e8 nvclock0.7.tar.gz 68966
diff --git a/media-video/nvclock/files/nvclock-insecure-tmp.diff b/media-video/nvclock/files/nvclock-insecure-tmp.diff
new file mode 100644
index 000000000000..834818e14943
--- /dev/null
+++ b/media-video/nvclock/files/nvclock-insecure-tmp.diff
@@ -0,0 +1,32 @@
+--- nvclock0.7.orig/src/backend/backend.c	2003-07-29 16:20:01.000000000 +0100
++++ nvclock0.7/src/backend/backend.c	2007-07-03 11:01:06.000000000 +0100
+@@ -282,12 +282,18 @@ void set_card(int number)
+ void set_default_speeds(int num)
+ {
+     int i, eof;
+-    char buffer[100];
++    char buffer[100], fname[1024], *home;
+     volatile unsigned int *PEXTDEV;
+     volatile unsigned int *PRAMDAC;
+     FILE *fp;
+ 
+-    if((fp = fopen("/tmp/nvclock", "r")) != NULL)
++    if ((home = getenv("HOME")) == NULL)
++        return;
++
++    if (snprintf(fname, sizeof(fname), "%s/.nvclock", home) == -1)
++        return;
++
++    if((fp = fopen(fname, "r")) != NULL)
+     {
+ 	/* Read the file .. */
+         for(eof = fscanf(fp, "%s",&buffer); eof != EOF; eof = fscanf(fp, "%s", &buffer))
+@@ -312,7 +318,7 @@ void set_default_speeds(int num)
+     else
+     {
+ 	/* Write the config file */
+-    	fp = fopen("/tmp/nvclock", "w+");
++    	fp = fopen(fname, "w+");
+ 	fprintf(fp, "#This file is used by nvclock to be able to restore the card's speeds\n#Do not edit this file!\n");
+     
+ 	for(i = 0; i <= num; i++)