Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status
summaryrefslogtreecommitdiff
path: root/net-print
diff options
context:
space:
mode:
authorDaniel Solano Gómez <gentoo@sattvik.com>2011-08-26 13:59:04 -0500
committerDaniel Solano Gómez <gentoo@sattvik.com>2011-08-26 13:59:04 -0500
commitcc46af505e52db641dc5f182e070297aa63f9c32 (patch)
tree656e456a8bfffc724600fba2bcfdab99f33447c6 /net-print
parentSync up with portage. (diff)
downloadsattvik-cc46af505e52db641dc5f182e070297aa63f9c32.tar.gz
sattvik-cc46af505e52db641dc5f182e070297aa63f9c32.tar.bz2
sattvik-cc46af505e52db641dc5f182e070297aa63f9c32.zip
Add security fix from portage
Diffstat (limited to 'net-print')
-rw-r--r--net-print/cups/ChangeLog10
-rw-r--r--net-print/cups/Manifest11
-rw-r--r--net-print/cups/cups-1.4.8-r1.ebuild (renamed from net-print/cups/cups-1.4.6-r21.ebuild)59
-rw-r--r--net-print/cups/cups-1.4.8-r21.ebuild (renamed from net-print/cups/cups-1.4.8.ebuild)4
-rw-r--r--net-print/cups/cups-1.5.0-r1.ebuild (renamed from net-print/cups/cups-1.5.0.ebuild)4
-rw-r--r--net-print/cups/files/cups-1.4.8-CVE-2011-2896.patch37
-rw-r--r--net-print/cups/metadata.xml16
7 files changed, 89 insertions, 52 deletions
diff --git a/net-print/cups/ChangeLog b/net-print/cups/ChangeLog
index da5fa36..4ca16c6 100644
--- a/net-print/cups/ChangeLog
+++ b/net-print/cups/ChangeLog
@@ -2,6 +2,16 @@
# Copyright 1999-2011 Gentoo Foundation; Distributed under the GPL v2
# $Header: $
+*cups-1.5.0-r1 (26 Aug 2011)
+*cups-1.4.8-r21 (26 Aug 2011)
+*cups-1.4.8-r1 (26 Aug 2011)
+
+ 26 Aug 2011; Daniel Solano Gómez <gentoo@sattvik.com>
+ -cups-1.4.6-r21.ebuild, -cups-1.4.8.ebuild, +cups-1.4.8-r1.ebuild,
+ +cups-1.4.8-r21.ebuild, +files/cups-1.4.8-CVE-2011-2896.patch,
+ -cups-1.5.0.ebuild, +cups-1.5.0-r1.ebuild, metadata.xml:
+ Sync up with portage (security fix)
+
*cups-1.5.0 (23 Aug 2011)
*cups-1.4.8 (23 Aug 2011)
*cups-1.4.6-r2 (23 Aug 2011)
diff --git a/net-print/cups/Manifest b/net-print/cups/Manifest
index 74fc738..51c4975 100644
--- a/net-print/cups/Manifest
+++ b/net-print/cups/Manifest
@@ -17,6 +17,7 @@ AUX cups-1.4.4-php-destdir.patch 679 RMD160 1b15d42373a952a608a01cb8c97efbbd3c78
AUX cups-1.4.6-force-gnutls.patch 3319 RMD160 c6cc024a702305eb81661d5cdadd9857e9a6778e SHA1 5ac62ed3ca20bc7a4541c990c676c433299b2177 SHA256 beb4014eac5218d9f424b81946ac1e209625026bf20a7f4820758e5ee1fe5b66
AUX cups-1.4.6-serialize-gnutls.patch 3625 RMD160 873b2806cfec732c4a4f3f2981f666a958dd5b0e SHA1 aae046121d0139fbba1cb9147c8742f73b2f1fa0 SHA256 6bc9e16fc6865b2f3e0ee2d1947bdde691e41f90fce32b9839b3661dcea4a827
AUX cups-1.4.6-web-hang.patch 1749 RMD160 ff8d4cfa10a5de5a911c8672313904f50b13fd0f SHA1 f37a3fb7d71a6d56bbb3e5e7a8cf74ca8cb19276 SHA256 f49cef2ce1f2eecdd8ee07d85f306a19375f6d48510763aa51e96a0c54ad27c5
+AUX cups-1.4.8-CVE-2011-2896.patch 1045 RMD160 9a27eb1ec34ced57da5bbe7c55261d8aa35b01c0 SHA1 6155d7c4b34ff6447a93aa56fa4b5958eb943202 SHA256 c94d49c3ff980b830874dae4158768554f87f429ae400838a605505aae350af6
AUX cups-1.5.0-group_fix.patch 1774 RMD160 cd6b98deecbc8e6f92fdf24f6682c3426a4512b2 SHA1 501ada69a9607c7831f827277c5691b34392d519 SHA256 88a7d41298a43fd2004ef6d40690333c6a1e9c1da4251ac9f23b659e91a6559f
AUX cupsd.init.d 293 RMD160 19fbef21cee7e472e7028f3101b680baa0089c54 SHA1 e6b27b2638fec258fe2f55c926c2530e909ca3d2 SHA256 b4268a6bae95e96b6af21c3716ecc905073736ce7dc33be1489d574a447f3c48
AUX pdftops-1.20.gentoo 10412 RMD160 16e229662c47e03af1d1f4cb5764a76d17a66642 SHA1 6afb8a655b6ff013a2c8c8cbfb615ba1e561503b SHA256 ac5fa01ca776d75bd7cef62eef9f6b0c3945ee87e8950b40ca9f9f3ff46a16c1
@@ -26,8 +27,8 @@ DIST cups-1.4.8-source.tar.bz2 4547162 RMD160 ee80e8d0b56dc0e2edf2a9aa9a43c4b926
DIST cups-1.5.0-source.tar.bz2 4090210 RMD160 e7be9b6b44428561609c59abaea8fa31a11aefff SHA1 628f549867751e373fc20c7558fec422f9eb942b SHA256 c6f99b68a558f4d626e9a5076d664f38e9925715dc541b07f0328c9aeb02ec33
EBUILD cups-1.3.11-r4.ebuild 8230 RMD160 06cae988bc72fd05846e74c736798294c948ea1d SHA1 4a88b7dd7c62690e4e3ebdd3c8da1087ba5f94d9 SHA256 b7643b9e72c90fa66078ab8d4af8af463d1bfdf837e465e9fc078276e418493d
EBUILD cups-1.4.6-r2.ebuild 7302 RMD160 ae4b79035d1bffde784e6e93e03787f7eaaf4cc6 SHA1 a8dbbd84a26884bf88c3da27234c86bab011d471 SHA256 feba1310274d9a11b2966c0e22498e3eec44aff2f342a24e53428b1c7031d4ae
-EBUILD cups-1.4.6-r21.ebuild 8579 RMD160 44ceddc76420f0ddae9f63529986d15220b4ac55 SHA1 5dfcdbcd392501e172be9114a502a69d9e98afde SHA256 38a65433fc9d00c329abcf6f246aeaf178c1a55cfcce194c9ce27f15b4d72118
-EBUILD cups-1.4.8.ebuild 8474 RMD160 a6e20d2ac3958833ce88296b99565a9d98bbf0e0 SHA1 6339144452f654333546aa54d7f763a89c3f4738 SHA256 742b0fa58c806a1e7a0410af06a412fd335c2c27110393f258d5071dc0b15b86
-EBUILD cups-1.5.0.ebuild 8331 RMD160 6e5e56d34d9fefc2123b19503f31274ee8c83a05 SHA1 0bd11e3a6c97251c2200f835144ca3b2c103ab41 SHA256 926ee129e002889f218ca28dbdbb2a08ee49e7e397151ef1d4eba2c73fc89a0e
-MISC ChangeLog 2667 RMD160 e3eacaad20268636d51e3fabfcb65bbd620f28d7 SHA1 2a976be6b2eb0bca6aee3c1213595d808419907b SHA256 7d5612fb507adf0ee2a86d3ffd73f8f398465ad534d5598579f49b95c222c4d7
-MISC metadata.xml 161 RMD160 1e5b1e42553c8869b93c4a5448e9a2a2ed9fe525 SHA1 209c6a46e4cdd891980115e42ba419e3799f8088 SHA256 7c85e6739a71f5bb23e8de36c88677d772946e61f7285892f7554e37bd2bca76
+EBUILD cups-1.4.8-r1.ebuild 7271 RMD160 30e28628bf40bdb1f97d83842602f85ddefdd55f SHA1 f3e22d3acc56ec0dbb52955d84e49774c4c100b0 SHA256 6d2a1b411640c112a3cb52b48efd497c962ad49b4e578f00b3f55bb51143e88c
+EBUILD cups-1.4.8-r21.ebuild 8546 RMD160 cd52fe0c515ad712c7b4bc647407a59670ebb129 SHA1 4998452cee59b0a66a26c87ac1dce1429671d78f SHA256 6c4736f93a247345c85c777edecbd134c7c6834ecb11c040bc264c5ae3872cb7
+EBUILD cups-1.5.0-r1.ebuild 8402 RMD160 b9cf922902bd1c0406707ef53393afe604c430ff SHA1 e3da70103a35b663871bae9af7a21d1b53991831 SHA256 ee3c66adc7a68975dde759782810c83544effba7cf60455099a90a4e86c364a1
+MISC ChangeLog 3045 RMD160 58ad0e6a02b69e72513270a9794de8e2da43e58e SHA1 3f3097ba5241ef11f45350d26c7b01d7897cf828 SHA256 efd68ffc5d25b8d40882b2e51ca7f522b24b5e34e47e38db7076e09f76e322c9
+MISC metadata.xml 586 RMD160 73a1f1c0096d5035dfa53207b00c125894f6822a SHA1 123501263490cab57af2b99f2336fb70c094d9b0 SHA256 3b729c497ee38452b1ca051b759f43b5f9e117f9c36c0f3b660e4bd8ab7c295b
diff --git a/net-print/cups/cups-1.4.6-r21.ebuild b/net-print/cups/cups-1.4.8-r1.ebuild
index d49c134..3dc9836 100644
--- a/net-print/cups/cups-1.4.6-r21.ebuild
+++ b/net-print/cups/cups-1.4.8-r1.ebuild
@@ -1,6 +1,6 @@
# Copyright 1999-2011 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-print/cups/cups-1.4.6-r21.ebuild,v 1.2 2011/06/06 21:54:07 dilfridge Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-print/cups/cups-1.4.8-r1.ebuild,v 1.1 2011/08/25 01:02:49 tgurr Exp $
EAPI=3
@@ -17,7 +17,7 @@ SRC_URI="mirror://easysw/${PN}/${PV}/${MY_P}-source.tar.bz2"
LICENSE="GPL-2"
SLOT="0"
KEYWORDS="~alpha ~amd64 ~arm ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~sparc-fbsd ~x86 ~x86-fbsd"
-IUSE="acl dbus debug gnutls java +jpeg kerberos ldap pam perl php +png python samba slp +ssl static-libs +threads +tiff usb X xinetd"
+IUSE="acl dbus debug gnutls java +jpeg kerberos ldap pam perl php +png python samba slp +ssl static-libs +threads +tiff X xinetd"
LANGS="da de es eu fi fr id it ja ko nl no pl pt pt_BR ru sv zh zh_TW"
for X in ${LANGS} ; do
@@ -50,7 +50,6 @@ RDEPEND="
!gnutls? ( >=dev-libs/openssl-0.9.8g )
)
tiff? ( >=media-libs/tiff-3.5.5 )
- usb? ( virtual/libusb:0 )
X? ( x11-misc/xdg-utils )
xinetd? ( sys-apps/xinetd )
!net-print/cupsddk
@@ -81,49 +80,21 @@ pkg_setup() {
python_pkg_setup
fi
- if use usb; then
- elog "You are going to use new libusb backed to access your usb printer."
- elog "This interface has quite few known issues and does not report all"
- elog "issues and just refuses to print."
- elog "Please consider disabling usb useflag if you are having issues."
- elog
- elog "Please note that if you disable the usb useflag your device will be"
- elog "still working using kernel usblp interface instead of libusb."
- echo
- fi
-
linux-info_pkg_setup
if ! linux_config_exists; then
ewarn "Can't check the linux kernel configuration."
ewarn "You might have some incompatible options enabled."
else
- # recheck that we don't have usblp to collide with libusb
- if use usb; then
- if linux_chkconfig_present USB_PRINTER; then
- eerror "Your usb printers will be managed via libusb which collides with kernel module."
- eerror "${P} requires the USB_PRINTER support disabled."
- eerror "Please disable it:"
- eerror " CONFIG_USB_PRINTER=n"
- eerror "in /usr/src/linux/.config or"
- eerror " Device Drivers --->"
- eerror " USB support --->"
- eerror " [ ] USB Printer support"
- eerror "Alternatively, just disable the usb useflag for cups (your printer will still work)."
- die "USB_PRINTER module enabled"
- fi
- else
- #here we should warn user that he should enable it so he can print
- if ! linux_chkconfig_present USB_PRINTER; then
- ewarn "If you plan to use USB printers you should enable the USB_PRINTER"
- ewarn "support in your kernel."
- ewarn "Please enable it:"
- ewarn " CONFIG_USB_PRINTER=y"
- ewarn "in /usr/src/linux/.config or"
- ewarn " Device Drivers --->"
- ewarn " USB support --->"
- ewarn " [*] USB Printer support"
- ewarn "Alternatively, enable the usb useflag for cups and use the new, less-tested libusb code."
- fi
+ #here we should warn user that he should enable it so he can print
+ if ! linux_chkconfig_present USB_PRINTER; then
+ ewarn "If you plan to use USB printers you should enable the USB_PRINTER"
+ ewarn "support in your kernel."
+ ewarn "Please enable it:"
+ ewarn " CONFIG_USB_PRINTER=y"
+ ewarn "in /usr/src/linux/.config or"
+ ewarn " Device Drivers --->"
+ ewarn " USB support --->"
+ ewarn " [*] USB Printer support"
fi
fi
}
@@ -139,8 +110,8 @@ src_prepare() {
epatch "${FILESDIR}/${PN}-1.4.4-perl-includes.patch"
epatch "${FILESDIR}/${PN}-1.4.6-force-gnutls.patch"
epatch "${FILESDIR}/${PN}-1.4.6-serialize-gnutls.patch"
- # interface hangs using some browsers, bug #325871
- epatch "${FILESDIR}/${PN}-1.4.6-web-hang.patch"
+ # security fixes
+ epatch "${FILESDIR}/${PN}-1.4.8-CVE-2011-2896.patch"
# Dan's group fix
epatch "${FILESDIR}/${PN}-1.4.1-group_fix.patch"
@@ -202,13 +173,13 @@ src_configure() {
$(use_enable slp) \
$(use_enable static-libs static) \
$(use_enable tiff) \
- $(use_enable usb libusb) \
$(use_with java) \
$(use_with perl) \
$(use_with php) \
$(use_with python) \
$(use_with xinetd xinetd /etc/xinetd.d) \
--enable-libpaper \
+ --disable-libusb \
--disable-dnssd \
${myconf}
diff --git a/net-print/cups/cups-1.4.8.ebuild b/net-print/cups/cups-1.4.8-r21.ebuild
index 2b3a607..89bec00 100644
--- a/net-print/cups/cups-1.4.8.ebuild
+++ b/net-print/cups/cups-1.4.8-r21.ebuild
@@ -1,6 +1,6 @@
# Copyright 1999-2011 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-print/cups/cups-1.4.8.ebuild,v 1.1 2011/08/17 20:28:56 dilfridge Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-print/cups/cups-1.4.8-r21.ebuild,v 1.1 2011/08/25 01:02:49 tgurr Exp $
EAPI=3
@@ -139,6 +139,8 @@ src_prepare() {
epatch "${FILESDIR}/${PN}-1.4.4-perl-includes.patch"
epatch "${FILESDIR}/${PN}-1.4.6-force-gnutls.patch"
epatch "${FILESDIR}/${PN}-1.4.6-serialize-gnutls.patch"
+ # security fixes
+ epatch "${FILESDIR}/${PN}-1.4.8-CVE-2011-2896.patch"
# Dan's group fix
epatch "${FILESDIR}/${PN}-1.4.1-group_fix.patch"
diff --git a/net-print/cups/cups-1.5.0.ebuild b/net-print/cups/cups-1.5.0-r1.ebuild
index 23b4cdf..e3595ba 100644
--- a/net-print/cups/cups-1.5.0.ebuild
+++ b/net-print/cups/cups-1.5.0-r1.ebuild
@@ -1,6 +1,6 @@
# Copyright 1999-2011 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
-# $Header: /var/cvsroot/gentoo-x86/net-print/cups/cups-1.5.0.ebuild,v 1.1 2011/08/17 20:28:56 dilfridge Exp $
+# $Header: /var/cvsroot/gentoo-x86/net-print/cups/cups-1.5.0-r1.ebuild,v 1.1 2011/08/25 01:02:49 tgurr Exp $
#
# See http://git.overlays.gentoo.org/gitweb/?p=dev/dilfridge.git;a=blob;f=net-print/cups/notes.txt;hb=HEAD
@@ -141,6 +141,8 @@ src_prepare() {
epatch "${FILESDIR}/${PN}-1.4.4-nostrip.patch"
epatch "${FILESDIR}/${PN}-1.4.4-php-destdir.patch"
epatch "${FILESDIR}/${PN}-1.4.4-perl-includes.patch"
+ # security fixes
+ epatch "${FILESDIR}/${PN}-1.4.8-CVE-2011-2896.patch"
# Dan's group fix
epatch "${FILESDIR}/${PN}-1.5.0-group_fix.patch"
diff --git a/net-print/cups/files/cups-1.4.8-CVE-2011-2896.patch b/net-print/cups/files/cups-1.4.8-CVE-2011-2896.patch
new file mode 100644
index 0000000..843456f
--- /dev/null
+++ b/net-print/cups/files/cups-1.4.8-CVE-2011-2896.patch
@@ -0,0 +1,37 @@
+Source: Upstream http://cups.org/str.php?L3914
+Reason: Avoid GIF reader loop (CVE-2011-2896)
+Upstream: Fixed in trunk
+
+diff -up cups-1.4.8/filter/image-gif.c.CVE-2011-2896 cups-1.4.8/filter/image-gif.c
+--- cups-1.4.8/filter/image-gif.c.CVE-2011-2896 2011-06-20 21:37:51.000000000 +0100
++++ cups-1.4.8/filter/image-gif.c 2011-08-19 11:33:37.547911212 +0100
+@@ -648,11 +648,13 @@ gif_read_lzw(FILE *fp, /* I - File to
+
+ if (code == max_code)
+ {
+- *sp++ = firstcode;
+- code = oldcode;
++ if (sp < (stack + 8192))
++ *sp++ = firstcode;
++
++ code = oldcode;
+ }
+
+- while (code >= clear_code)
++ while (code >= clear_code && sp < (stack + 8192))
+ {
+ *sp++ = table[1][code];
+ if (code == table[0][code])
+@@ -661,8 +663,10 @@ gif_read_lzw(FILE *fp, /* I - File to
+ code = table[0][code];
+ }
+
+- *sp++ = firstcode = table[1][code];
+- code = max_code;
++ if (sp < (stack + 8192))
++ *sp++ = firstcode = table[1][code];
++
++ code = max_code;
+
+ if (code < 4096)
+ {
diff --git a/net-print/cups/metadata.xml b/net-print/cups/metadata.xml
index 1fa0ca5..5b5f2ac 100644
--- a/net-print/cups/metadata.xml
+++ b/net-print/cups/metadata.xml
@@ -1,5 +1,19 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE pkgmetadata SYSTEM "http://www.gentoo.org/dtd/metadata.dtd">
<pkgmetadata>
-<herd>printing</herd>
+ <herd>printing</herd>
+ <use>
+ <flag name='python'>
+ Add support for the Python interpeter in the web server CGIs.
+ </flag>
+ <flag name='perl'>
+ Add support for the Perl interpeter in the web server CGIs.
+ </flag>
+ <flag name='php'>
+ Add support for the PHP interpeter in the web server CGIs.
+ </flag>
+ <flag name='java'>
+ Add support for the Java interpeter in the web server CGIs.
+ </flag>
+ </use>
</pkgmetadata>