summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authortron <tron>2014-02-18 11:34:25 +0000
committertron <tron>2014-02-18 11:34:25 +0000
commit7360a9ef62e61910e7919c45671e4d2fb308c4d6 (patch)
treee12494408549def66ae0a228581aa6bcf9b383b7
parent8b170ceaf18cc5038d5840472666cc712d4d2919 (diff)
downloadpkgsrc-7360a9ef62e61910e7919c45671e4d2fb308c4d6.tar.gz
Pullup ticket #4329 - requested by drochner
sysutils/xentools41: security patch Revisions pulled up: - sysutils/xentools41/Makefile 1.44 - sysutils/xentools41/distinfo 1.35 - sysutils/xentools41/patches/patch-CVE-2014-1950 1.1 --- Module Name: pkgsrc Committed By: drochner Date: Thu Feb 13 11:12:58 UTC 2014 Modified Files: pkgsrc/sysutils/xentools41: Makefile distinfo Added Files: pkgsrc/sysutils/xentools41/patches: patch-CVE-2014-1950 Log Message: add patch from upstream to fix use-after-free under memory pressure (CVE-2014-1950) bump PKGREV
-rw-r--r--sysutils/xentools41/Makefile4
-rw-r--r--sysutils/xentools41/distinfo3
-rw-r--r--sysutils/xentools41/patches/patch-CVE-2014-195014
3 files changed, 18 insertions, 3 deletions
diff --git a/sysutils/xentools41/Makefile b/sysutils/xentools41/Makefile
index a25ff17291a..6df0a1eead4 100644
--- a/sysutils/xentools41/Makefile
+++ b/sysutils/xentools41/Makefile
@@ -1,11 +1,11 @@
-# $NetBSD: Makefile,v 1.40 2013/11/29 19:31:47 drochner Exp $
+# $NetBSD: Makefile,v 1.40.2.1 2014/02/18 11:34:25 tron Exp $
#
# VERSION is set in version.mk as it is shared with other packages
.include "version.mk"
DISTNAME= xen-${VERSION}
PKGNAME= xentools41-${VERSION}
-PKGREVISION= 2
+PKGREVISION= 3
CATEGORIES= sysutils
MASTER_SITES= http://bits.xensource.com/oss-xen/release/${VERSION}/
diff --git a/sysutils/xentools41/distinfo b/sysutils/xentools41/distinfo
index 4341a39b21f..4b3780b06ea 100644
--- a/sysutils/xentools41/distinfo
+++ b/sysutils/xentools41/distinfo
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.34 2013/11/29 19:31:47 drochner Exp $
+$NetBSD: distinfo,v 1.34.2.1 2014/02/18 11:34:25 tron Exp $
SHA1 (ipxe-git-v1.0.0.tar.gz) = da052c8de5f3485fe0253c19cf52ed6d72528485
RMD160 (ipxe-git-v1.0.0.tar.gz) = dcd9b6eaafa1ce05c1ebf2a15f2f73ad7a8c5547
@@ -10,6 +10,7 @@ SHA1 (patch-.._.._ipxe_src_arch_i386_include_librm.h) = 4549ac641b112321b4731a91
SHA1 (patch-.._.._ipxe_src_core_settings.c) = 240ff973757403b983f12b2cbed826584c4a8aba
SHA1 (patch-.._.._ipxe_src_net_tls.c) = c0cfbc2ab2b92c659c146601c4f80d58c951ca62
SHA1 (patch-.._Config.mk) = 9b971a41f67bb3974d3a4459bb9d96fbbd636c96
+SHA1 (patch-CVE-2014-1950) = b0d900722fd0f59a50f1e1eda1471105d5b557e5
SHA1 (patch-aa) = 9b53ba4a809dad7a1de34c8fa0dbe493d7256ada
SHA1 (patch-ab) = 0906a5ec3a7450fc987b01289e2560e60966d00d
SHA1 (patch-ac) = c3cc5335a1d6b066307c5f03fe72f513a9eb2bdb
diff --git a/sysutils/xentools41/patches/patch-CVE-2014-1950 b/sysutils/xentools41/patches/patch-CVE-2014-1950
new file mode 100644
index 00000000000..82482e1ed45
--- /dev/null
+++ b/sysutils/xentools41/patches/patch-CVE-2014-1950
@@ -0,0 +1,14 @@
+$NetBSD: patch-CVE-2014-1950,v 1.1.2.2 2014/02/18 11:34:25 tron Exp $
+
+http://lists.xenproject.org/archives/html/xen-announce/2014-02/msg00006.html
+
+--- libxc/xc_cpupool.c.orig 2014-02-12 16:27:31.000000000 +0000
++++ libxc/xc_cpupool.c 2014-02-12 16:28:11.000000000 +0000
+@@ -104,6 +104,7 @@ xc_cpupoolinfo_t *xc_cpupool_getinfo(xc_
+ info->cpumap = xc_cpumap_alloc(xch);
+ if (!info->cpumap) {
+ free(info);
++ info = NULL;
+ goto out;
+ }
+ info->cpupool_id = sysctl.u.cpupool_op.cpupool_id;