Changeset 34777763


Ignore:
Timestamp:
04/14/2006 07:23:22 PM (18 years ago)
Author:
Ken Moffat <ken@…>
Branches:
10.0, 10.0-rc1, 10.1, 10.1-rc1, 11.0, 11.0-rc1, 11.0-rc2, 11.0-rc3, 11.1, 11.1-rc1, 11.2, 11.2-rc1, 11.3, 11.3-rc1, 12.0, 12.0-rc1, 12.1, 12.1-rc1, 6.3, 6.4, 6.5, 6.6, 6.7, 6.8, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.5-systemd, 7.6, 7.6-systemd, 7.7, 7.7-systemd, 7.8, 7.8-systemd, 7.9, 7.9-systemd, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, arm, bdubbs/gcc13, ml-11.0, multilib, renodr/libudev-from-systemd, s6-init, trunk, xry111/arm64, xry111/arm64-12.0, xry111/clfs-ng, xry111/lfs-next, xry111/loongarch, xry111/loongarch-12.0, xry111/loongarch-12.1, xry111/mips64el, xry111/pip3, xry111/rust-wip-20221008, xry111/update-glibc
Children:
81aee91
Parents:
58315ceb
Message:

Add patch for tar re CVE-2006-0300, to fix ticket #1767.

git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@7520 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689

Files:
4 edited

Legend:

Unmodified
Added
Removed

  • chapter01/changelog.xml

    r58315ceb r34777763  
    4040      <para>April 14, 2006</para>
    4141      <itemizedlist>
     42        <listitem>
     43          <para>[ken] - Add security patch for tar to address CVE-2006-0300.</para>
     44        </listitem>
    4245        <listitem>
    4346          <para>[archaic] - Upgraded to man-pages-2.29 and linux-2.6.16.5. No

  • chapter03/patches.xml

    r58315ceb r34777763  
    202202
    203203    <varlistentry>
     204      <term>Tar Security Fixes Patch - 4 KB:</term>
     205      <listitem>
     206        <para><ulink url="&patches-root;&tar-security_fixes-patch;"/></para>
     207      </listitem>
     208    </varlistentry>
     209
     210    <varlistentry>
    204211      <term>Texinfo Multibyte Fixes Patch - 1 KB:</term>
    205212      <listitem>

  • chapter06/tar.xml

    r58315ceb r34777763  
    5454
    5555<screen><userinput>patch -Np1 -i ../&tar-sparse_fix-patch;</userinput></screen>
     56
     57    <para>Recent versions of tar are vulnerable to a buffer overflow from
     58    specially crafted archives. The following patch addresses this:</para>
     59
     60<screen><userinput>patch -Np1 -i ../&tar-security_fixes-patch;</userinput></screen>
    5661
    5762    <para>Prepare Tar for compilation:</para>

  • patches.ent

    r58315ceb r34777763  
    4747<!ENTITY tar-gcc4_fix-patch "tar-&tar-version;-gcc4_fix_tests-1.patch">
    4848<!ENTITY tar-sparse_fix-patch "tar-&tar-version;-sparse_fix-1.patch">
     49<!ENTITY tar-security_fixes-patch "tar-&tar-version;-security_fixes-1.patch">
    4950
    5051<!ENTITY texinfo-multibyte-patch "texinfo-&texinfo-version;-multibyte-1.patch">
Note: See TracChangeset for help on using the changeset viewer.