wok rev 24334

polkit: CVE-2021-4034
author Pascal Bellard <pascal.bellard@slitaz.org>
date Fri Jan 28 11:07:11 2022 +0000 (8 months ago)
parents 4310a82e5109
children 6f4496f6c83c
files at/receipt atftp/receipt audacious-plugins/receipt audacious/receipt autoconf/receipt polkit/receipt polkit/stuff/CVE-2021-4034.u
line diff
     1.1 --- a/at/receipt	Fri Jan 28 08:53:07 2022 +0100
     1.2 +++ b/at/receipt	Fri Jan 28 11:07:11 2022 +0000
     1.3 @@ -14,6 +14,13 @@
     1.4  DEPENDS="flex"
     1.5  BUILD_DEPENDS="bison flex ssmtp"
     1.6  
     1.7 +# What is the latest version available today?
     1.8 +current_version()
     1.9 +{
    1.10 +	wget -O - $(dirname $WGET_URL) 2>/dev/null | \
    1.11 +	sed "/${PACKAGE}_[0-9]/!d;/orig.tar/!d;s|.*${PACKAGE}_\\(.*\\).orig.tar.*\".*|\\1|" | sort -Vr | sed q
    1.12 +}
    1.13 +
    1.14  # Rules to configure and make the package.
    1.15  compile_rules()
    1.16  {
     2.1 --- a/atftp/receipt	Fri Jan 28 08:53:07 2022 +0100
     2.2 +++ b/atftp/receipt	Fri Jan 28 11:07:11 2022 +0000
     2.3 @@ -16,7 +16,12 @@
     2.4  
     2.5  HOST_ARCH="i486 arm"
     2.6  
     2.7 -# @maintainer:	Please update also atftpd
     2.8 +# What is the latest version available today?
     2.9 +current_version()
    2.10 +{
    2.11 +	wget -O - https://sourceforge.net/projects/atftp/files/ 2>/dev/null | \
    2.12 +	sed "/$PACKAGE-/!d;/tar/!d;s|.*$PACKAGE-\\(.*\\).tar.*|\\1|;q"
    2.13 +}
    2.14  
    2.15  # Rules to configure and make the package.
    2.16  compile_rules()
     3.1 --- a/audacious-plugins/receipt	Fri Jan 28 08:53:07 2022 +0100
     3.2 +++ b/audacious-plugins/receipt	Fri Jan 28 11:07:11 2022 +0000
     3.3 @@ -20,6 +20,13 @@
     3.4  	libmcs-dev libmowgli-dev libogg-dev libsamplerate-dev 
     3.5  	libvorbis-dev libxml2-dev mesa-dev mpg123-dev neon-dev wavpack-dev"
     3.6  
     3.7 +# What is the latest version available today?
     3.8 +current_version()
     3.9 +{
    3.10 +	wget -O - $(dirname $WGET_URL) 2>/dev/null | \
    3.11 +	sed "/beta/d;/$PACKAGE-[0-9]/!d;/tar/!d;s|.*$PACKAGE-\\(.*\\).tar.*\".*|\\1|" | sort -Vr | sed q
    3.12 +}
    3.13 +
    3.14  # Rules to configure and make the package.
    3.15  compile_rules()
    3.16  {
     4.1 --- a/audacious/receipt	Fri Jan 28 08:53:07 2022 +0100
     4.2 +++ b/audacious/receipt	Fri Jan 28 11:07:11 2022 +0000
     4.3 @@ -18,6 +18,13 @@
     4.4  BUILD_DEPENDS="dbus-dev dbus-glib-dev gcc83 gtk+-dev libmcs libmcs-dev
     4.5  	libmowgli libmowgli-dev libsamplerate-dev libxml2-dev"
     4.6  
     4.7 +# What is the latest version available today?
     4.8 +current_version()
     4.9 +{
    4.10 +	wget -O - $(dirname $WGET_URL) 2>/dev/null | \
    4.11 +	sed "/beta/d;/$PACKAGE-[0-9]/!d;/tar/!d;s|.*$PACKAGE-\\(.*\\).tar.*\".*|\\1|" | sort -Vr | sed q
    4.12 +}
    4.13 +
    4.14  # Rules to configure and make the package.
    4.15  compile_rules()
    4.16  {
     5.1 --- a/autoconf/receipt	Fri Jan 28 08:53:07 2022 +0100
     5.2 +++ b/autoconf/receipt	Fri Jan 28 11:07:11 2022 +0000
     5.3 @@ -14,6 +14,13 @@
     5.4  DEPENDS="gettext-tools m4 perl xz"
     5.5  BUILD_DEPENDS="m4 perl"
     5.6  
     5.7 +# What is the latest version available today?
     5.8 +current_version()
     5.9 +{
    5.10 +	wget -O - $(dirname $WGET_URL) 2>/dev/null | \
    5.11 +	sed "/latest/d;/$PACKAGE-/!d;/tar/!d;s|.*$PACKAGE-\\(.*\\).tar.*\".*|\\1|" | sort -Vr | sed q
    5.12 +}
    5.13 +
    5.14  # Rules to compile & install the temporary toolchain.
    5.15  cook_tmp_toolchain()
    5.16  {
     6.1 --- a/polkit/receipt	Fri Jan 28 08:53:07 2022 +0100
     6.2 +++ b/polkit/receipt	Fri Jan 28 11:07:11 2022 +0000
     6.3 @@ -24,6 +24,7 @@
     6.4  # Rules to configure and make the package.
     6.5  compile_rules()
     6.6  {
     6.7 +	patch -p0 < $stuff/CVE-2021-4034.u
     6.8  	./configure \
     6.9  		--prefix=/usr \
    6.10  		--sysconfdir=/etc \
     7.1 --- /dev/null	Thu Jan 01 00:00:00 1970 +0000
     7.2 +++ b/polkit/stuff/CVE-2021-4034.u	Fri Jan 28 11:07:11 2022 +0000
     7.3 @@ -0,0 +1,14 @@
     7.4 +--- src/programs/pkcheck.c
     7.5 ++++ src/programs/pkcheck.c
     7.6 +@@ -353,6 +353,11 @@
     7.7 +   local_agent_handle = NULL;
     7.8 +   ret = 126;
     7.9 + 
    7.10 ++  if (argc < 1)
    7.11 ++    {
    7.12 ++      exit(126);
    7.13 ++    }
    7.14 ++
    7.15 +   g_type_init ();
    7.16 + 
    7.17 +   details = polkit_details_new ();