SECURITY: fix for SA38459 (possible buffer overflows)

ok ajacoutot@
2010-02-04 09:54:23 +00:00 · 2010-02-04 09:54:23 +00:00 · 1f48707c4f
commit 1f48707c4f
parent 071439547a
2 changed files with 18 additions and 1 deletions
--- a/mail/gmime/Makefile
+++ b/mail/gmime/Makefile
@ -1,8 +1,9 @@
-# $OpenBSD: Makefile,v 1.13 2009/08/13 16:56:06 ajacoutot Exp $
+# $OpenBSD: Makefile,v 1.14 2010/02/04 09:54:23 jasper Exp $

 COMMENT=		MIME messages creation and parsing library (v2.2)

 DISTNAME=		gmime-2.2.24
+PKGNAME=		${DISTNAME}p0

 SHARED_LIBS +=	gmime-2.0            2.0      # .4.22

--- a/mail/gmime/patches/patch-gmime_gmime-utils_h
+++ b/mail/gmime/patches/patch-gmime_gmime-utils_h
@ -0,0 +1,16 @@
+$OpenBSD: patch-gmime_gmime-utils_h,v 1.1 2010/02/04 09:54:23 jasper Exp $
+
+Fix to prevent possible buffer overflows.
+From upstream git: 3fb8f5295c053d71d426db1e4ee1d47bc869f0a8
+
+--- gmime/gmime-utils.h.orig	Thu Feb  4 10:33:49 2010
+++ gmime/gmime-utils.h	Thu Feb  4 10:34:04 2010
+@@ -106,7 +106,7 @@ struct _GMimeReferences {
+  * Returns the number of output bytes needed to uuencode an input
+  * buffer of size @x.
+  **/
+-#define GMIME_UUENCODE_LEN(x)      ((size_t) (((((x) + 2) / 45) * 62) + 62))
+#define GMIME_UUENCODE_LEN(x)      ((size_t) (((((x) + 2) / 45) * 62) + 64))
+ 
+ 
+ /**