af9cfc73ee
Fix the potential buffer overflow vulnerability described in CERT VU#336053 (we already had an upstream patch for this in our 2.3.14 pkg). This release also brings several non-critical bugfixes and feature enhancements.
79 lines
2.9 KiB
Plaintext
79 lines
2.9 KiB
Plaintext
--- configure.orig Wed Sep 9 15:19:48 2009
|
|
+++ configure Thu Sep 10 08:58:40 2009
|
|
@@ -7259,9 +7259,7 @@ CFLAGS=$save_CFLAGS
|
|
fi
|
|
|
|
if test "$ac_cv_fpic" = "yes"; then
|
|
- FPIC_CFLAGS="-fPIC"
|
|
-else
|
|
- FPIC_CFLAGS=""
|
|
+ CFLAGS="${CFLAGS} -fPIC"
|
|
fi
|
|
{ $as_echo "$as_me:$LINENO: result: $ac_cv_fpic" >&5
|
|
$as_echo "$ac_cv_fpic" >&6; }
|
|
@@ -10896,7 +10894,7 @@ $as_echo "$as_me: error: Berkeley DB 3.x or later was
|
|
|
|
|
|
|
|
- LIBS="${LIBS} ${BDB_LIBADD}"
|
|
+ LIBS="${BDB_LIBADD} ${LIBS}"
|
|
CPPFLAGS="${BDB_INCADD} ${CPPFLAGS}"
|
|
|
|
CYRUSDB_OBJS="$CYRUSDB_OBJS cyrusdb_berkeley.o"
|
|
@@ -14635,7 +14633,7 @@ if test "${ac_cv_lib_resolv_res_search+set}" = set; th
|
|
$as_echo_n "(cached) " >&6
|
|
else
|
|
ac_check_lib_save_LIBS=$LIBS
|
|
-LIBS="-lresolv $LIBS"
|
|
+#LIBS="-lresolv $LIBS"
|
|
cat >conftest.$ac_ext <<_ACEOF
|
|
/* confdefs.h. */
|
|
_ACEOF
|
|
@@ -17792,7 +17790,7 @@ if test "${ac_cv_lib_resolv_res_search+set}" = set; th
|
|
$as_echo_n "(cached) " >&6
|
|
else
|
|
ac_check_lib_save_LIBS=$LIBS
|
|
-LIBS="-lresolv $LIBS"
|
|
+#LIBS="-lresolv $LIBS"
|
|
cat >conftest.$ac_ext <<_ACEOF
|
|
/* confdefs.h. */
|
|
_ACEOF
|
|
@@ -17883,7 +17881,7 @@ if test "${ac_cv_lib_gssapi_gss_unwrap+set}" = set; th
|
|
$as_echo_n "(cached) " >&6
|
|
else
|
|
ac_check_lib_save_LIBS=$LIBS
|
|
-LIBS="-lgssapi ${GSSAPIBASE_LIBS} -lgssapi -lkrb5 -lasn1 -lroken ${LIB_CRYPT} ${LIB_DES} -lcom_err ${LIB_SOCKET} $LIBS"
|
|
+LIBS="-lgssapi ${GSSAPIBASE_LIBS} -lgssapi -lkrb5 -lasn1 -lcrypto ${LIB_CRYPT} ${LIB_DES} -lcom_err ${LIB_SOCKET} $LIBS"
|
|
cat >conftest.$ac_ext <<_ACEOF
|
|
/* confdefs.h. */
|
|
_ACEOF
|
|
@@ -18359,8 +18357,8 @@ fi
|
|
GSSAPIBASE_STATIC_LIBS="$GSSAPIBASE_LIBS $gssapi_dir/libgssapi_krb5.a $gssapi_dir/libkrb5.a $gssapi_dir/libk5crypto.a $gssapi_dir/libcom_err.a ${K5SUPSTATIC}"
|
|
elif test "$gss_impl" = "heimdal"; then
|
|
CPPFLAGS="$CPPFLAGS -DKRB5_HEIMDAL"
|
|
- GSSAPIBASE_LIBS="$GSSAPIBASE_LIBS -lgssapi -lkrb5 -lasn1 -lroken ${LIB_CRYPT} ${LIB_DES} -lcom_err"
|
|
- GSSAPIBASE_STATIC_LIBS="$GSSAPIBASE_STATIC_LIBS $gssapi_dir/libgssapi.a $gssapi_dir/libkrb5.a $gssapi_dir/libasn1.a $gssapi_dir/libroken.a $gssapi_dir/libcom_err.a ${LIB_CRYPT}"
|
|
+ GSSAPIBASE_LIBS="$GSSAPIBASE_LIBS -lgssapi -lkrb5 -lasn1 ${LIB_CRYPT} ${LIB_DES} -lcom_err"
|
|
+ GSSAPIBASE_STATIC_LIBS="$GSSAPIBASE_STATIC_LIBS $gssapi_dir/libgssapi.a $gssapi_dir/libkrb5.a $gssapi_dir/libasn1.a $gssapi_dir/libcom_err.a ${LIB_CRYPT}"
|
|
elif test "$gss_impl" = "cybersafe03"; then
|
|
# Version of CyberSafe with two libraries
|
|
CPPFLAGS="$CPPFLAGS -D$platform -I${gssapi}/appsec-sdk/include"
|
|
@@ -18544,7 +18542,7 @@ if test "${ac_cv_lib_resolv_res_search+set}" = set; th
|
|
$as_echo_n "(cached) " >&6
|
|
else
|
|
ac_check_lib_save_LIBS=$LIBS
|
|
-LIBS="-lresolv $LIBS"
|
|
+#LIBS="-lresolv $LIBS"
|
|
cat >conftest.$ac_ext <<_ACEOF
|
|
/* confdefs.h. */
|
|
_ACEOF
|
|
@@ -19898,6 +19896,8 @@ cat >>conftest.$ac_ext <<_ACEOF
|
|
extern "C"
|
|
#endif
|
|
char request_init ();
|
|
+int allow_severity = 1;
|
|
+int deny_severity = 1;
|
|
int
|
|
main ()
|
|
{
|