From 3464d56c84a06c0033688c4140589aa00e6d18c9 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Ra=C3=BAl=20Porcel?= Date: Wed, 11 Apr 2007 21:17:04 +0000 Subject: [PATCH] 1.3.8 is affected by that security bug too Package-Manager: portage-2.1.2.3 --- net-misc/tightvnc/ChangeLog | 11 +- net-misc/tightvnc/Manifest | 49 ++++---- .../tightvnc/files/digest-tightvnc-1.3.8-r1 | 3 + ...-1003.patch => server-CVE-2007-1003.patch} | 0 ....patch => server-CVE-2007-1351-1352.patch} | 0 net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild | 6 +- net-misc/tightvnc/tightvnc-1.3.8-r1.ebuild | 110 ++++++++++++++++++ 7 files changed, 149 insertions(+), 30 deletions(-) create mode 100644 net-misc/tightvnc/files/digest-tightvnc-1.3.8-r1 rename net-misc/tightvnc/files/{tightvnc-1.2.9-server-CVE-2007-1003.patch => server-CVE-2007-1003.patch} (100%) rename net-misc/tightvnc/files/{tightvnc-1.2.9-server-CVE-2007-1351-1352.patch => server-CVE-2007-1351-1352.patch} (100%) create mode 100644 net-misc/tightvnc/tightvnc-1.3.8-r1.ebuild diff --git a/net-misc/tightvnc/ChangeLog b/net-misc/tightvnc/ChangeLog index 036caa8d68a9..b202de0a6470 100644 --- a/net-misc/tightvnc/ChangeLog +++ b/net-misc/tightvnc/ChangeLog @@ -1,6 +1,15 @@ # ChangeLog for net-misc/tightvnc # Copyright 2002-2007 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/tightvnc/ChangeLog,v 1.91 2007/04/11 21:02:23 jokey Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-misc/tightvnc/ChangeLog,v 1.92 2007/04/11 21:17:04 armin76 Exp $ + +*tightvnc-1.3.8-r1 (11 Apr 2007) + + 11 Apr 2007; Raúl Porcel + -files/tightvnc-1.2.9-server-CVE-2007-1003.patch, + -files/tightvnc-1.2.9-server-CVE-2007-1351-1352.patch, + +files/server-CVE-2007-1003.patch, +files/server-CVE-2007-1351-1352.patch, + tightvnc-1.2.9-r4.ebuild, +tightvnc-1.3.8-r1.ebuild: + 1.3.8 is affected by that security bug too 11 Apr 2007; Markus Ullmann tightvnc-1.2.9-r4.ebuild: Stable on x86 wrt security bug #174200 diff --git a/net-misc/tightvnc/Manifest b/net-misc/tightvnc/Manifest index b6a8b71b0c79..1cc8c5db6d51 100644 --- a/net-misc/tightvnc/Manifest +++ b/net-misc/tightvnc/Manifest @@ -1,10 +1,15 @@ ------BEGIN PGP SIGNED MESSAGE----- -Hash: SHA1 - AUX README.JavaViewer 18585 RMD160 e40c2e27bd4c31d9d389a4a59a6ab7ef256bc962 SHA1 7c2b1ca4051ed2ad89e7f745736b985ea5c75ab0 SHA256 44baa12f5ee918aacf762f0d32ae45bffab17eed77e7e3ed5b43d06e2876d150 MD5 68903d8d341d5f9a8d576dee0716f4b8 files/README.JavaViewer 18585 RMD160 e40c2e27bd4c31d9d389a4a59a6ab7ef256bc962 files/README.JavaViewer 18585 SHA256 44baa12f5ee918aacf762f0d32ae45bffab17eed77e7e3ed5b43d06e2876d150 files/README.JavaViewer 18585 +AUX server-CVE-2007-1003.patch 1062 RMD160 c7a21dc431924e0d430e4fd1a76e57a0f8564bb6 SHA1 2ed68d40c91eac77eaf6cf617bfe5aaa4912923a SHA256 4c1eda952e06e954e296a4abf304746b32a7ec45f6bdffb9f0adc0b2d692d6d2 +MD5 f5e037eda8045951919bedc3bf618723 files/server-CVE-2007-1003.patch 1062 +RMD160 c7a21dc431924e0d430e4fd1a76e57a0f8564bb6 files/server-CVE-2007-1003.patch 1062 +SHA256 4c1eda952e06e954e296a4abf304746b32a7ec45f6bdffb9f0adc0b2d692d6d2 files/server-CVE-2007-1003.patch 1062 +AUX server-CVE-2007-1351-1352.patch 1556 RMD160 7e801c3afc71c81ce7225e37810871004f718a8a SHA1 005e56e2d992369a56792726c2c45c85831c98b0 SHA256 9bf98f6dfcf375edb7602ceb25df1d2fad902ae2f8aa24e516ef4b27b5246a84 +MD5 3fecce8a0d2526997335381c1cbbce54 files/server-CVE-2007-1351-1352.patch 1556 +RMD160 7e801c3afc71c81ce7225e37810871004f718a8a files/server-CVE-2007-1351-1352.patch 1556 +SHA256 9bf98f6dfcf375edb7602ceb25df1d2fad902ae2f8aa24e516ef4b27b5246a84 files/server-CVE-2007-1351-1352.patch 1556 AUX tightvnc-1.2.9-amd64.patch 5874 RMD160 1f946ae361db97afcfaf9303197cbe5fe2bc137b SHA1 9c35000336f1fdbd7a5089a0683bf2f72be1d659 SHA256 d0e8e0dd1b56f1dac28bc10a20f2af194027c2b3db06eded30efa472b50c1ddf MD5 7f0dcab7d01dfc820fabe9a79872085c files/tightvnc-1.2.9-amd64.patch 5874 RMD160 1f946ae361db97afcfaf9303197cbe5fe2bc137b files/tightvnc-1.2.9-amd64.patch 5874 @@ -25,14 +30,6 @@ AUX tightvnc-1.2.9-pathfixes.patch 826 RMD160 bd3f436c816d78892ffa8fe32acdbc8b89 MD5 89eadc2f34995c86c1618b12f95cc246 files/tightvnc-1.2.9-pathfixes.patch 826 RMD160 bd3f436c816d78892ffa8fe32acdbc8b89acb00b files/tightvnc-1.2.9-pathfixes.patch 826 SHA256 717af3ec4fe50b81e37b2efec539d64e5b703d1d63dadd93d819206708b30266 files/tightvnc-1.2.9-pathfixes.patch 826 -AUX tightvnc-1.2.9-server-CVE-2007-1003.patch 1062 RMD160 c7a21dc431924e0d430e4fd1a76e57a0f8564bb6 SHA1 2ed68d40c91eac77eaf6cf617bfe5aaa4912923a SHA256 4c1eda952e06e954e296a4abf304746b32a7ec45f6bdffb9f0adc0b2d692d6d2 -MD5 f5e037eda8045951919bedc3bf618723 files/tightvnc-1.2.9-server-CVE-2007-1003.patch 1062 -RMD160 c7a21dc431924e0d430e4fd1a76e57a0f8564bb6 files/tightvnc-1.2.9-server-CVE-2007-1003.patch 1062 -SHA256 4c1eda952e06e954e296a4abf304746b32a7ec45f6bdffb9f0adc0b2d692d6d2 files/tightvnc-1.2.9-server-CVE-2007-1003.patch 1062 -AUX tightvnc-1.2.9-server-CVE-2007-1351-1352.patch 1556 RMD160 7e801c3afc71c81ce7225e37810871004f718a8a SHA1 005e56e2d992369a56792726c2c45c85831c98b0 SHA256 9bf98f6dfcf375edb7602ceb25df1d2fad902ae2f8aa24e516ef4b27b5246a84 -MD5 3fecce8a0d2526997335381c1cbbce54 files/tightvnc-1.2.9-server-CVE-2007-1351-1352.patch 1556 -RMD160 7e801c3afc71c81ce7225e37810871004f718a8a files/tightvnc-1.2.9-server-CVE-2007-1351-1352.patch 1556 -SHA256 9bf98f6dfcf375edb7602ceb25df1d2fad902ae2f8aa24e516ef4b27b5246a84 files/tightvnc-1.2.9-server-CVE-2007-1351-1352.patch 1556 AUX tightvnc-1.3.8-amd64.patch 5278 RMD160 555b78e36df77b721699652cc085c037a6d47111 SHA1 125e4c6a7334935bb9e9cf46291b1f1abade98b1 SHA256 e29ad675941ef90a2ef13095e950a63fd67134c9b6ed1cf44a7aa83342c645a9 MD5 dc6cc8160bc641c7f0907473e1400f6c files/tightvnc-1.3.8-amd64.patch 5278 RMD160 555b78e36df77b721699652cc085c037a6d47111 files/tightvnc-1.3.8-amd64.patch 5278 @@ -71,18 +68,22 @@ EBUILD tightvnc-1.2.9-r3.ebuild 2872 RMD160 ebac825b740010b85b1faf3b61d4f131c0e9 MD5 cd1f16c55e6f5b44ac0c35290f7b616c tightvnc-1.2.9-r3.ebuild 2872 RMD160 ebac825b740010b85b1faf3b61d4f131c0e9c35e tightvnc-1.2.9-r3.ebuild 2872 SHA256 744bf69b2c424b539ef1377da1469984ae5e21b1a0395725885bacaa9f1312ac tightvnc-1.2.9-r3.ebuild 2872 -EBUILD tightvnc-1.2.9-r4.ebuild 2987 RMD160 96a097e36c683fa2d0c0314be36c2b50174b2cad SHA1 8913920d0976f9c690ab99fb130b78c41a09e9c9 SHA256 07829465e430af4de90f7b42aa9e3f443ff6093d7c39d67b5295f242994c5b89 -MD5 203fe078624303f5c5e19ab676dd50c6 tightvnc-1.2.9-r4.ebuild 2987 -RMD160 96a097e36c683fa2d0c0314be36c2b50174b2cad tightvnc-1.2.9-r4.ebuild 2987 -SHA256 07829465e430af4de90f7b42aa9e3f443ff6093d7c39d67b5295f242994c5b89 tightvnc-1.2.9-r4.ebuild 2987 +EBUILD tightvnc-1.2.9-r4.ebuild 2979 RMD160 28e91bc7eb81bae3d2814fa5c0e1d1d3d6454f51 SHA1 e7e08ff08487167e617de9a2cae16ef9e469b8f6 SHA256 d8bf83ce8fe0afb9ea9000c2abe6ed5b44555e0af4b122a8ec450a04b827bb4a +MD5 e0906b618f60f44bffcb241f5b9eab18 tightvnc-1.2.9-r4.ebuild 2979 +RMD160 28e91bc7eb81bae3d2814fa5c0e1d1d3d6454f51 tightvnc-1.2.9-r4.ebuild 2979 +SHA256 d8bf83ce8fe0afb9ea9000c2abe6ed5b44555e0af4b122a8ec450a04b827bb4a tightvnc-1.2.9-r4.ebuild 2979 +EBUILD tightvnc-1.3.8-r1.ebuild 2918 RMD160 43903faad04363a7385d75cff59781f735f3859b SHA1 21043997f623fd0e14b148e0dc3f570b7bfbc4a1 SHA256 4dabd7ca474e365aaa08d9229dcec0c8ef8b8ae9becf5084a37138f2f0e079f5 +MD5 fbfd5a586034430e3b787496a587773f tightvnc-1.3.8-r1.ebuild 2918 +RMD160 43903faad04363a7385d75cff59781f735f3859b tightvnc-1.3.8-r1.ebuild 2918 +SHA256 4dabd7ca474e365aaa08d9229dcec0c8ef8b8ae9becf5084a37138f2f0e079f5 tightvnc-1.3.8-r1.ebuild 2918 EBUILD tightvnc-1.3.8.ebuild 2810 RMD160 c45331235e43bd9f9424f283146985ec9209a644 SHA1 dc53fb825df98c66336d8a9b45d0d416a2004184 SHA256 5010decbe93a40bcf531ec486fe8cc244c981063a1fab7f2773d3cd044206d52 MD5 e2f917cc9b2ce75c79c2b793b722d140 tightvnc-1.3.8.ebuild 2810 RMD160 c45331235e43bd9f9424f283146985ec9209a644 tightvnc-1.3.8.ebuild 2810 SHA256 5010decbe93a40bcf531ec486fe8cc244c981063a1fab7f2773d3cd044206d52 tightvnc-1.3.8.ebuild 2810 -MISC ChangeLog 13806 RMD160 c8e916948a0df9a3f85be7b2ac4ac520790ef314 SHA1 87adb7a8021c8c82b733bf35ed11876f59bd8626 SHA256 ba6a60f9fefcc19d78d43cdcf9db8f4535de936479e1f95f3813179358f079d3 -MD5 5c3fa99694724ddd61074f0f02c8aac0 ChangeLog 13806 -RMD160 c8e916948a0df9a3f85be7b2ac4ac520790ef314 ChangeLog 13806 -SHA256 ba6a60f9fefcc19d78d43cdcf9db8f4535de936479e1f95f3813179358f079d3 ChangeLog 13806 +MISC ChangeLog 14178 RMD160 6de3d0ea11fe6bafc11c6414c3dff0bb17c8b520 SHA1 63e3298cfb29e4f319b76439ca7727d7c79ed8af SHA256 d1f17bde7191998ae64b7e46a3a1ed3dca0f0c16b45083bcc3caaa85402fb3ce +MD5 13fe26dca2d2ce938a35bdfb1186a86b ChangeLog 14178 +RMD160 6de3d0ea11fe6bafc11c6414c3dff0bb17c8b520 ChangeLog 14178 +SHA256 d1f17bde7191998ae64b7e46a3a1ed3dca0f0c16b45083bcc3caaa85402fb3ce ChangeLog 14178 MISC metadata.xml 223 RMD160 f88bcdebf752bcc3933b4159df5d8f9f7d487ca1 SHA1 4a17e70b26b3bba2ec6eddb403ff890bb8bcf13f SHA256 98c023870e5fbbcc4f050a192947b7b6bbd239041c9f921b3fbf64b03523019f MD5 038a74c1f0dc742c6df70730348c240a metadata.xml 223 RMD160 f88bcdebf752bcc3933b4159df5d8f9f7d487ca1 metadata.xml 223 @@ -96,10 +97,6 @@ SHA256 c7b13ad35c4b2e2bde6a2fcb01b6ad276384a265613a35ee739c2a3f0c2e3ea3 files/di MD5 bfe15238bfcba463b0abf4e830dbc177 files/digest-tightvnc-1.3.8 274 RMD160 da00418fe1031595ec6a5943151b71ac60c5e8cf files/digest-tightvnc-1.3.8 274 SHA256 b5684a8c3ea14d9490e9fe673bb74100da2bd98b86c58dc2332857f4f2885193 files/digest-tightvnc-1.3.8 274 ------BEGIN PGP SIGNATURE----- -Version: GnuPG v2.0.3 (GNU/Linux) - -iD8DBQFGHUzrz974XjDVpbkRAnrBAJ4/b5AGjlj71e2R4IdiGM1wS5C5XQCgyDl9 -oDxKbVlXffccslI/FYHf92s= -=oeal ------END PGP SIGNATURE----- +MD5 bfe15238bfcba463b0abf4e830dbc177 files/digest-tightvnc-1.3.8-r1 274 +RMD160 da00418fe1031595ec6a5943151b71ac60c5e8cf files/digest-tightvnc-1.3.8-r1 274 +SHA256 b5684a8c3ea14d9490e9fe673bb74100da2bd98b86c58dc2332857f4f2885193 files/digest-tightvnc-1.3.8-r1 274 diff --git a/net-misc/tightvnc/files/digest-tightvnc-1.3.8-r1 b/net-misc/tightvnc/files/digest-tightvnc-1.3.8-r1 new file mode 100644 index 000000000000..bc139c537f55 --- /dev/null +++ b/net-misc/tightvnc/files/digest-tightvnc-1.3.8-r1 @@ -0,0 +1,3 @@ +MD5 9b9b0465834289d1b7899982c0096440 tightvnc-1.3.8_unixsrc.tar.bz2 1766473 +RMD160 98013a7074c488d1cfc85ea2d7a9665a05ee2431 tightvnc-1.3.8_unixsrc.tar.bz2 1766473 +SHA256 cd76e1c5c6843fec2a7a5c493158cdb3642eb1ef4caecee7a89bfd2078881178 tightvnc-1.3.8_unixsrc.tar.bz2 1766473 diff --git a/net-misc/tightvnc/files/tightvnc-1.2.9-server-CVE-2007-1003.patch b/net-misc/tightvnc/files/server-CVE-2007-1003.patch similarity index 100% rename from net-misc/tightvnc/files/tightvnc-1.2.9-server-CVE-2007-1003.patch rename to net-misc/tightvnc/files/server-CVE-2007-1003.patch diff --git a/net-misc/tightvnc/files/tightvnc-1.2.9-server-CVE-2007-1351-1352.patch b/net-misc/tightvnc/files/server-CVE-2007-1351-1352.patch similarity index 100% rename from net-misc/tightvnc/files/tightvnc-1.2.9-server-CVE-2007-1351-1352.patch rename to net-misc/tightvnc/files/server-CVE-2007-1351-1352.patch diff --git a/net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild b/net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild index 9b957dc25c12..f59bba714641 100644 --- a/net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild +++ b/net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild @@ -1,6 +1,6 @@ # Copyright 1999-2007 Gentoo Foundation # Distributed under the terms of the GNU General Public License v2 -# $Header: /var/cvsroot/gentoo-x86/net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild,v 1.2 2007/04/11 21:02:23 jokey Exp $ +# $Header: /var/cvsroot/gentoo-x86/net-misc/tightvnc/tightvnc-1.2.9-r4.ebuild,v 1.3 2007/04/11 21:17:04 armin76 Exp $ inherit eutils toolchain-funcs @@ -63,8 +63,8 @@ src_unpack() { epatch "${FILESDIR}/${P}-amd64.patch" epatch "${FILESDIR}/${PN}-ppcsparc-server.patch" epatch "${FILESDIR}/${P}-pathfixes.patch" # fixes bug 78385 and 146099 - epatch "${FILESDIR}"/${P}-server-CVE-2007-1003.patch - epatch "${FILESDIR}"/${P}-server-CVE-2007-1351-1352.patch + epatch "${FILESDIR}"/server-CVE-2007-1003.patch + epatch "${FILESDIR}"/server-CVE-2007-1351-1352.patch } src_compile() { diff --git a/net-misc/tightvnc/tightvnc-1.3.8-r1.ebuild b/net-misc/tightvnc/tightvnc-1.3.8-r1.ebuild new file mode 100644 index 000000000000..db799364de69 --- /dev/null +++ b/net-misc/tightvnc/tightvnc-1.3.8-r1.ebuild @@ -0,0 +1,110 @@ +# Copyright 1999-2007 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/net-misc/tightvnc/tightvnc-1.3.8-r1.ebuild,v 1.1 2007/04/11 21:17:04 armin76 Exp $ + +inherit eutils toolchain-funcs + +IUSE="java tcpd server" + +S="${WORKDIR}/vnc_unixsrc" +DESCRIPTION="A great client/server software package allowing remote network access to graphical desktops." +SRC_URI="mirror://sourceforge/vnc-tight/${P}_unixsrc.tar.bz2" +HOMEPAGE="http://www.tightvnc.com/" + +KEYWORDS="~alpha ~amd64 ~hppa ~mips ~ppc ~ppc-macos ~sparc ~x86" +LICENSE="GPL-2" +SLOT="0" + +DEPEND="x11-libs/libX11 + x11-libs/libXaw + x11-libs/libXmu + x11-libs/libXp + x11-libs/libXt + x11-proto/xextproto + x11-proto/xproto + server? ( + x11-proto/inputproto + x11-proto/kbproto + x11-proto/printproto + ) + >=x11-misc/imake-1 + x11-misc/gccmakedep + ~media-libs/jpeg-6b + tcpd? ( >=sys-apps/tcp-wrappers-7.6-r2 ) + !net-misc/vnc" + +RDEPEND="${DEPEND} + server? ( + media-fonts/font-misc-misc + media-fonts/font-cursor-misc + x11-apps/rgb + x11-apps/xauth + x11-apps/xsetroot + ) + java? ( || ( >=virtual/jdk-1.3.1 >=virtual/jre-1.3.1 ) )" + +src_unpack() { + + if ! use server; + then + echo + einfo "The 'server' USE flag will build tightvnc's server." + einfo "If '-server' is chosen only the client is built to save space." + einfo "Stop the build now if you need to add 'server' to USE flags.\n" + ebeep + epause 5 + fi + + unpack ${A} && cd ${S} + epatch "${FILESDIR}/${P}-pathfixes.patch" # fixes bug 78385 and 146099 + epatch "${FILESDIR}/${P}-imake-tmpdir.patch" # fixes bug 23483 + epatch "${FILESDIR}/${P}-darwin.patch" # fixes bug 89908 + use amd64 && epatch "${FILESDIR}/${P}-amd64.patch" # fixes bug 82583 + use mips && epatch "${FILESDIR}/${P}-mips.patch" + epatch "${FILESDIR}"/server-CVE-2007-1003.patch + epatch "${FILESDIR}"/server-CVE-2007-1351-1352.patch + +} + +src_compile() { + xmkmf -a || die "xmkmf failed" + + make CDEBUGFLAGS="${CFLAGS}" World || die + + if use server; then + cd Xvnc && ./configure || die "Configure failed." + if use tcpd; then + local myextra="-lwrap" + use userland_Darwin || myextra="${myextra} -lnss_nis" + make EXTRA_LIBRARIES="${myextra}" \ + CDEBUGFLAGS="${CFLAGS}" \ + EXTRA_DEFINES="-DUSE_LIBWRAP=1" || die + else + make CDEBUGFLAGS="${CFLAGS}" || die + fi + fi + +} + +src_install() { + # the web based interface and the java viewer need the java class files + if use java; then + insinto /usr/share/tightvnc/classes + doins classes/* + fi + + dodir /usr/share/man/man1 /usr/bin + ./vncinstall ${D}/usr/bin ${D}/usr/share/man || die "vncinstall failed" + + if ! use server; then + rm -f ${D}/usr/bin/vncserver + rm -f ${D}/usr/share/man/man1/{Xvnc,vncserver}* + fi + + doicon ${FILESDIR}/vncviewer.png + make_desktop_entry vncviewer vncviewer vncviewer.png Network + + dodoc ChangeLog README WhatsNew + use java && dodoc ${FILESDIR}/README.JavaViewer + newdoc vncviewer/README README.vncviewer +} -- 2.26.2