[packages/flow-tools] - fix format string errors - rel 5

Sun Mar 18 23:20:44 CET 2018

commit 0672eb7c84327cc6e7e7ce416cb2915c88a86419
Author: Jan Rękorajski <baggins at pld-linux.org>
Date:   Sun Mar 18 23:20:22 2018 +0100

    - fix format string errors
    - rel 5

 flow-tools.spec       |  5 +++--
 format-security.patch | 47 +++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 50 insertions(+), 2 deletions(-)
---

diff --git a/flow-tools.spec b/flow-tools.spec
index 1750a86..e291c01 100644
--- a/flow-tools.spec
+++ b/flow-tools.spec
@@ -2,12 +2,13 @@ Summary:	Collecting and processing NetFlow data
 Summary(pl.UTF-8):	Gromadzenie i przetwarzanie informacji o przepływie w sieci
 Name:		flow-tools
 Version:	0.68.5
-Release:	4
+Release:	5
 License:	BSD
 Group:		Applications/Networking
 Source0:	http://flow-tools.googlecode.com/files/%{name}-%{version}.tar.bz2
 # Source0-md5:	3c5e75da2822ab6b4947c928c09ea365
 Patch0:		%{name}-shebang.patch
+Patch1:		format-security.patch
 URL:		http://code.google.com/p/flow-tools/
 BuildRequires:	autoconf
 BuildRequires:	automake
@@ -69,8 +70,8 @@ Statyczna biblioteka flow-tools.
 
 %prep
 %setup -q
-
 %patch0 -p1
+%patch1 -p1
 
 %build
 %{__libtoolize}
diff --git a/format-security.patch b/format-security.patch
new file mode 100644
index 0000000..aa10cda
--- /dev/null
+++ b/format-security.patch
@@ -0,0 +1,47 @@
+--- flow-tools-0.68.5/lib/fterr.c~	2008-01-27 21:48:49.000000000 +0100
++++ flow-tools-0.68.5/lib/fterr.c	2018-03-18 23:16:48.649159418 +0100
+@@ -112,7 +112,7 @@
+     fprintf(((fterr_file) ? fterr_file : stderr), "%s\n", buf2);
+ 
+   if (fterr_flags & FTERR_SYSLOG)
+-    syslog(LOG_INFO, buf);
++    syslog(LOG_INFO, "%s" ,buf);
+ 
+ } /* fterr_info */
+ 
+@@ -134,7 +134,7 @@
+ 
+   if (fterr_flags & FTERR_SYSLOG) {
+     snprintf(buf2, 1024, "%s: %s", buf, strerror(errno));
+-    syslog(LOG_INFO, buf2);
++    syslog(LOG_INFO, "%s", buf2);
+   }
+ 
+   if (fterr_exit)
+@@ -159,7 +159,7 @@
+   }
+ 
+   if (fterr_flags & FTERR_SYSLOG)
+-    syslog(LOG_INFO, buf);
++    syslog(LOG_INFO, "%s", buf);
+ 
+   if (fterr_exit)
+     fterr_exit(code);
+@@ -183,7 +183,7 @@
+   }
+ 
+   if (fterr_flags & FTERR_SYSLOG)
+-    syslog(LOG_INFO, buf);
++    syslog(LOG_INFO, "%s", buf);
+ 
+ } /* fterr_warnx */
+ 
+@@ -205,7 +205,7 @@
+ 
+   if (fterr_flags & FTERR_SYSLOG) {
+     snprintf(buf2, 1024, "%s: %s", buf, strerror(errno));
+-    syslog(LOG_INFO, buf2);
++    syslog(LOG_INFO, "%s", buf2);
+   }
+ 
+ } /* fterr_warn */
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/flow-tools.git/commitdiff/0672eb7c84327cc6e7e7ce416cb2915c88a86419

