[packages/t1lib] - fix format string warnings - rel 7

baggins baggins at pld-linux.org
Thu Dec 13 13:48:53 CET 2012 

commit 069e12888705cc8be0061dfdad5e87567f53c61b
Author: Jan Rękorajski <baggins at pld-linux.org>
Date:   Thu Dec 13 13:48:38 2012 +0100

    - fix format string warnings
    - rel 7

 format-security.patch | 22 ++++++++++++++++++++++
 t1lib.spec            |  4 +++-
 2 files changed, 25 insertions(+), 1 deletion(-)
---
diff --git a/t1lib.spec b/t1lib.spec
index eefef88..a03fcb8 100644
--- a/t1lib.spec
+++ b/t1lib.spec
@@ -9,7 +9,7 @@ Summary(ru.UTF-8):	Растеризатор шрифтов Type 1
 Summary(uk.UTF-8):	Растеризатор шрифтів Type 1
 Name:		t1lib
 Version:	5.1.2
-Release:	6
+Release:	7
 License:	GPL v2
 Group:		Libraries
 Source0:	ftp://sunsite.unc.edu/pub/Linux/libs/graphics/%{name}-%{version}.tar.gz
@@ -26,6 +26,7 @@ Patch4:		%{name}-xglyph.patch
 Patch5:		%{name}-aclocal.patch
 Patch6:		%{name}-link.patch
 Patch7:		%{name}-5.1.2-CVE-2010-2642.patch
+Patch8:		format-security.patch
 BuildRequires:	autoconf
 BuildRequires:	automake
 BuildRequires:	libtool
@@ -269,6 +270,7 @@ Program testowy dla t1lib z interfejsem X11.
 %patch5 -p1
 %patch6 -p1
 %patch7 -p1
+%patch8 -p1
 
 rm -f ac-tools/aclocal.m4
 
diff --git a/format-security.patch b/format-security.patch
new file mode 100644
index 0000000..6c196b3
--- /dev/null
+++ b/format-security.patch
@@ -0,0 +1,22 @@
+--- t1lib-5.1.2/lib/type1/objects.h~	2007-12-23 16:49:42.000000000 +0100
++++ t1lib-5.1.2/lib/type1/objects.h	2012-12-13 13:46:42.872059259 +0100
+@@ -214,7 +214,7 @@
+ /*SHARED*/
+ /* NDW: personally, I want to see status and error messages! */
+ #define IfTrace0(condition,model)                                 \
+-        {if (condition) printf(model);}
++        {if (condition) printf("%s",model);}
+ #define IfTrace1(condition,model,arg0)                            \
+         {if (condition) printf(model,arg0);}
+ #define IfTrace2(condition,model,arg0,arg1)                       \
+--- t1lib-5.1.2/lib/t1lib/t1subset.c~	2007-12-23 16:49:42.000000000 +0100
++++ t1lib-5.1.2/lib/t1lib/t1subset.c	2012-12-13 13:47:33.042057487 +0100
+@@ -759,7 +759,7 @@
+ 	     tr_len);
+     T1_PrintLog( "T1_SubsetFont()", err_warn_msg_buf,
+ 		 T1LOG_DEBUG);
+-    l+=sprintf( &(trailerbuf[l]), linebuf); /* contains the PostScript trailer */
++    l+=sprintf( &(trailerbuf[l]), "%s", linebuf); /* contains the PostScript trailer */
+   }
+   
+   /* compute size of output file */
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/t1lib.git/commitdiff/069e12888705cc8be0061dfdad5e87567f53c61b

More information about the pld-cvs-commit mailing list