Home Explore Help
Sign In
openpkg
/
openpkg-packages
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0
Tree: 7d38804772
Branches Tags
openpkg-pack...
/
enscript
/
enscript.patch

enscript.patch 11 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394 
  1. Security bugfixes (CAN-2004-1184, CAN-2004-1185, CAN-2004-1186)
    2. 

  2. and some additional non-security bugfixes.
    3. 

  3. 

  4. Index: compat/regex.c
    5. 

  5. --- compat/regex.c.orig	1998-10-20 15:39:02 +0200
    6. 

  6. +++ compat/regex.c	2005-02-05 09:50:45 +0100
    7. 

  7. @@ -2400,11 +2400,13 @@
    8. 

  8.              case ')':
    9. 

  9.                if (syntax & RE_NO_BK_PARENS) goto normal_backslash;
    10. 

  10.  
    11. 

  11. -              if (COMPILE_STACK_EMPTY)
    12. 

  12. -                if (syntax & RE_UNMATCHED_RIGHT_PAREN_ORD)
    13. 

  13. +              if (COMPILE_STACK_EMPTY) {
    14. 

  14. +                if (syntax & RE_UNMATCHED_RIGHT_PAREN_ORD) {
    15. 

  15.                    goto normal_backslash;
    16. 

  16. -                else
    17. 

  17. +		} else {
    18. 

  18.                    FREE_STACK_RETURN (REG_ERPAREN);
    19. 

  19. +		}  
    20. 

  20. +	      }	
    21. 

  21.  
    22. 

  22.              handle_close:
    23. 

  23.                if (fixup_alt_jump)
    24. 

  24. @@ -2420,11 +2422,13 @@
    25. 

  25.                  }
    26. 

  26.  
    27. 

  27.                /* See similar code for backslashed left paren above.  */
    28. 

  28. -              if (COMPILE_STACK_EMPTY)
    29. 

  29. -                if (syntax & RE_UNMATCHED_RIGHT_PAREN_ORD)
    30. 

  30. +              if (COMPILE_STACK_EMPTY) {
    31. 

  31. +                if (syntax & RE_UNMATCHED_RIGHT_PAREN_ORD) {
    32. 

  32.                    goto normal_char;
    33. 

  33. -                else
    34. 

  34. +		} else {
    35. 

  35.                    FREE_STACK_RETURN (REG_ERPAREN);
    36. 

  36. +		}
    37. 

  37. +	      }	
    38. 

  38.  
    39. 

  39.                /* Since we just checked for an empty stack above, this
    40. 

  40.                   ``can't happen''.  */
    41. 

  41. Index: docs/Makefile.in
    42. 

  42. --- docs/Makefile.in.orig	2002-01-24 08:39:44 +0100
    43. 

  43. +++ docs/Makefile.in	2005-02-05 09:50:45 +0100
    44. 

  44. @@ -284,7 +284,7 @@
    45. 

  45.  	  enscript.fns enscript.ky enscript.kys enscript.ps \
    46. 

  46.  	  enscript.log enscript.pg enscript.toc enscript.tp \
    47. 

  47.  	  enscript.tps enscript.vr enscript.vrs enscript.op enscript.tr \
    48. 

  48. -	  enscript.cv enscript.cn
    49. 

  49. +	  enscript.cv enscript.cn enscript.1 states.1
    50. 

  50.  
    51. 

  51.  clean-aminfo:
    52. 

  52.  
    53. 

  53. Index: docs/enscript.man
    54. 

  54. --- docs/enscript.man.orig	2000-11-30 07:55:31 +0100
    55. 

  55. +++ docs/enscript.man	2005-02-05 09:50:45 +0100
    56. 

  56. @@ -118,7 +118,7 @@
    57. 

  57.  The header string \f2header\f1 can contain the same formatting escapes
    58. 

  58.  which can be specified for the \f3%Format\f1 directives in the user
    59. 

  59.  defined fancy headers.  For example, the following option prints the
    60. 

  60. -file name, current data and page numbers:
    61. 

  61. +file name, current date and page numbers:
    62. 

  62.  
    63. 

  63.  \f3enscript \-\-header='$n %W Page $% of $=' *.c\f1
    64. 

  64.  
    65. 

  65. Index: lib/enscript-color.hdr
    66. 

  66. --- lib/enscript-color.hdr.orig	1998-12-29 09:40:47 +0100
    67. 

  67. +++ lib/enscript-color.hdr	2005-02-05 09:50:45 +0100
    68. 

  68. @@ -27,8 +27,8 @@
    69. 

  69.  
    70. 

  70.  % -- code follows this line --
    71. 

  71.  %%DocumentNeededResources: font Times-Bold Times-Roman
    72. 

  72. -%Format: moddatestr	$W
    73. 

  73. -%Format: modtimestr	$C
    74. 

  74. +%Format: moddatestr	$D{%x}
    75. 

  75. +%Format: modtimestr	$D{%X}
    76. 

  76.  %Format: pagenumstr	$%
    77. 

  77.  %Format: pagecountstr	/$=
    78. 

  78.  
    79. 

  79. Index: lib/enscript.hdr
    80. 

  80. --- lib/enscript.hdr.orig	1997-03-03 09:20:34 +0100
    81. 

  81. +++ lib/enscript.hdr	2005-02-05 09:50:45 +0100
    82. 

  82. @@ -25,8 +25,8 @@
    83. 

  83.  
    84. 

  84.  % -- code follows this line --
    85. 

  85.  %%DocumentNeededResources: font Times-Bold Times-Roman
    86. 

  86. -%Format: moddatestr	$W
    87. 

  87. -%Format: modtimestr	$C
    88. 

  88. +%Format: moddatestr	$D{%x}
    89. 

  89. +%Format: modtimestr	$D{%X}
    90. 

  90.  %Format: pagenumstr	$%
    91. 

  91.  
    92. 

  92.  % Fonts.
    93. 

  93. Index: src/gsint.h
    94. 

  94. --- src/gsint.h.orig	2000-07-11 17:28:06 +0200
    95. 

  95. +++ src/gsint.h	2005-02-05 09:50:45 +0100
    96. 

  96. @@ -701,4 +701,9 @@
    97. 

  97.   */
    98. 

  98.  void printer_close ___P ((void *context));
    99. 

  99.  
    100. 

  100. +/*
    101. 

  101. + * Escape filenames for shell usage
    102. 

  102. + */
    103. 

  103. +char *shell_escape ___P ((const char *fn));
    104. 

  104. +
    105. 

  105.  #endif /* not GSINT_H */
    106. 

  106. Index: src/main.c
    107. 

  107. --- src/main.c.orig	2002-01-24 08:35:45 +0100
    108. 

  108. +++ src/main.c	2005-02-05 09:50:45 +0100
    109. 

  109. @@ -973,6 +973,8 @@
    110. 

  110.     */
    111. 

  111.  #if HAVE_LC_MESSAGES
    112. 

  112.    setlocale (LC_MESSAGES, "");
    113. 

  113. +  setlocale (LC_CTYPE, "");
    114. 

  114. +  setlocale (LC_TIME, "");
    115. 

  115.  #endif
    116. 

  116.  #endif
    117. 

  117.  #if ENABLE_NLS
    118. 

  118. @@ -1546,9 +1548,13 @@
    119. 

  119.        buffer_append (&cmd, intbuf);
    120. 

  120.        buffer_append (&cmd, " ");
    121. 

  121.  
    122. 

  122. -      buffer_append (&cmd, "-Ddocument_title=\"");
    123. 

  123. -      buffer_append (&cmd, title);
    124. 

  124. -      buffer_append (&cmd, "\" ");
    125. 

  125. +      buffer_append (&cmd, "-Ddocument_title=\'");
    126. 

  126. +      if ((cp = shell_escape (title)) != NULL)
    127. 

  127. +	{
    128. 

  128. +	  buffer_append (&cmd, cp);
    129. 

  129. +	  free (cp);
    130. 

  130. +	}
    131. 

  131. +      buffer_append (&cmd, "\' ");
    132. 

  132.  
    133. 

  133.        buffer_append (&cmd, "-Dtoc=");
    134. 

  134.        buffer_append (&cmd, toc ? "1" : "0");
    135. 

  135. @@ -1565,8 +1571,14 @@
    136. 

  136.        /* Append input files. */
    137. 

  137.        for (i = optind; i < argc; i++)
    138. 

  138.  	{
    139. 

  139. -	  buffer_append (&cmd, " ");
    140. 

  140. -	  buffer_append (&cmd, argv[i]);
    141. 

  141. +	  char *cp;
    142. 

  142. +	  if ((cp = shell_escape (argv[i])) != NULL)
    143. 

  143. +	    {
    144. 

  144. +	      buffer_append (&cmd, " \'");
    145. 

  145. +	      buffer_append (&cmd, cp);
    146. 

  146. +	      buffer_append (&cmd, "\'");
    147. 

  147. +	      free (cp);
    148. 

  148. +	    }
    149. 

  149.  	}
    150. 

  150.  
    151. 

  151.        /* And do the job. */
    152. 

  152. @@ -1627,7 +1639,7 @@
    153. 

  153.  				 buffer_ptr (opts), buffer_len (opts));
    154. 

  154.  	    }
    155. 

  155.  
    156. 

  156. -	  buffer_append (&buffer, " \"%s\"");
    157. 

  157. +	  buffer_append (&buffer, " \'%s\'");
    158. 

  158.  
    159. 

  159.  	  input_filter = buffer_copy (&buffer);
    160. 

  160.  	  input_filter_stdin = "-";
    161. 

  161. Index: src/mkafmmap.c
    162. 

  162. --- src/mkafmmap.c.orig	1997-07-03 13:14:59 +0200
    163. 

  163. +++ src/mkafmmap.c	2005-02-05 09:50:45 +0100
    164. 

  164. @@ -126,6 +126,7 @@
    165. 

  165.  #if HAVE_SETLOCALE
    166. 

  166.  #if HAVE_LC_MESSAGES
    167. 

  167.    setlocale (LC_MESSAGES, "");
    168. 

  168. +  setlocale (LC_CTYPE, "");
    169. 

  169.  #endif
    170. 

  170.  #endif
    171. 

  171.  #if ENABLE_NLS
    172. 

  172. Index: src/psgen.c
    173. 

  173. --- src/psgen.c.orig	2002-01-24 08:38:58 +0100
    174. 

  174. +++ src/psgen.c	2005-02-05 09:50:45 +0100
    175. 

  175. @@ -2034,8 +2034,9 @@
    176. 

  176.    else
    177. 

  177.      {
    178. 

  178.        ftail++;
    179. 

  179. -      strncpy (buf, fname, ftail - fname);
    180. 

  180. -      buf[ftail - fname] = '\0';
    181. 

  181. +      i = ftail - fname >= sizeof (buf)-1 ? sizeof (buf)-1 : ftail - fname;
    182. 

  182. +      strncpy (buf, fname, i);
    183. 

  183. +      buf[i] = '\0';
    184. 

  184.      }
    185. 

  185.  
    186. 

  186.    if (nup > 1)
    187. 

  187. @@ -2385,9 +2386,10 @@
    188. 

  188.    MESSAGE (2, (stderr, "^@epsf=\"%s\"\n", token->u.epsf.filename));
    189. 

  189.  
    190. 

  190.    i = strlen (token->u.epsf.filename);
    191. 

  191. +  /*
    192. 

  192.    if (i > 0 && token->u.epsf.filename[i - 1] == '|')
    193. 

  193.      {
    194. 

  194. -      /* Read EPS data from pipe. */
    195. 

  195. +      / * Read EPS data from pipe. * /
    196. 

  196.        token->u.epsf.pipe = 1;
    197. 

  197.        token->u.epsf.filename[i - 1] = '\0';
    198. 

  198.        token->u.epsf.fp = popen (token->u.epsf.filename, "r");
    199. 

  199. @@ -2400,6 +2402,7 @@
    200. 

  200.  	}
    201. 

  201.      }
    202. 

  202.    else
    203. 

  203. +  */
    204. 

  204.      {
    205. 

  205.        char *filename;
    206. 

  206.  
    207. 

  207. @@ -2581,7 +2584,7 @@
    208. 

  208.  read_float (InputStream *is, int units, int horizontal)
    209. 

  209.  {
    210. 

  210.    char buf[256];
    211. 

  211. -  int i, ch;
    212. 

  212. +  int i, ch = 0;
    213. 

  213.    double val;
    214. 

  214.  
    215. 

  215.    for (i = 0; (i < sizeof (buf) - 1
    216. 

  216. Index: src/util.c
    217. 

  217. --- src/util.c.orig	1999-09-17 17:26:51 +0200
    218. 

  218. +++ src/util.c	2005-02-05 09:59:00 +0100
    219. 

  219. @@ -1239,6 +1239,8 @@
    220. 

  220.  
    221. 

  221.    /* Create result. */
    222. 

  222.    cp = xmalloc (len + 1);
    223. 

  223. +  if (cp == NULL)
    224. 

  224. +      return NULL;
    225. 

  225.    for (i = 0, j = 0; string[i]; i++)
    226. 

  226.      switch (string[i])
    227. 

  227.        {
    228. 

  228. @@ -1879,6 +1881,7 @@
    229. 

  229.        char *cmd = NULL;
    230. 

  230.        int cmdlen;
    231. 

  231.        int i, pos;
    232. 

  232. +      char *cp;
    233. 

  233.  
    234. 

  234.        is->is_pipe = 1;
    235. 

  235.  
    236. 

  236. @@ -1902,12 +1905,16 @@
    237. 

  237.  		{
    238. 

  238.  		case 's':
    239. 

  239.  		  /* Expand cmd-buffer. */
    240. 

  240. -		  cmdlen += strlen (fname);
    241. 

  241. -		  cmd = xrealloc (cmd, cmdlen);
    242. 

  242. +		  if ((cp = shell_escape (fname)) != NULL)
    243. 

  243. +		    {
    244. 

  244. +		      cmdlen += strlen (cp);
    245. 

  245. +		      cmd = xrealloc (cmd, cmdlen);
    246. 

  246.  
    247. 

  247. -		  /* Paste filename. */
    248. 

  248. -		  strcpy (cmd + pos, fname);
    249. 

  249. -		  pos += strlen (fname);
    250. 

  250. +		      /* Paste filename. */
    251. 

  251. +		      strcpy (cmd + pos, cp);
    252. 

  252. +		      pos += strlen (cp);
    253. 

  253. +		      free (cp);
    254. 

  254. +		    }
    255. 

  255.  
    256. 

  256.  		  i++;
    257. 

  257.  		  break;
    258. 

  258. @@ -1991,12 +1998,13 @@
    259. 

  259.    if (is->bufpos >= is->data_in_buf)
    260. 

  260.      {
    261. 

  261.        /* At the EOF? */
    262. 

  262. -      if (is->nreads > 0 && is->data_in_buf < sizeof (is->buf))
    263. 

  263. +      if (is->nreads > 0 && is->data_in_buf < sizeof (is->buf)-1)
    264. 

  264.  	/* Yes. */
    265. 

  265.  	return EOF;
    266. 

  266.  
    267. 

  267.        /* Read more data. */
    268. 

  268. -      is->data_in_buf = fread (is->buf, 1, sizeof (is->buf), is->fp);
    269. 

  269. +      memset (is->buf, 0, sizeof (is->buf));
    270. 

  270. +      is->data_in_buf = fread (is->buf, 1, sizeof (is->buf)-1, is->fp);
    271. 

  271.        is->bufpos = 0;
    272. 

  272.        is->nreads++;
    273. 

  273.  
    274. 

  274. @@ -2116,3 +2124,36 @@
    275. 

  275.  {
    276. 

  276.    return buffer->len;
    277. 

  277.  }
    278. 

  278. +
    279. 

  279. +/*
    280. 

  280. + * Escapes the name of a file so that the shell groks it in 'single'
    281. 

  281. + * quotation marks.  The resulting pointer has to be free()ed when not
    282. 

  282. + * longer used.
    283. 

  283. +*/
    284. 

  284. +char *
    285. 

  285. +shell_escape(const char *fn)
    286. 

  286. +{
    287. 

  287. +  size_t len = 0;
    288. 

  288. +  const char *inp;
    289. 

  289. +  char *retval, *outp;
    290. 

  290. +
    291. 

  291. +  for(inp = fn; *inp; ++inp)
    292. 

  292. +    switch(*inp)
    293. 

  293. +    {
    294. 

  294. +      case '\'': len += 4; break;
    295. 

  295. +      default:   len += 1; break;
    296. 

  296. +    }
    297. 

  297. +
    298. 

  298. +  outp = retval = malloc(len + 1);
    299. 

  299. +  if(!outp)
    300. 

  300. +    return NULL; /* perhaps one should do better error handling here */
    301. 

  301. +  for(inp = fn; *inp; ++inp)
    302. 

  302. +    switch(*inp)
    303. 

  303. +    {
    304. 

  304. +      case '\'': *outp++ = '\''; *outp++ = '\\'; *outp++ = '\'', *outp++ = '\''; break;
    305. 

  305. +      default:   *outp++ = *inp; break;
    306. 

  306. +    }
    307. 

  307. +  *outp = 0;
    308. 

  308. +
    309. 

  309. +  return retval;
    310. 

  310. +}
    311. 

  311. Index: states/main.c
    312. 

  312. --- states/main.c.orig	2000-11-30 07:40:17 +0100
    313. 

  313. +++ states/main.c	2005-02-05 09:50:45 +0100
    314. 

  314. @@ -202,6 +202,7 @@
    315. 

  315.  #if HAVE_SETLOCALE
    316. 

  316.  #if HAVE_LC_MESSAGES
    317. 

  317.    setlocale (LC_MESSAGES, "");
    318. 

  318. +  setlocale (LC_CTYPE, "");
    319. 

  319.  #endif
    320. 

  320.  #endif
    321. 

  321.  #if ENABLE_NLS
    322. 

  322. Index: states/over.in
    323. 

  323. --- states/over.in.orig	1997-03-19 11:24:49 +0100
    324. 

  324. +++ states/over.in	2005-02-05 09:50:45 +0100
    325. 

  325. @@ -2,4 +2,4 @@
    326. 

  326.  
    327. 

  327.  librarydir=@LIBRARYDIR@
    328. 

  328.  
    329. 

  329. -enscript -E -p- --quiet --language=overstrike $* 2>&1 | less
    330. 

  330. +enscript -E -p- --quiet --language=overstrike "$@" 2>&1 | sensible-pager
    331. 

  331. Index: afm/Makefile.in
    332. 

  332. --- afm/Makefile.in.orig	2002-01-24 08:39:24 +0100
    333. 

  333. +++ afm/Makefile.in	2005-02-05 10:04:31 +0100
    334. 

  334. @@ -227,10 +227,10 @@
    335. 

  335.  
    336. 

  336.  
    337. 

  337.  install-data-local:
    338. 

  338. -	$(top_srcdir)/mkinstalldirs $(datadir)/enscript
    339. 

  339. -	$(top_srcdir)/mkinstalldirs $(datadir)/enscript/afm
    340. 

  340. +	$(top_srcdir)/mkinstalldirs $(DESTDIR)$(datadir)/enscript
    341. 

  341. +	$(top_srcdir)/mkinstalldirs $(DESTDIR)$(datadir)/enscript/afm
    342. 

  342.  	for f in $(EXTRA_DIST); do \
    343. 

  343. -	  $(INSTALL_DATA) $(srcdir)/$$f $(datadir)/enscript/afm/$$f; \
    344. 

  344. +	  $(INSTALL_DATA) $(srcdir)/$$f $(DESTDIR)$(datadir)/enscript/afm/$$f; \
    345. 

  345.  	done
    346. 

  346.  
    347. 

  347.  uninstall-local:
    348. 

  348. Index: lib/Makefile.in
    349. 

  349. --- lib/Makefile.in.orig	2002-01-24 08:39:27 +0100
    350. 

  350. +++ lib/Makefile.in	2005-02-05 10:07:31 +0100
    351. 

  351. @@ -254,15 +254,15 @@
    352. 

  352.  all-local: enscript.cfg
    353. 

  353.  
    354. 

  354.  install-data-local: enscript.cfg
    355. 

  355. -	$(top_srcdir)/mkinstalldirs $(sysconfdir)
    356. 

  356. -	if test -r $(sysconfdir)/enscript.cfg; then \
    357. 

  357. -	  cp $(sysconfdir)/enscript.cfg $(sysconfdir)/enscript.cfg.old; \
    358. 

  358. +	$(top_srcdir)/mkinstalldirs $(DESTDIR)$(sysconfdir)
    359. 

  359. +	if test -r $(DESTDIR)$(sysconfdir)/enscript.cfg; then \
    360. 

  360. +	  cp $(DESTDIR)$(sysconfdir)/enscript.cfg $(DESTDIR)$(sysconfdir)/enscript.cfg.old; \
    361. 

  361.  	else :; \
    362. 

  362.  	fi
    363. 

  363. -	$(INSTALL_DATA) enscript.cfg $(sysconfdir)/enscript.cfg
    364. 

  364. +	$(INSTALL_DATA) enscript.cfg $(DESTDIR)$(sysconfdir)/enscript.cfg
    365. 

  365.  
    366. 

  366.  uninstall-local:
    367. 

  367. -	rm -f $(sysconfdir)/enscript.cfg
    368. 

  368. +	rm -f $(DESTDIR)$(sysconfdir)/enscript.cfg
    369. 

  369.  
    370. 

  370.  enscript.cfg: $(srcdir)/enscript.cfg.in Makefile
    371. 

  371.  	sed 's%@DATADIR@%$(datadir)%g; s%@media@%@MEDIA@%g; s%@BINDIR@%$(bindir)%g; s%@spooler@%@SPOOLER@%g; s%@pslevel@%@PSLEVEL@%g; s%@queueparam@%@QUEUEPARAM@%g' \
    372. 

  372. Index: states/hl/Makefile.in
    373. 

  373. --- states/hl/Makefile.in.orig	2002-01-24 08:39:40 +0100
    374. 

  374. +++ states/hl/Makefile.in	2005-02-05 14:17:13 +0100
    375. 

  375. @@ -234,14 +234,14 @@
    376. 

  376.  
    377. 

  377.  
    378. 

  378.  install-data-local:
    379. 

  379. -	$(top_srcdir)/mkinstalldirs $(datadir)/enscript
    380. 

  380. -	$(top_srcdir)/mkinstalldirs $(datadir)/enscript/hl
    381. 

  381. +	$(top_srcdir)/mkinstalldirs $(DESTDIR)$(datadir)/enscript
    382. 

  382. +	$(top_srcdir)/mkinstalldirs $(DESTDIR)$(datadir)/enscript/hl
    383. 

  383.  	for f in $(states); do \
    384. 

  384. -	  $(INSTALL_DATA) $(srcdir)/$$f $(datadir)/enscript/hl/$$f; \
    385. 

  385. +	  $(INSTALL_DATA) $(srcdir)/$$f $(DESTDIR)$(datadir)/enscript/hl/$$f; \
    386. 

  386.  	done
    387. 

  387.  
    388. 

  388.  uninstall-local:
    389. 

  389. -	rm -rf $(datadir)/enscript/hl
    390. 

  390. +	rm -rf $(DESTDIR)$(datadir)/enscript/hl
    391. 

  391.  
    392. 

  392.  # Tell versions [3.59,3.63) of GNU make to not export all variables.
    393. 

  393.  # Otherwise a system limit (for SysV at least) may be exceeded.
    394. 

  394.