a2ps/patches/12_fix-format-security.patch

	12_fix-format-security.patch revision 6895
6895N/A(Part of this patch was the .../a2ps/patches/22564022.patch file).
6895N/A
6895N/AThis patch has been taken from community and it addresses format string
6895N/Avulnerabilities in a2ps component.
6895N/A
6895N/AOriginal link:
6895N/Ahttp://www.openwall.com/lists/oss-security/2015/11/16/4
6895N/A
6895N/AThis turned into CVE-2015-8107:
6895N/A
6895N/ASee:
6895N/A
6895N/A  http://seclists.org/oss-sec/2015/q4/284
6895N/A  https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-8107
6895N/A
6895N/Afor more information.
6895N/A
6895N/AIndex: b/lib/psgen.c
6895N/A===================================================================
6895N/A--- a/lib/psgen.c
6895N/A+++ b/lib/psgen.c
6895N/A@@ -232,7 +232,7 @@
6895N/A     default:
6895N/A       *buf = '\0';
6895N/A       ps_escape_char (job, cp[i], buf);
6895N/A-      output (jdiv, (char *) buf);
6895N/A+      output (jdiv, "%s", (char *) buf);
6895N/A       break;
6895N/A     }
6895N/A   }
6895N/AIndex: b/lib/output.c
6895N/A===================================================================
6895N/A--- a/lib/output.c
6895N/A+++ b/lib/output.c
6895N/A@@ -525,7 +525,7 @@
6895N/A             expand_user_string (job, FIRST_FILE (job),
6895N/A                     (const uchar *) "Expand: requirement",
6895N/A                     (const uchar *) token));
6895N/A-   output (dest, expansion);
6895N/A+   output (dest, "%s", expansion);
6895N/A    continue;
6895N/A       }
6895N/A
6895N/AIndex: b/lib/parseppd.y
6895N/A===================================================================
6895N/A--- a/lib/parseppd.y
6895N/A+++ b/lib/parseppd.y
6895N/A@@ -154,7 +154,7 @@
6895N/A void
6895N/A yyerror (const char *msg)
6895N/A {
6895N/A-  error_at_line (1, 0, ppdfilename, ppdlineno, msg);
6895N/A+  error_at_line (1, 0, ppdfilename, ppdlineno, "%s", msg);
6895N/A }
6895N/A
6895N/A /*
6895N/AIndex: b/src/parsessh.y
6895N/A===================================================================
6895N/A--- a/src/parsessh.y
6895N/A+++ b/src/parsessh.y
6895N/A@@ -740,7 +740,7 @@
6895N/A void
6895N/A yyerror (const char *msg)
6895N/A {
6895N/A-  error_at_line (1, 0, sshfilename, sshlineno, msg);
6895N/A+  error_at_line (1, 0, sshfilename, sshlineno, "%s", msg);
6895N/A }
6895N/A
6895N/A /*
6895N/AIndex: b/lib/parseppd.c
6895N/A===================================================================
6895N/A--- a/lib/parseppd.c
6895N/A+++ b/lib/parseppd.c
6895N/A@@ -1707,7 +1707,7 @@
6895N/A void
6895N/A yyerror (const char *msg)
6895N/A {
6895N/A-  error_at_line (1, 0, ppdfilename, ppdlineno, msg);
6895N/A+  error_at_line (1, 0, ppdfilename, ppdlineno, "%s", msg);
6895N/A }
6895N/A
6895N/A /*
6895N/AIndex: b/src/parsessh.c
6895N/A===================================================================
6895N/A--- a/src/parsessh.c
6895N/A+++ b/src/parsessh.c
6895N/A@@ -2639,7 +2639,7 @@
6895N/A void
6895N/A yyerror (const char *msg)
6895N/A {
6895N/A-  error_at_line (1, 0, sshfilename, sshlineno, msg);
6895N/A+  error_at_line (1, 0, sshfilename, sshlineno, "%s", msg);
6895N/A }
6895N/A
6895N/A /*