head 1.6; access; symbols pkgsrc-2026Q1:1.6.0.98 pkgsrc-2026Q1-base:1.6 pkgsrc-2025Q4:1.6.0.96 pkgsrc-2025Q4-base:1.6 pkgsrc-2025Q3:1.6.0.94 pkgsrc-2025Q3-base:1.6 pkgsrc-2025Q2:1.6.0.92 pkgsrc-2025Q2-base:1.6 pkgsrc-2025Q1:1.6.0.90 pkgsrc-2025Q1-base:1.6 pkgsrc-2024Q4:1.6.0.88 pkgsrc-2024Q4-base:1.6 pkgsrc-2024Q3:1.6.0.86 pkgsrc-2024Q3-base:1.6 pkgsrc-2024Q2:1.6.0.84 pkgsrc-2024Q2-base:1.6 pkgsrc-2024Q1:1.6.0.82 pkgsrc-2024Q1-base:1.6 pkgsrc-2023Q4:1.6.0.80 pkgsrc-2023Q4-base:1.6 pkgsrc-2023Q3:1.6.0.78 pkgsrc-2023Q3-base:1.6 pkgsrc-2023Q2:1.6.0.76 pkgsrc-2023Q2-base:1.6 pkgsrc-2023Q1:1.6.0.74 pkgsrc-2023Q1-base:1.6 pkgsrc-2022Q4:1.6.0.72 pkgsrc-2022Q4-base:1.6 pkgsrc-2022Q3:1.6.0.70 pkgsrc-2022Q3-base:1.6 pkgsrc-2022Q2:1.6.0.68 pkgsrc-2022Q2-base:1.6 pkgsrc-2022Q1:1.6.0.66 pkgsrc-2022Q1-base:1.6 pkgsrc-2021Q4:1.6.0.64 pkgsrc-2021Q4-base:1.6 pkgsrc-2021Q3:1.6.0.62 pkgsrc-2021Q3-base:1.6 pkgsrc-2021Q2:1.6.0.60 pkgsrc-2021Q2-base:1.6 pkgsrc-2021Q1:1.6.0.58 pkgsrc-2021Q1-base:1.6 pkgsrc-2020Q4:1.6.0.56 pkgsrc-2020Q4-base:1.6 pkgsrc-2020Q3:1.6.0.54 pkgsrc-2020Q3-base:1.6 pkgsrc-2020Q2:1.6.0.50 pkgsrc-2020Q2-base:1.6 pkgsrc-2020Q1:1.6.0.30 pkgsrc-2020Q1-base:1.6 pkgsrc-2019Q4:1.6.0.52 pkgsrc-2019Q4-base:1.6 pkgsrc-2019Q3:1.6.0.48 pkgsrc-2019Q3-base:1.6 pkgsrc-2019Q2:1.6.0.46 pkgsrc-2019Q2-base:1.6 pkgsrc-2019Q1:1.6.0.44 pkgsrc-2019Q1-base:1.6 pkgsrc-2018Q4:1.6.0.42 pkgsrc-2018Q4-base:1.6 pkgsrc-2018Q3:1.6.0.40 pkgsrc-2018Q3-base:1.6 pkgsrc-2018Q2:1.6.0.38 pkgsrc-2018Q2-base:1.6 pkgsrc-2018Q1:1.6.0.36 pkgsrc-2018Q1-base:1.6 pkgsrc-2017Q4:1.6.0.34 pkgsrc-2017Q4-base:1.6 pkgsrc-2017Q3:1.6.0.32 pkgsrc-2017Q3-base:1.6 pkgsrc-2017Q2:1.6.0.28 pkgsrc-2017Q2-base:1.6 pkgsrc-2017Q1:1.6.0.26 pkgsrc-2017Q1-base:1.6 pkgsrc-2016Q4:1.6.0.24 pkgsrc-2016Q4-base:1.6 pkgsrc-2016Q3:1.6.0.22 pkgsrc-2016Q3-base:1.6 pkgsrc-2016Q2:1.6.0.20 pkgsrc-2016Q2-base:1.6 pkgsrc-2016Q1:1.6.0.18 pkgsrc-2016Q1-base:1.6 pkgsrc-2015Q4:1.6.0.16 pkgsrc-2015Q4-base:1.6 pkgsrc-2015Q3:1.6.0.14 pkgsrc-2015Q3-base:1.6 pkgsrc-2015Q2:1.6.0.12 pkgsrc-2015Q2-base:1.6 pkgsrc-2015Q1:1.6.0.10 pkgsrc-2015Q1-base:1.6 pkgsrc-2014Q4:1.6.0.8 pkgsrc-2014Q4-base:1.6 pkgsrc-2014Q3:1.6.0.6 pkgsrc-2014Q3-base:1.6 pkgsrc-2014Q2:1.6.0.4 pkgsrc-2014Q2-base:1.6 pkgsrc-2014Q1:1.6.0.2 pkgsrc-2014Q1-base:1.6 pkgsrc-2013Q4:1.5.0.50 pkgsrc-2013Q4-base:1.5 pkgsrc-2013Q3:1.5.0.48 pkgsrc-2013Q3-base:1.5 pkgsrc-2013Q2:1.5.0.46 pkgsrc-2013Q2-base:1.5 pkgsrc-2013Q1:1.5.0.44 pkgsrc-2013Q1-base:1.5 pkgsrc-2012Q4:1.5.0.42 pkgsrc-2012Q4-base:1.5 pkgsrc-2012Q3:1.5.0.40 pkgsrc-2012Q3-base:1.5 pkgsrc-2012Q2:1.5.0.38 pkgsrc-2012Q2-base:1.5 pkgsrc-2012Q1:1.5.0.36 pkgsrc-2012Q1-base:1.5 pkgsrc-2011Q4:1.5.0.34 pkgsrc-2011Q4-base:1.5 pkgsrc-2011Q3:1.5.0.32 pkgsrc-2011Q3-base:1.5 pkgsrc-2011Q2:1.5.0.30 pkgsrc-2011Q2-base:1.5 pkgsrc-2011Q1:1.5.0.28 pkgsrc-2011Q1-base:1.5 pkgsrc-2010Q4:1.5.0.26 pkgsrc-2010Q4-base:1.5 pkgsrc-2010Q3:1.5.0.24 pkgsrc-2010Q3-base:1.5 pkgsrc-2010Q2:1.5.0.22 pkgsrc-2010Q2-base:1.5 pkgsrc-2010Q1:1.5.0.20 pkgsrc-2010Q1-base:1.5 pkgsrc-2009Q4:1.5.0.18 pkgsrc-2009Q4-base:1.5 pkgsrc-2009Q3:1.5.0.16 pkgsrc-2009Q3-base:1.5 pkgsrc-2009Q2:1.5.0.14 pkgsrc-2009Q2-base:1.5 pkgsrc-2009Q1:1.5.0.12 pkgsrc-2009Q1-base:1.5 pkgsrc-2008Q4:1.5.0.10 pkgsrc-2008Q4-base:1.5 pkgsrc-2008Q3:1.5.0.8 pkgsrc-2008Q3-base:1.5 cube-native-xorg:1.5.0.6 cube-native-xorg-base:1.5 pkgsrc-2008Q2:1.5.0.4 pkgsrc-2008Q2-base:1.5 cwrapper:1.5.0.2 pkgsrc-2008Q1:1.4.0.36 pkgsrc-2008Q1-base:1.4 pkgsrc-2007Q4:1.4.0.34 pkgsrc-2007Q4-base:1.4 pkgsrc-2007Q3:1.4.0.32 pkgsrc-2007Q3-base:1.4 pkgsrc-2007Q2:1.4.0.30 pkgsrc-2007Q2-base:1.4 pkgsrc-2007Q1:1.4.0.28 pkgsrc-2007Q1-base:1.4 pkgsrc-2006Q4:1.4.0.26 pkgsrc-2006Q4-base:1.4 pkgsrc-2006Q3:1.4.0.24 pkgsrc-2006Q3-base:1.4 pkgsrc-2006Q2:1.4.0.22 pkgsrc-2006Q2-base:1.4 pkgsrc-2006Q1:1.4.0.20 pkgsrc-2006Q1-base:1.4 pkgsrc-2005Q4:1.4.0.18 pkgsrc-2005Q4-base:1.4 pkgsrc-2005Q3:1.4.0.16 pkgsrc-2005Q3-base:1.4 pkgsrc-2005Q2:1.4.0.14 pkgsrc-2005Q2-base:1.4 pkgsrc-2005Q1:1.4.0.12 pkgsrc-2005Q1-base:1.4 pkgsrc-2004Q4:1.4.0.10 pkgsrc-2004Q4-base:1.4 pkgsrc-2004Q3:1.4.0.8 pkgsrc-2004Q3-base:1.4 pkgsrc-2004Q2:1.4.0.6 pkgsrc-2004Q2-base:1.4 pkgsrc-2004Q1:1.4.0.4 pkgsrc-2004Q1-base:1.4 pkgsrc-2003Q4:1.4.0.2 pkgsrc-2003Q4-base:1.4 buildlink2-base:1.4 netbsd-1-5-PATCH001:1.2 netbsd-1-5-RELEASE:1.2 netbsd-1-4-PATCH003:1.2 netbsd-1-4-PATCH002:1.2 comdex-fall-1999:1.2 netbsd-1-4-PATCH001:1.2 netbsd-1-4-RELEASE:1.2 netbsd-1-3-PATCH003:1.2 netbsd-1-3-PATCH002:1.1.1.1 FreeBSD-current-1998-03-01:1.1.1.1 FREEBSD:1.1.1; locks; strict; comment @# @; 1.6 date 2014.02.08.12.44.05; author wiedi; state Exp; branches; next 1.5; commitid iDDQjALGq6ynqiox; 1.5 date 2008.06.01.21.49.56; author dholland; state Exp; branches; next 1.4; 1.4 date 2002.03.24.03.11.07; author fredb; state dead; branches 1.4.36.1; next 1.3; 1.3 date 2001.06.10.16.37.56; author wiz; state Exp; branches; next 1.2; 1.2 date 98.08.07.10.40.17; author agc; state Exp; branches; next 1.1; 1.1 date 98.03.01.22.34.11; author tron; state Exp; branches 1.1.1.1; next ; 1.4.36.1 date 2008.06.02.11.54.40; author tron; state Exp; branches; next ; 1.1.1.1 date 98.03.01.22.34.11; author tron; state Exp; branches; next ; desc @@ 1.6 log @fix build on SunOS (included paths.h) @ text @$NetBSD: patch-ac,v 1.5 2008/06/01 21:49:56 dholland Exp $ --- unix/uudeview.c.orig 2003-04-12 23:33:55.000000000 +0000 +++ unix/uudeview.c @@@@ -31,6 +31,11 @@@@ #include #include #include +#if defined(__sun) +# define _PATH_TMP "/tmp/" +#else +# include +#endif #ifdef HAVE_FCNTL_H #include @@@@ -440,6 +445,7 @@@@ proc_stdin (void) { static char buffer[1024]; char *stdfile; + int targetfd; FILE *target; size_t bytes; int res; @@@@ -449,11 +455,20 @@@@ proc_stdin (void) return 0; } - if ((stdfile = tempnam (NULL, "uu")) == NULL) { + if ((stdfile = strdup (_PATH_TMP "uu.XXXXXX")) == NULL) { fprintf (stderr, "proc_stdin: cannot get temporary file\n"); return 0; } + if ((targetfd = mkstemp (stdfile)) < 0) { + fprintf (stderr, "proc_stdin: cannot open temp file %s for writing: %s\n", + stdfile, strerror (errno)); + _FP_free (stdfile); + return 0; + } + + /* file now safely exists, reopen it with the right mode */ + close(targetfd); if ((target = fopen (stdfile, "wb")) == NULL) { fprintf (stderr, "proc_stdin: cannot open temp file %s for writing: %s\n", stdfile, strerror (errno)); @ 1.5 log @Fix insecure-temporary-files, as reported in Debian bug 480972. PKGREVISION++. @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 --- unix/uudeview.c.orig 2003-04-12 19:33:55.000000000 -0400 +++ unix/uudeview.c 2008-06-01 17:02:31.000000000 -0400 @@@@ -31,6 +31,7 @@@@ d9 5 a13 1 +#include d17 1 a17 1 @@@@ -440,6 +441,7 @@@@ d25 1 a25 1 @@@@ -449,11 +451,20 @@@@ @ 1.4 log @Update {uulib,uudeview,xdeview} to 0.5.17. 0.5.16 (26.08.2001) -------- - fix handling of "x-uue" encoded MIME attachments - bug fix for file renaming 0.5.17 (06.03.2002) -------- - fix handling of quoted parameters - some support for yEnc encoding @ text @d1 1 a1 1 $NetBSD: patch-ac,v 1.3 2001/06/10 16:37:56 wiz Exp $ d3 40 a42 11 --- man/uudeview.1.orig Mon Jun 4 18:26:56 2001 +++ man/uudeview.1 @@@@ -376,6 +376,8 @@@@ .BR uuenview (1), .BR uudecode (1), .BR uuencode (1), +.BR munpack (1), +.BR metamail (1), .PD 0 .PP The @ 1.4.36.1 log @Pullup ticket #2407 - requested by dholland Security patch for uudeview Revisions pulled up: - converters/uudeview/Makefile 1.28 - converters/uudeview/distinfo 1.8 - converters/uudeview/patches/patch-ac 1.5 --- Module Name: pkgsrc Committed By: dholland Date: Sun Jun 1 21:49:56 UTC 2008 Modified Files: pkgsrc/converters/uudeview: Makefile distinfo Added Files: pkgsrc/converters/uudeview/patches: patch-ac Log Message: Fix insecure-temporary-files, as reported in Debian bug 480972. PKGREVISION++. @ text @d1 1 a1 1 $NetBSD$ d3 11 a13 40 --- unix/uudeview.c.orig 2003-04-12 19:33:55.000000000 -0400 +++ unix/uudeview.c 2008-06-01 17:02:31.000000000 -0400 @@@@ -31,6 +31,7 @@@@ #include #include #include +#include #ifdef HAVE_FCNTL_H #include @@@@ -440,6 +441,7 @@@@ { static char buffer[1024]; char *stdfile; + int targetfd; FILE *target; size_t bytes; int res; @@@@ -449,11 +451,20 @@@@ return 0; } - if ((stdfile = tempnam (NULL, "uu")) == NULL) { + if ((stdfile = strdup (_PATH_TMP "uu.XXXXXX")) == NULL) { fprintf (stderr, "proc_stdin: cannot get temporary file\n"); return 0; } + if ((targetfd = mkstemp (stdfile)) < 0) { + fprintf (stderr, "proc_stdin: cannot open temp file %s for writing: %s\n", + stdfile, strerror (errno)); + _FP_free (stdfile); + return 0; + } + + /* file now safely exists, reopen it with the right mode */ + close(targetfd); if ((target = fopen (stdfile, "wb")) == NULL) { fprintf (stderr, "proc_stdin: cannot open temp file %s for writing: %s\n", stdfile, strerror (errno)); @ 1.3 log @Update to 0.5.15. Changes: Autoclear -- remove files after they have been decoded. Autorename -- rename output files if they already exist. Stricter MIME compatibility, and bugfixes. @ text @d1 1 a1 1 $NetBSD$ @ 1.2 log @Add NetBSD RCS Ids. @ text @d3 3 a5 3 --- ./man/uudeview.1 Sun Jul 21 05:54:38 1996 +++ /usr/devel/ports/uudeview/src/man/uudeview.1 Thu Aug 1 18:03:36 1996 @@@@ -319,6 +319,8 @@@@ a13 1 diff -ud --recursive ./man/uuenview.1 /usr/devel/ports/uudeview/src/man/uuenview.1 @ 1.1 log @Initial revision @ text @d1 2 @ 1.1.1.1 log @Initial import of FreeBSD's "uudeview-0.5.13" port. @ text @@