r1086 - in trunk/BOOK: . final-system/common final-system/multilib materials/common

chris at linuxfromscratch.org chris at linuxfromscratch.org
Thu Jan 19 11:20:09 PST 2006


Author: chris
Date: 2006-01-19 12:20:08 -0700 (Thu, 19 Jan 2006)
New Revision: 1086

Modified:
   trunk/BOOK/final-system/common/perl.xml
   trunk/BOOK/final-system/multilib/perl-64bit.xml
   trunk/BOOK/materials/common/patches.xml
   trunk/BOOK/patches.ent
Log:
Added perl security patch, and removed one more reference to the shadow patch

Modified: trunk/BOOK/final-system/common/perl.xml
===================================================================
--- trunk/BOOK/final-system/common/perl.xml	2006-01-19 17:19:02 UTC (rev 1085)
+++ trunk/BOOK/final-system/common/perl.xml	2006-01-19 19:20:08 UTC (rev 1086)
@@ -34,6 +34,10 @@
   <sect2 role="installation">
     <title>Installation of Perl</title>
 
+<para os="p1">This patch corrects a vulnerability in sprintf:</para>
+
+<screen os="p2"><userinput>patch -Np1 -i ../&perl-sprintf-patch;</userinput></screen>
+
     <para os="a00">Before starting to configure, create a basic
     <filename>/etc/hosts</filename> file which will be referenced in one
     of Perl's configuration files as well as being used used by the testsuite

Modified: trunk/BOOK/final-system/multilib/perl-64bit.xml
===================================================================
--- trunk/BOOK/final-system/multilib/perl-64bit.xml	2006-01-19 17:19:02 UTC (rev 1085)
+++ trunk/BOOK/final-system/multilib/perl-64bit.xml	2006-01-19 19:20:08 UTC (rev 1086)
@@ -30,17 +30,25 @@
     libraries and modules for the last version installed will be accessible. We
     therefore only install one version.</para>
 
-    <para os="p1">Perl does not, by default, know about library directories with names other
+    <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+    href="../common/perl.xml"
+    xpointer="xpointer(//*[@os='p1'])"/>
+
+    <xi:include xmlns:xi="http://www.w3.org/2003/XInclude"
+    href="../common/perl.xml"
+    xpointer="xpointer(//*[@os='p2'])"/>
+
+    <para os="p3">Perl does not, by default, know about library directories with names other
     than lib, such as lib64.  The following patch will allow it to install to lib64.</para>
 
-<screen os="p2"><userinput>patch -Np1 -i ../&perl-multilib-patch;</userinput></screen>
+<screen os="p4"><userinput>patch -Np1 -i ../&perl-multilib-patch;</userinput></screen>
 
-    <para os="p3">There is a further (possibly cosmetic) anomaly - if we install perl and
+    <para os="p5">There is a further (possibly cosmetic) anomaly - if we install perl and
     then run <command>perl -V</command> it will claim that libc is in /lib.  The
     following patch fixes this, but only takes effect when <command>make install
     </command> is run.</para>
 
-<screen os="p4"><userinput>patch -Np1 -i ../&perl-lib64-patch;</userinput></screen>
+<screen os="p6"><userinput>patch -Np1 -i ../&perl-lib64-patch;</userinput></screen>
 
     <para os="m2">We still need to tell perl to actually use lib64</para>
 

Modified: trunk/BOOK/materials/common/patches.xml
===================================================================
--- trunk/BOOK/materials/common/patches.xml	2006-01-19 17:19:02 UTC (rev 1085)
+++ trunk/BOOK/materials/common/patches.xml	2006-01-19 19:20:08 UTC (rev 1086)
@@ -26,7 +26,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p3">
+    <varlistentry os="p2">
       <term>Binutils Posix Patch - 4.9 KB:</term>
       <listitem>
         <para><ulink
@@ -34,7 +34,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p4">
+    <varlistentry os="p3">
       <term>Bzip2 Bzgrep Security Fixes Patch - 1.3 KB:</term>
       <listitem>
         <para><ulink
@@ -42,7 +42,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p5">
+    <varlistentry os="p4">
       <term>Bzip2 Documentation Patch - 1.7 KB:</term>
       <listitem>
         <para><ulink
@@ -50,7 +50,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p6">
+    <varlistentry os="p5">
       <term>Coreutils Suppress Uptime, Kill, Su Patch - 13 KB:</term>
       <listitem>
         <para><ulink
@@ -58,7 +58,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p7">
+    <varlistentry os="p6">
       <term>Expect Spawn Patch - 6.9 KB:</term>
       <listitem>
         <para><ulink
@@ -66,7 +66,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p8">
+    <varlistentry os="p7">
       <term>Flex Brokenness Patch - 157 KB:</term>
       <listitem>
         <para><ulink
@@ -74,7 +74,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p9">
+    <varlistentry os="p8">
       <term>Gawk Segfault Patch - 1.3 KB:</term>
       <listitem>
         <para><ulink
@@ -82,7 +82,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p10">
+    <varlistentry os="p9">
       <term>GCC Cross Search Paths Patch - 2 KB:</term>
       <listitem>
         <para><ulink
@@ -90,7 +90,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p11">
+    <varlistentry os="p10">
       <term>GCC Posix Patch - 8.6 KB:</term>
       <listitem>
         <para><ulink
@@ -98,7 +98,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p12">
+    <varlistentry os="p11">
       <term>Glibc Disable linking with libgcc_eh.a - 1 KB:</term>
       <listitem>
         <para><ulink
@@ -106,7 +106,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p13">
+    <varlistentry os="p12">
       <term>Glibc Localedef Segfault - 1.9 KB:</term>
       <listitem>
         <para><ulink
@@ -114,7 +114,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p14">
+    <varlistentry os="p13">
       <term>Gzip Security Fix Patch - 2 KB:</term>
       <listitem>
         <para><ulink
@@ -122,7 +122,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p15">
+    <varlistentry os="p14">
       <term>Inetutils GCC 4.x Fixes Patch - 1.3 KB:</term>
       <listitem>
         <para><ulink
@@ -130,7 +130,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p16">
+    <varlistentry os="p15">
       <term>Inetutils No-Server-Man-Pages Patch - 4.1 KB:</term>
       <listitem>
         <para><ulink
@@ -138,7 +138,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p17">
+    <varlistentry os="p16">
       <term>KBD GCC 4.x Fixes Patch - 1.5 KB:</term>
       <listitem>
         <para><ulink
@@ -146,7 +146,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p18">
+    <varlistentry os="p17">
       <term>Mktemp Tempfile Patch - 3.6 KB:</term>
       <listitem>
         <para><ulink
@@ -154,7 +154,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p19">
+    <varlistentry os="p18">
       <term>Perl Libc Patch - 1.1 KB:</term>
       <listitem>
         <para><ulink
@@ -162,6 +162,14 @@
       </listitem>
     </varlistentry>
 
+    <varlistentry os="p19">
+      <term>Perl Sprintf Vulnerability Patch - 1.1 KB:</term>
+      <listitem>
+        <para><ulink
+        url="&patches-root;perl/&perl-sprintf-patch;"/></para>
+      </listitem>
+    </varlistentry>
+
     <varlistentry os="p20">
       <term>Readline Fixes Patch - 1.7 KB:</term>
       <listitem>
@@ -170,7 +178,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p22">
+    <varlistentry os="p21">
       <term>Sysklogd Fixes Patch - 28 KB:</term>
       <listitem>
         <para><ulink
@@ -178,7 +186,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p23">
+    <varlistentry os="p22">
       <term>Tar GCC-4.x Fix Patch - 1.2 KB:</term>
       <listitem>
         <para><ulink
@@ -186,7 +194,7 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p24">
+    <varlistentry os="p23">
       <term>Tar Sparse Fix Patch - 1 KB:</term>
       <listitem>
         <para><ulink
@@ -194,28 +202,28 @@
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p25">
+    <varlistentry os="p24">
        <term>Texinfo Tempfile Fix Patch - 2.2 KB:</term>
        <listitem>
           <para><ulink url="&patches-root;texinfo/&texinfo-tempfile_fix-patch;"/></para>
        </listitem>
     </varlistentry>
 
-    <varlistentry os="p26">
+    <varlistentry os="p25">
       <term>Util-linux Cramfs Patch - 2.8 KB:</term> <listitem>
         <para><ulink
         url="&patches-root;util-linux/&util-linux-cramfs-patch;"/></para>
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p27">
+    <varlistentry os="p26">
       <term>Util-linux GCC 4.x Patch - 1 KB:</term> <listitem>
         <para><ulink
         url="&patches-root;util-linux/&util-linux-gcc4_fixes-patch;"/></para>
       </listitem>
     </varlistentry>
 
-    <varlistentry os="p28">
+    <varlistentry os="p27">
       <term>Zlib fPIC Patch - 3.2 KB:</term> <listitem>
         <para><ulink
         url="&patches-root;zlib/&zlib-fpic-patch;"/></para>

Modified: trunk/BOOK/patches.ent
===================================================================
--- trunk/BOOK/patches.ent	2006-01-19 17:19:02 UTC (rev 1085)
+++ trunk/BOOK/patches.ent	2006-01-19 19:20:08 UTC (rev 1086)
@@ -40,14 +40,13 @@
 
 <!ENTITY ncurses-update-patch "ncurses-&ncurses-version;-20050827-patch.sh.bz2">
 
+<!ENTITY perl-sprintf-patch "perl-&perl-version;-sprintf_vulnerability-1.patch">
 <!ENTITY perl-libc-patch "perl-&perl-version;-libc-1.patch">
 <!ENTITY perl-multilib-patch "perl-&perl-version;-Configure_multilib-1.patch">
 <!ENTITY perl-lib64-patch "perl-&perl-version;-libc_lib64-1.patch">
 
 <!ENTITY readline-fixes-patch "readline-&readline-version;-fixes-1.patch">
 
-<!ENTITY shadow-configure_fix-patch "shadow-&shadow-version;-configure_fix-1.patch">
-
 <!ENTITY sysklogd-fixes-patch "sysklogd-&sysklogd-version;-fixes-1.patch">
 
 <!ENTITY tar-gcc4_fix-patch "tar-&tar-version;-gcc4_fix_tests-1.patch">




More information about the cross-lfs mailing list