From 4514fbe1758972f5989c8b5a5a3c85b37e1262d3 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Jan=20R=C4=99korajski?= Date: Fri, 15 Aug 2014 22:30:59 +0200 Subject: [PATCH] - up to 0.5.3 - fixed format string errors --- Xarchiver.spec | 8 +++++--- format-security.patch | 24 ++++++++++++++++++++++++ 2 files changed, 29 insertions(+), 3 deletions(-) create mode 100644 format-security.patch diff --git a/Xarchiver.spec b/Xarchiver.spec index 808b449..fd6a213 100644 --- a/Xarchiver.spec +++ b/Xarchiver.spec @@ -3,13 +3,14 @@ Summary: Xarchiver - a GTK+2 frontend to popular compression formats Summary(pl.UTF-8): Xarchiver - nakładka GTK+2 na popularne formaty kompresji Name: Xarchiver -Version: 0.5.2 -Release: 6 +Version: 0.5.3 +Release: 1 License: GPL Group: X11/Applications Source0: http://downloads.sourceforge.net/xarchiver/xarchiver-%{version}.tar.bz2 -# Source0-md5: 2bc7f06403cc6582dd4a8029ec9d038d +# Source0-md5: fd390bbd2df76a5f8a007bdeae82d4aa Patch0: %{name}-desktop.patch +Patch1: format-security.patch URL: https://github.com/ib/xarchiver/wiki BuildRequires: autoconf >= 2.50 BuildRequires: automake @@ -41,6 +42,7 @@ hasłem. %prep %setup -q -n xarchiver-%{version} %patch0 -p1 +%patch1 -p1 mv -f po/nb{_NO,}.po mv -f po/pt{_PT,}.po sed -e 's/nb_NO/nb/;s/pt_PT/pt/' -i po/LINGUAS diff --git a/format-security.patch b/format-security.patch new file mode 100644 index 0000000..cdaa4f4 --- /dev/null +++ b/format-security.patch @@ -0,0 +1,24 @@ +diff -ur xarchiver-0.5.3.orig/src/window.c xarchiver-0.5.3/src/window.c +--- xarchiver-0.5.3.orig/src/window.c 2014-02-09 16:49:07.000000000 +0100 ++++ xarchiver-0.5.3/src/window.c 2014-08-15 22:29:24.498161762 +0200 +@@ -233,9 +233,9 @@ + { + int response; + +- dialog = gtk_message_dialog_new (window,mode,type,button,message1); ++ dialog = gtk_message_dialog_new (window,mode,type,button,"%s",message1); + gtk_dialog_set_default_response (GTK_DIALOG (dialog),GTK_RESPONSE_NO); +- gtk_message_dialog_format_secondary_text (GTK_MESSAGE_DIALOG (dialog),message2); ++ gtk_message_dialog_format_secondary_text (GTK_MESSAGE_DIALOG (dialog),"%s",message2); + response = gtk_dialog_run (GTK_DIALOG (dialog)); + gtk_widget_destroy (GTK_WIDGET (dialog)); + return response; +@@ -513,7 +513,7 @@ + g_fprintf (stream,_("Comment:\n")); + if (bp) + g_fprintf(stream,"
");
+-			g_fprintf (stream,archive[idx]->comment->str);
++			g_fprintf (stream,"%s",archive[idx]->comment->str);
+ 			if (bp)
+ 				g_fprintf(stream,"
"); + g_fprintf (stream,"\n"); -- 2.44.0