head 1.5; access; symbols pkgsrc-2026Q1:1.5.0.134 pkgsrc-2026Q1-base:1.5 pkgsrc-2025Q4:1.5.0.132 pkgsrc-2025Q4-base:1.5 pkgsrc-2025Q3:1.5.0.130 pkgsrc-2025Q3-base:1.5 pkgsrc-2025Q2:1.5.0.128 pkgsrc-2025Q2-base:1.5 pkgsrc-2025Q1:1.5.0.126 pkgsrc-2025Q1-base:1.5 pkgsrc-2024Q4:1.5.0.124 pkgsrc-2024Q4-base:1.5 pkgsrc-2024Q3:1.5.0.122 pkgsrc-2024Q3-base:1.5 pkgsrc-2024Q2:1.5.0.120 pkgsrc-2024Q2-base:1.5 pkgsrc-2024Q1:1.5.0.118 pkgsrc-2024Q1-base:1.5 pkgsrc-2023Q4:1.5.0.116 pkgsrc-2023Q4-base:1.5 pkgsrc-2023Q3:1.5.0.114 pkgsrc-2023Q3-base:1.5 pkgsrc-2023Q2:1.5.0.112 pkgsrc-2023Q2-base:1.5 pkgsrc-2023Q1:1.5.0.110 pkgsrc-2023Q1-base:1.5 pkgsrc-2022Q4:1.5.0.108 pkgsrc-2022Q4-base:1.5 pkgsrc-2022Q3:1.5.0.106 pkgsrc-2022Q3-base:1.5 pkgsrc-2022Q2:1.5.0.104 pkgsrc-2022Q2-base:1.5 pkgsrc-2022Q1:1.5.0.102 pkgsrc-2022Q1-base:1.5 pkgsrc-2021Q4:1.5.0.100 pkgsrc-2021Q4-base:1.5 pkgsrc-2021Q3:1.5.0.98 pkgsrc-2021Q3-base:1.5 pkgsrc-2021Q2:1.5.0.96 pkgsrc-2021Q2-base:1.5 pkgsrc-2021Q1:1.5.0.94 pkgsrc-2021Q1-base:1.5 pkgsrc-2020Q4:1.5.0.92 pkgsrc-2020Q4-base:1.5 pkgsrc-2020Q3:1.5.0.90 pkgsrc-2020Q3-base:1.5 pkgsrc-2020Q2:1.5.0.86 pkgsrc-2020Q2-base:1.5 pkgsrc-2020Q1:1.5.0.66 pkgsrc-2020Q1-base:1.5 pkgsrc-2019Q4:1.5.0.88 pkgsrc-2019Q4-base:1.5 pkgsrc-2019Q3:1.5.0.84 pkgsrc-2019Q3-base:1.5 pkgsrc-2019Q2:1.5.0.82 pkgsrc-2019Q2-base:1.5 pkgsrc-2019Q1:1.5.0.80 pkgsrc-2019Q1-base:1.5 pkgsrc-2018Q4:1.5.0.78 pkgsrc-2018Q4-base:1.5 pkgsrc-2018Q3:1.5.0.76 pkgsrc-2018Q3-base:1.5 pkgsrc-2018Q2:1.5.0.74 pkgsrc-2018Q2-base:1.5 pkgsrc-2018Q1:1.5.0.72 pkgsrc-2018Q1-base:1.5 pkgsrc-2017Q4:1.5.0.70 pkgsrc-2017Q4-base:1.5 pkgsrc-2017Q3:1.5.0.68 pkgsrc-2017Q3-base:1.5 pkgsrc-2017Q2:1.5.0.64 pkgsrc-2017Q2-base:1.5 pkgsrc-2017Q1:1.5.0.62 pkgsrc-2017Q1-base:1.5 pkgsrc-2016Q4:1.5.0.60 pkgsrc-2016Q4-base:1.5 pkgsrc-2016Q3:1.5.0.58 pkgsrc-2016Q3-base:1.5 pkgsrc-2016Q2:1.5.0.56 pkgsrc-2016Q2-base:1.5 pkgsrc-2016Q1:1.5.0.54 pkgsrc-2016Q1-base:1.5 pkgsrc-2015Q4:1.5.0.52 pkgsrc-2015Q4-base:1.5 pkgsrc-2015Q3:1.5.0.50 pkgsrc-2015Q3-base:1.5 pkgsrc-2015Q2:1.5.0.48 pkgsrc-2015Q2-base:1.5 pkgsrc-2015Q1:1.5.0.46 pkgsrc-2015Q1-base:1.5 pkgsrc-2014Q4:1.5.0.44 pkgsrc-2014Q4-base:1.5 pkgsrc-2014Q3:1.5.0.42 pkgsrc-2014Q3-base:1.5 pkgsrc-2014Q2:1.5.0.40 pkgsrc-2014Q2-base:1.5 pkgsrc-2014Q1:1.5.0.38 pkgsrc-2014Q1-base:1.5 pkgsrc-2013Q4:1.5.0.36 pkgsrc-2013Q4-base:1.5 pkgsrc-2013Q3:1.5.0.34 pkgsrc-2013Q3-base:1.5 pkgsrc-2013Q2:1.5.0.32 pkgsrc-2013Q2-base:1.5 pkgsrc-2013Q1:1.5.0.30 pkgsrc-2013Q1-base:1.5 pkgsrc-2012Q4:1.5.0.28 pkgsrc-2012Q4-base:1.5 pkgsrc-2012Q3:1.5.0.26 pkgsrc-2012Q3-base:1.5 pkgsrc-2012Q2:1.5.0.24 pkgsrc-2012Q2-base:1.5 pkgsrc-2012Q1:1.5.0.22 pkgsrc-2012Q1-base:1.5 pkgsrc-2011Q4:1.5.0.20 pkgsrc-2011Q4-base:1.5 pkgsrc-2011Q3:1.5.0.18 pkgsrc-2011Q3-base:1.5 pkgsrc-2011Q2:1.5.0.16 pkgsrc-2011Q2-base:1.5 pkgsrc-2011Q1:1.5.0.14 pkgsrc-2011Q1-base:1.5 pkgsrc-2010Q4:1.5.0.12 pkgsrc-2010Q4-base:1.5 pkgsrc-2010Q3:1.5.0.10 pkgsrc-2010Q3-base:1.5 pkgsrc-2010Q2:1.5.0.8 pkgsrc-2010Q2-base:1.5 pkgsrc-2010Q1:1.5.0.6 pkgsrc-2010Q1-base:1.5 pkgsrc-2009Q4:1.5.0.4 pkgsrc-2009Q4-base:1.5 pkgsrc-2009Q3:1.5.0.2 pkgsrc-2009Q3-base:1.5 pkgsrc-2009Q2:1.3.0.40 pkgsrc-2009Q2-base:1.3 pkgsrc-2009Q1:1.3.0.38 pkgsrc-2009Q1-base:1.3 pkgsrc-2008Q4:1.3.0.36 pkgsrc-2008Q4-base:1.3 pkgsrc-2008Q3:1.3.0.34 pkgsrc-2008Q3-base:1.3 cube-native-xorg:1.3.0.32 cube-native-xorg-base:1.3 pkgsrc-2008Q2:1.3.0.30 pkgsrc-2008Q2-base:1.3 cwrapper:1.3.0.28 pkgsrc-2008Q1:1.3.0.26 pkgsrc-2008Q1-base:1.3 pkgsrc-2007Q4:1.3.0.24 pkgsrc-2007Q4-base:1.3 pkgsrc-2007Q3:1.3.0.22 pkgsrc-2007Q3-base:1.3 pkgsrc-2007Q2:1.3.0.20 pkgsrc-2007Q2-base:1.3 pkgsrc-2007Q1:1.3.0.18 pkgsrc-2007Q1-base:1.3 pkgsrc-2006Q4:1.3.0.16 pkgsrc-2006Q4-base:1.3 pkgsrc-2006Q3:1.3.0.14 pkgsrc-2006Q3-base:1.3 pkgsrc-2006Q2:1.3.0.12 pkgsrc-2006Q2-base:1.3 pkgsrc-2006Q1:1.3.0.10 pkgsrc-2006Q1-base:1.3 pkgsrc-2005Q4:1.3.0.8 pkgsrc-2005Q4-base:1.3 pkgsrc-2005Q3:1.3.0.6 pkgsrc-2005Q3-base:1.3 pkgsrc-2005Q2:1.3.0.4 pkgsrc-2005Q2-base:1.3 pkgsrc-2005Q1:1.3.0.2 pkgsrc-2005Q1-base:1.3 pkgsrc-2004Q4:1.2.0.18 pkgsrc-2004Q4-base:1.2 pkgsrc-2004Q3:1.2.0.16 pkgsrc-2004Q3-base:1.2 pkgsrc-2004Q2:1.2.0.14 pkgsrc-2004Q2-base:1.2 pkgsrc-2004Q1:1.2.0.12 pkgsrc-2004Q1-base:1.2 pkgsrc-2003Q4:1.2.0.10 pkgsrc-2003Q4-base:1.2 netbsd-1-6-1:1.2.0.6 netbsd-1-6-1-base:1.2 netbsd-1-6:1.2.0.8 netbsd-1-6-RELEASE-base:1.2 pkgviews:1.2.0.4 pkgviews-base:1.2 buildlink2:1.2.0.2 buildlink2-base:1.2 netbsd-1-5-PATCH003:1.2 netbsd-1-5-PATCH001:1.2 netbsd-1-5-RELEASE:1.2 netbsd-1-4-PATCH003:1.2 netbsd-1-4-PATCH002:1.2 comdex-fall-1999:1.2 netbsd-1-4-PATCH001:1.2 netbsd-1-4-RELEASE:1.2 FreeBSD-current-1998-11-10:1.1.1.1 FREEBSD:1.1.1; locks; strict; comment @# @; 1.5 date 2009.10.03.11.43.49; author is; state Exp; branches; next 1.4; 1.4 date 2009.10.02.19.21.59; author is; state Exp; branches; next 1.3; 1.3 date 2005.03.07.11.29.28; author wiz; state Exp; branches; next 1.2; 1.2 date 98.11.15.20.45.30; author tron; state Exp; branches; next 1.1; 1.1 date 98.11.15.18.04.25; author tron; state Exp; branches 1.1.1.1; next ; 1.1.1.1 date 98.11.15.18.04.25; author tron; state Exp; branches; next ; desc @@ 1.5 log @Actually, the security patch was missing from my last commit. PKGREVISION increased to distinguish. @ text @$NetBSD$ --- fax/faxspool.in.orig 2007-01-19 08:38:22.000000000 +0100 +++ fax/faxspool.in @@@@ -407,11 +407,11 @@@@ fs_cvt_pdf() # user name (for fax header only! auth is done by faxq-helper via getuid()) ########## -if user=`logname 2>/dev/null` -then : +if [ `id -u` = 0 ]; then + user=root else id=`id` - user=`expr "$id" : "[^( ]*(\([^)]*\)"` + user=`logname` fi test -z "$user" && user=$LOGNAME test -z "$user" && user=$USER @@@@ -653,12 +653,14 @@@@ fi # # mkdir a directory in $TMP (or /tmp), convert input to G3 in there # -spooldir=${TMP:-/tmp}/$new_seq.$$.`date +%S` +spooldirprefix=$new_seq.$$.`date +%S` +spooldir=`mktemp -d -t $spooldirprefix` -if ( umask 077 ; mkdir $spooldir ) ; then - $echo "spooling to $spooldir (->$new_seq)..." -else +if [ $? -ne 0 ] +then $echo "ERROR: can't create work dir '$spooldir', giving up" >&2 ; exit 6 +else + $echo "spooling to $spooldir (->$new_seq)..." fi # @@@@ -675,9 +677,9 @@@@ do if [ x$file = x- ] then $echo "spooling $file (stdin)..." - trap "rm /tmp/faxsp.$$" 0 - cat - >/tmp/faxsp.$$ - file=/tmp/faxsp.$$ + file=`mktemp -t faxsp.$$` + trap "rm $file" 0 + cat - > $file else $echo "spooling $file..." fi @ 1.4 log @Update mgetty to 1.1.36, at the same time patching faxspool to use mktemp(1) to avoid symlink vulnerabilities in tmp file/directory creation/removal (mitre.org CVE-2008-4936). Named 1.1.36nb1 to emphasize difference from upstream. Commit ok'd by agc@@. @ text @d20 32 @ 1.3 log @Regen some patches to get correct line number offsets; some patch(1) care. @ text @d1 1 a1 1 $NetBSD: patch-aa,v 1.2 1998/11/15 20:45:30 tron Exp $ d3 1 a3 1 --- fax/faxspool.in.orig 2004-07-17 12:17:49.000000000 +0200 d5 3 a7 2 @@@@ -389,11 +389,11 @@@@ fs_cvt_pdf() # user name (for authentification) a8 1 @ 1.2 log @Adapt this package to NetBSD. @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 --- fax/faxspool.in.orig Fri Aug 8 21:43:55 1997 +++ fax/faxspool.in Mon Dec 29 22:31:59 1997 @@@@ -299,11 +299,11 @@@@ @ 1.1 log @Initial revision @ text @d1 2 @ 1.1.1.1 log @Initial import of FreeBSD "mgetty+sendfax" port: Handle external logins, send and receive faxes. @ text @@