Subject: CVS commit: [pkgsrc-2011Q4] pkgsrc/sysutils
From: Matthias Scheler
Date: 2012-02-04 13:42:21
Message id: 20120204124221.38636175DD@cvs.netbsd.org
Log Message:
Pullup ticket #3672 - requested by bouyer
sysutils/xentools33: security patch
sysutils/xentools41: security patch

Revisions pulled up:
- sysutils/xentools33/Makefile                                  1.29 via patch
- sysutils/xentools33/distinfo                                  1.27 via patch
- sysutils/xentools33/patches/patch-qemu-e1000-CVSE-2012-0029   1.1
- sysutils/xentools41/Makefile                                  1.15 via patch
- sysutils/xentools41/distinfo                                  1.17
- sysutils/xentools41/patches/patch-qemu-e1000-CVSE-2012-0029   1.1

---
   Module Name:	pkgsrc
   Committed By:	bouyer
   Date:		Fri Feb  3 17:00:25 UTC 2012

   Modified Files:
   	pkgsrc/sysutils/xentools33: Makefile distinfo
   	pkgsrc/sysutils/xentools41: Makefile distinfo
   Added Files:
   	pkgsrc/sysutils/xentools33/patches: patch-qemu-e1000-CVSE-2012-0029
   	pkgsrc/sysutils/xentools41/patches: patch-qemu-e1000-CVSE-2012-0029

   Log Message:
   Pull up fix from Xen repository, fixing CVE-2012-0029:
   Heap-based buffer overflow in the process_tx_desc function in the
   e1000 emulation allows the guest to cause a denial of service (QEMU
   crash) and possibly execute arbitrary code via crafted legacy mode
   packets.

   Bump PKGREVISION
Files:
RevisionActionfile
1.27.2.1modifypkgsrc/sysutils/xentools33/Makefile
1.25.2.1modifypkgsrc/sysutils/xentools33/distinfo
1.13.2.1modifypkgsrc/sysutils/xentools41/Makefile
1.15.2.1modifypkgsrc/sysutils/xentools41/distinfo
1.1.2.2addpkgsrc/sysutils/xentools33/patches/patch-qemu-e1000-CVSE-2012-0029
1.1.2.2addpkgsrc/sysutils/xentools41/patches/patch-qemu-e1000-CVSE-2012-0029