From lx@redundancy.redundancy.org  Fri Jul 28 01:51:19 2006
Return-Path: <lx@redundancy.redundancy.org>
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5F26E16A4DE
	for <FreeBSD-gnats-submit@freebsd.org>; Fri, 28 Jul 2006 01:51:19 +0000 (UTC)
	(envelope-from lx@redundancy.redundancy.org)
Received: from redundancy.redundancy.org (redundancy.redundancy.org [64.147.160.152])
	by mx1.FreeBSD.org (Postfix) with SMTP id C7F7543D58
	for <FreeBSD-gnats-submit@freebsd.org>; Fri, 28 Jul 2006 01:51:18 +0000 (GMT)
	(envelope-from lx@redundancy.redundancy.org)
Received: (qmail 2546 invoked by uid 1001); 28 Jul 2006 01:51:41 -0000
Message-Id: <20060728015141.2545.qmail@redundancy.redundancy.org>
Date: 28 Jul 2006 01:51:41 -0000
From: David Thiel <lx@redundancy.redundancy.org>
Reply-To: David Thiel <lx@redundancy.redundancy.org>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: Maintainer update: security/osiris 4.2.0_1 -> 4.2.1
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         100952
>Category:       ports
>Synopsis:       Maintainer update: security/osiris 4.2.0_1 -> 4.2.1
>Confidential:   no
>Severity:       non-critical
>Priority:       low
>Responsible:    itetcu
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Fri Jul 28 02:00:29 GMT 2006
>Closed-Date:    Fri Jul 28 07:39:13 GMT 2006
>Last-Modified:  Fri Jul 28 07:39:13 GMT 2006
>Originator:     David Thiel
>Release:        FreeBSD 6.0-RELEASE i386
>Organization:
>Environment:
System: FreeBSD redundancy.redundancy.org 6.0-RELEASE FreeBSD 6.0-RELEASE #0: Thu Nov 3 09:36:13 UTC 2005 root@x64.samsco.home:/usr/obj/usr/src/sys/GENERIC i386


>Description:

Updating the Osiris integrity checking system to 4.2.1. This version includes
the format string exploit fixes that were also in the patch in 4.2.0_1. 
Also updating master site to the new official one.

>How-To-Repeat:
>Fix:

diff -ruN osiris.old/Makefile osiris/Makefile
--- osiris.old/Makefile	Thu Jul 27 18:38:36 2006
+++ osiris/Makefile	Thu Jul 27 18:39:16 2006
@@ -6,10 +6,9 @@
 #
 
 PORTNAME=	osiris
-PORTVERSION=	4.2.0
-PORTREVISION=	1
+PORTVERSION=	4.2.1
 CATEGORIES=	security
-MASTER_SITES=	http://www.hostintegrity.com/osiris/data/ \
+MASTER_SITES=	http://osiris.shmoo.com/data/ \
 		http://redundancy.redundancy.org/mirror/
 
 MAINTAINER=	lx@redundancy.redundancy.org
diff -ruN osiris.old/distinfo osiris/distinfo
--- osiris.old/distinfo	Thu Jul 27 18:38:36 2006
+++ osiris/distinfo	Thu Jul 27 18:39:43 2006
@@ -1,3 +1,3 @@
-MD5 (osiris-4.2.0.tar.gz) = ad30995660e506ee6d1d6460601f6107
-SHA256 (osiris-4.2.0.tar.gz) = 6c6d2be382450fc31e288dce397ed4b68f23907efb0782a8ed2a68780db0025d
-SIZE (osiris-4.2.0.tar.gz) = 1922195
+MD5 (osiris-4.2.1.tar.gz) = 11445f7d8dec737f0be89357f5c5bcae
+SHA256 (osiris-4.2.1.tar.gz) = 36e0c94b66b37cd8944c80163fe827a4fe53f32f10a0bcfc837de9cca42b1fc9
+SIZE (osiris-4.2.1.tar.gz) = 3849917
diff -ruN osiris.old/files/patch-logging osiris/files/patch-logging
--- osiris.old/files/patch-logging	Thu Jul 27 18:38:36 2006
+++ osiris/files/patch-logging	Wed Dec 31 16:00:00 1969
@@ -1,66 +0,0 @@
---- src/osirisd/logging.c
-+++ src/osirisd/logging.c
-@@ -93,7 +93,7 @@
-             fprintf( stdout, "\n" );
-         }
- #else
--    syslog( ( SYSLOG_FACILITY | LOG_ERR ), header );
-+    syslog( ( SYSLOG_FACILITY | LOG_ERR ), "%s", header );
- #endif
- }
- 
-@@ -147,7 +147,7 @@
-             fprintf( stdout, "\n" );
-         }
- #else
--    syslog( ( SYSLOG_FACILITY | LOG_INFO ), header );
-+    syslog( ( SYSLOG_FACILITY | LOG_INFO ), "%s", header );
- #endif
- }
- 
-@@ -201,7 +201,7 @@
-             fprintf( stdout, "\n" );
-         }
- #else
--    syslog( ( SYSLOG_FACILITY | LOG_WARNING ), header );
-+    syslog( ( SYSLOG_FACILITY | LOG_WARNING ), "%s", header );
- #endif
- }
- 
---- src/osirismd/logging.c
-+++ src/osirismd/logging.c
-@@ -106,7 +106,7 @@
-             fprintf( stdout, "\n" );
-         }
- #else
--    syslog( ( syslog_facility | LOG_ERR ), header );
-+    syslog( ( syslog_facility | LOG_ERR ), "%s", header );
- #endif
- }
- 
-@@ -168,7 +168,7 @@
-             fprintf( stdout, "\n" );
-         }
- #else
--    syslog( ( syslog_facility | LOG_INFO ), header );
-+    syslog( ( syslog_facility | LOG_INFO ), "%s", header );
- #endif
- }
- 
-@@ -230,7 +230,7 @@
-             fprintf( stdout, "\n" );
-         }
- #else
--    syslog( ( syslog_facility | LOG_WARNING ), header );
-+    syslog( ( syslog_facility | LOG_WARNING ), "%s", header );
- #endif
- }
- 
-@@ -281,7 +281,7 @@
-                     NULL);                /* no raw data */
-         }
- #else
--        syslog( ( syslog_facility | LOG_INFO ), buffer );
-+        syslog( ( syslog_facility | LOG_INFO ), "%s", buffer );
- #endif
-     }

>Release-Note:
>Audit-Trail:
Responsible-Changed-From-To: freebsd-ports-bugs->itetcu 
Responsible-Changed-By: itetcu 
Responsible-Changed-When: Fri Jul 28 07:33:32 UTC 2006 
Responsible-Changed-Why:  
I'll take it. 

http://www.freebsd.org/cgi/query-pr.cgi?pr=100952 
State-Changed-From-To: open->closed 
State-Changed-By: itetcu 
State-Changed-When: Fri Jul 28 07:39:10 UTC 2006 
State-Changed-Why:  
Committed. Thanks! 

http://www.freebsd.org/cgi/query-pr.cgi?pr=100952 
>Unformatted:
