From patchwork Thu May 15 16:25:25 2025 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Adolf Belka X-Patchwork-Id: 8753 Return-Path: Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "R10" (verified OK)) by web04.haj.ipfire.org (Postfix) with ESMTPS id 4ZywYS66j1z3wty for ; Thu, 15 May 2025 16:25:32 +0000 (UTC) Received: from mail02.haj.ipfire.org (mail02.haj.ipfire.org [172.28.1.201]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) client-signature ECDSA (secp384r1)) (Client CN "mail02.haj.ipfire.org", Issuer "E5" (verified OK)) by mail01.ipfire.org (Postfix) with ESMTPS id 4ZywYR5rtwz6TS for ; Thu, 15 May 2025 16:25:31 +0000 (UTC) Received: from mail02.haj.ipfire.org (localhost [127.0.0.1]) by mail02.haj.ipfire.org (Postfix) with ESMTP id 4ZywYR56rBz33BZ for ; Thu, 15 May 2025 16:25:31 +0000 (UTC) X-Original-To: development@lists.ipfire.org Received: from mail01.ipfire.org (mail01.haj.ipfire.org [172.28.1.202]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (secp384r1) client-signature RSA-PSS (4096 bits)) (Client CN "mail01.haj.ipfire.org", Issuer "R10" (verified OK)) by mail02.haj.ipfire.org (Postfix) with ESMTPS id 4ZywYN5wLsz2ybk for ; Thu, 15 May 2025 16:25:28 +0000 (UTC) Received: from [127.0.0.1] (localhost [127.0.0.1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by mail01.ipfire.org (Postfix) with ESMTPSA id 4ZywYN1BhYznl; Thu, 15 May 2025 16:25:28 +0000 (UTC) DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003ed25519; t=1747326328; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=U5RUEDrO4+ToF6Kf9AkEUm4OjC9tWcu5NwAA3j+t2F4=; b=oDVqwKMkaem6ujjwVVaTRoM7Hh3Ts07G+cum8hqo3q8ymEeCpRzw/5Vg5FRHNZy9HOKQ6Y JVgxGIHzHJcCHWBg== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ipfire.org; s=202003rsa; t=1747326328; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version: content-transfer-encoding:content-transfer-encoding; bh=U5RUEDrO4+ToF6Kf9AkEUm4OjC9tWcu5NwAA3j+t2F4=; b=NLQdg7ALzK558jZ8Gx866kPmBbtptJGjqaS5S2bewNXbdtkhMlwAdpQIA6/9odolqrTVxb 17JmwXH0vRTxWjMDJpRn6IlCMsp107G7nExoBg/jfSC/aB41LFIwFHpxIqmFwWJid1d29n Y48PA9+l21wcnLHclr+OXIxMc3uoqu+/pr6vv0HpcxQbnhkzw5UK8MXCNGwGVSzB661qeL dZSaYszW/IRa/PMzStFtkcBrSN4sHiTUcgEdjLf5ao4079V2r3mFbKEO5/QEsg+O2jyqBy 5iky5qCFb4JESEe/dYdkG3w314FVgGNR0g1o2V06y36PjcbNhpHfF57MakEOGQ== From: Adolf Belka To: development@lists.ipfire.org Cc: Adolf Belka Subject: [PATCH] screen: Update to version 5.0.1 Date: Thu, 15 May 2025 18:25:25 +0200 Message-ID: <20250515162525.3301332-1-adolf.belka@ipfire.org> Precedence: list List-Id: List-Subscribe: , List-Unsubscribe: , List-Post: List-Help: Sender: Mail-Followup-To: MIME-Version: 1.0 - Update from version 5.0.0 to 5.0.1 - Update of rootfile - 5 CVE fixes included in this version - Changelog 5.0.1 Security fix CVE-2025-46805: do NOT send signals with root privileges CVE-2025-46804: avoid file existence test information leaks CVE-2025-46803: apply safe PTY default mode of 0620 CVE-2025-46802: prevent temporary 0666 mode on PTYs in attacher CVE-2025-23395: reintroduce lf_secreopen() for logfile buffer overflow due bad strncpy() uninitialized variables warnings typos combining char handling that could lead to a segfault Signed-off-by: Adolf Belka --- config/rootfiles/common/screen | 3 +-- lfs/screen | 6 +++--- 2 files changed, 4 insertions(+), 5 deletions(-) diff --git a/config/rootfiles/common/screen b/config/rootfiles/common/screen index 3442bff2b..e8b72aaa2 100644 --- a/config/rootfiles/common/screen +++ b/config/rootfiles/common/screen @@ -1,7 +1,6 @@ etc/screenrc usr/bin/screen -usr/bin/screen-5.0.0 -#usr/share/info/screen.info +usr/bin/screen-5.0.1 #usr/share/man/man1/screen.1 #usr/share/screen #usr/share/screen/utf8encodings diff --git a/lfs/screen b/lfs/screen index 6388002cf..d1c0380fb 100644 --- a/lfs/screen +++ b/lfs/screen @@ -1,7 +1,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2024 IPFire Team # +# Copyright (C) 2007-2025 IPFire Team # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -24,7 +24,7 @@ include Config -VER = 5.0.0 +VER = 5.0.1 THISAPP = screen-$(VER) DL_FILE = $(THISAPP).tar.gz @@ -40,7 +40,7 @@ objects = $(DL_FILE) $(DL_FILE) = $(DL_FROM)/$(DL_FILE) -$(DL_FILE)_BLAKE2 = 5ff218afc1692ae201776f759ff2217a51dcf02202e4ba5d12de50a768df83e0e2a7a3511a5f85a3b21362892f31a4fd90d6444918915165ae12a8c0c2b3af39 +$(DL_FILE)_BLAKE2 = f33f985bb9855a5335b72f93b3e8cf8fccddc7c18d3db3fd7493da2825b17002d798e6cf95d35fc39194eb6933018be96efa0b4f6aa4894657ab258f86002220 install : $(TARGET)