From owner-cvs-gnu Wed Dec 18 11:46:24 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id LAA23731 for cvs-gnu-outgoing; Wed, 18 Dec 1996 11:46:24 -0800 (PST) Received: (from ache@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id LAA23724; Wed, 18 Dec 1996 11:46:22 -0800 (PST) Date: Wed, 18 Dec 1996 11:46:22 -0800 (PST) From: "Andrey A. Chernov" Message-Id: <199612181946.LAA23724@freefall.freebsd.org> To: CVS-committers, cvs-all, cvs-gnu Subject: cvs commit: src/gnu/usr.bin/man/man man.c Sender: owner-cvs-gnu@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ache 96/12/18 11:46:22 Modified: gnu/usr.bin/man/man man.c Log: Drop man priveledges before popen and restore them after it, because it is possible to execute system command from f.e groff Should be in 2.2 Revision Changes Path 1.22 +12 -0 src/gnu/usr.bin/man/man/man.c From owner-cvs-gnu Wed Dec 18 12:07:52 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id MAA24446 for cvs-gnu-outgoing; Wed, 18 Dec 1996 12:07:52 -0800 (PST) Received: (from ache@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id MAA24439; Wed, 18 Dec 1996 12:07:50 -0800 (PST) Date: Wed, 18 Dec 1996 12:07:50 -0800 (PST) From: "Andrey A. Chernov" Message-Id: <199612182007.MAA24439@freefall.freebsd.org> To: CVS-committers, cvs-all, cvs-gnu Subject: cvs commit: src/gnu/usr.bin/man/man man.c Sender: owner-cvs-gnu@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ache 96/12/18 12:07:50 Modified: gnu/usr.bin/man/man man.c Log: Fix my popen fix: conditionalize saving/restoring of euid Should be in 2.2 Revision Changes Path 1.23 +18 -12 src/gnu/usr.bin/man/man/man.c From owner-cvs-gnu Wed Dec 18 12:55:28 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id MAA26918 for cvs-gnu-outgoing; Wed, 18 Dec 1996 12:55:28 -0800 (PST) Received: (from ache@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id MAA26911; Wed, 18 Dec 1996 12:55:27 -0800 (PST) Date: Wed, 18 Dec 1996 12:55:27 -0800 (PST) From: "Andrey A. Chernov" Message-Id: <199612182055.MAA26911@freefall.freebsd.org> To: CVS-committers, cvs-all, cvs-gnu Subject: cvs commit: src/gnu/usr.bin/man/man man.c Sender: owner-cvs-gnu@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ache 96/12/18 12:55:26 Modified: gnu/usr.bin/man/man man.c Log: Fix many buffer overflows, sprintf -> snprintf Fix manpath dirs count overflow Should be in 2.2 Revision Changes Path 1.24 +25 -27 src/gnu/usr.bin/man/man/man.c From owner-cvs-gnu Wed Dec 18 16:31:27 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id QAA18057 for cvs-gnu-outgoing; Wed, 18 Dec 1996 16:31:27 -0800 (PST) Received: (from jkh@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id QAA18040; Wed, 18 Dec 1996 16:31:24 -0800 (PST) Date: Wed, 18 Dec 1996 16:31:24 -0800 (PST) From: "Jordan K. Hubbard" Message-Id: <199612190031.QAA18040@freefall.freebsd.org> To: CVS-committers, cvs-all, cvs-gnu Subject: cvs commit: src/gnu/usr.bin/man/man man.c Sender: owner-cvs-gnu@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk jkh 96/12/18 16:31:23 Branch: gnu/usr.bin/man/man RELENG_2_2 Modified: gnu/usr.bin/man/man man.c Log: YAMFC, drop man privs before calling popen(). Revision Changes Path 1.21.2.1 +24 -6 src/gnu/usr.bin/man/man/man.c From owner-cvs-gnu Thu Dec 19 00:58:09 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id AAA10532 for cvs-gnu-outgoing; Thu, 19 Dec 1996 00:58:09 -0800 (PST) Received: (from asami@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id AAA10525; Thu, 19 Dec 1996 00:58:08 -0800 (PST) Date: Thu, 19 Dec 1996 00:58:08 -0800 (PST) From: Satoshi Asami Message-Id: <199612190858.AAA10525@freefall.freebsd.org> To: CVS-committers, cvs-all, cvs-gnu Subject: cvs commit: src/gnu/usr.bin/cvs/cvs diff.c Sender: owner-cvs-gnu@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk asami 96/12/19 00:58:08 Branch: gnu/usr.bin/cvs/cvs RELENG_2_1_0 Modified: gnu/usr.bin/cvs/cvs diff.c Log: Back out my "moving HEAD" fix, apparently this was just a tip of an iceberg of ugly hacks, and causes many side-effects in places it shouldn't. The cvs people are aware of the problem but can't solve it, so I don't think I should be touching it either. Revision Changes Path 1.4.4.3 +2 -2 src/gnu/usr.bin/cvs/cvs/Attic/diff.c From owner-cvs-gnu Thu Dec 19 02:45:21 1996 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id CAA15272 for cvs-gnu-outgoing; Thu, 19 Dec 1996 02:45:21 -0800 (PST) Received: (from ache@localhost) by freefall.freebsd.org (8.8.4/8.8.4) id CAA15265; Thu, 19 Dec 1996 02:45:19 -0800 (PST) Date: Thu, 19 Dec 1996 02:45:19 -0800 (PST) From: "Andrey A. Chernov" Message-Id: <199612191045.CAA15265@freefall.freebsd.org> To: CVS-committers, cvs-all, cvs-gnu Subject: cvs commit: src/gnu/usr.bin/man/man Makefile man.c Sender: owner-cvs-gnu@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk ache 96/12/19 02:45:19 Modified: gnu/usr.bin/man/man Makefile man.c Log: Even more buffer overflow fixes Change CATMODE to 0644, because group man not used Add immutable sbit to man binary, so if user even got man uid, he can't replace man binary with fake one Should go to 2.2 Submitted by: Marc Slemko with small editing by me Revision Changes Path 1.21 +2 -1 src/gnu/usr.bin/man/man/Makefile 1.25 +50 -50 src/gnu/usr.bin/man/man/man.c