Package: suckless-tools / 40-1+deb8u2
Metadata
Package | Version | Patches format |
---|---|---|
suckless-tools | 40-1+deb8u2 | 3.0 (quilt) |
Patch series
view the series filePatch | File delta | Description |
---|---|---|
1001_tabbed_manpage_hyphen fix.patch | (download) |
tabbed/tabbed.1 |
18 9 + 9 - 0 ! |
escapes "-" symbol in manpage and use temp file in secure way Manpage for tabbed was using "-" symbol without escape which will be considered by groff as hyphen. This patch escapes the "-" in man- pages. This patch also replaces existing example given by upstream to embed an app into tabbed with a version which uses the secure temp files using mktemp. . |
2001_fix_setuid_slock.patch | (download) |
slock/Makefile |
9 5 + 4 - 0 ! |
remove setsid bit on slock binary Upstream Makefile was installing slock with setsid bit on. This patch make slock to belong shadow group and sets sgid bit |
2002_dpkg_buildflags.patch | (download) |
dmenu/config.mk |
6 3 + 3 - 0 ! |
patch to allow injection of hardening flags This patch allows the hardening flags injection into all Makefile during build time. It also removes -Os and -O0 from upstream config.mk to allow DEB_BUILD_OPTIONS=noopt. This patch also removes -s option to allow proper working of nostrip value for DEB_BUILD_OPTIONS. . |
2003_transparent makefiles.patch | (download) |
dmenu/Makefile |
54 27 + 27 - 0 ! |
makes command execution in makefile transparent This patch makes all compile install clean and other targets related command execution transparent by removing preceding @ symbol. This is required for a verbose output generation when DH_VERBOSE=1 . |
2004_use_system_searchpaths.patch | (download) |
dmenu/config.mk |
8 2 + 6 - 0 ! |
fix ftbfs on mipsel* due to custom library search paths. This patch removes library search -L/usr/lib and include paths defined by upstream. Since all the libraries and headers needed are available in default path these flags are redundant also since |
0001_resize_lockscreen.patch | (download) |
slock/config.mk |
2 1 + 1 - 0 ! |
patch slock to correctly resize the cover window Resize the cover window when new screens are added or the resolution is changed while the lock is active. This prevents potential information leakage. |
0002_fix cve 2016 6866.patch | (download) |
slock/slock.c |
10 8 + 2 - 0 ! |
fix cve-2016-6866 Fix SEGV in slock when users account has been disabled. . The screen locking application slock called crypt(3) and used the return value for strcmp(3) without checking to see if the return value of crypt(3) was a NULL pointer. . If the hash returned by (getspnam()->sp_pwdp) was invalid, crypt(3) would return NULL and set errno to EINVAL. This would cause slock to segfault which then leaves the machine unprotected. |