forked from pool/atftp
Marcus Meissner
003aa9ceb8
- Update to version 0.7.5 [bsc#1190522, CVE-2021-41054]
* text files: mark/convert all textfiles to UTF-8
* fix some compiler warnings
* fix buffer overflow in atftpd (CVE-2021-41054)
* test.sh: check for root no longer necessary
* tftpd.c: Only drop privs if requested or running as root + check for failure
* fix invalid read of 1 byte in tftp_send_request.
* Check return value of fseek(), abort if != 0
* options.c: Proper fix for the read-past-end-of-array
* configure.ac: Add -std=gnu89 if gcc/clang is detected
* tftpd.c: Fix memleak if thread spawning fails
* atftp: Check return value of fgets, buffer might be uninitialized on NULL
* Fix check for argz support (HAVE_ARGZ -> HAVE_ARGZ_H)
* replace LICENSE with current version
* Remove patches fixed upstream:
- atftp-0.7-sorcerers_apprentice.patch
- atftp-0.7-server_receive_race.patch
- atftp-0.7-ack_heuristic.patch
* Rebase patches:
- atftp-drop_privileges_non-daemon.patch
- atftp-0.7-default_dir_man.patch
- atftp-0.7-default_user_man.patch
OBS-URL: https://build.opensuse.org/request/show/919255
OBS-URL: https://build.opensuse.org/package/show/network/atftp?expand=0&rev=51
14 lines
571 B
Diff
14 lines
571 B
Diff
Index: atftp-0.7.5/atftpd.8
|
|
===================================================================
|
|
--- atftp-0.7.5.orig/atftpd.8
|
|
+++ atftp-0.7.5/atftpd.8
|
|
@@ -211,7 +211,7 @@ Show summary of options.
|
|
.B path
|
|
This is the root directory used by the TFTP server. All requested
|
|
files from a TFTP client must reside in this directory. If not
|
|
-specified, the directory defaults to /tftpboot. Since
|
|
+specified, the directory defaults to /srv/tftpboot. Since
|
|
atftpd run as the tftp user, the permission of the directory
|
|
must be set properly to allow file reading and writing.
|
|
|