Created attachment 1018650 [details]
[patch] Update to 03.01.14 (#1215295)

Scratch build succeeded http://koji.fedoraproject.org/koji/taskinfo?taskID=9563347

Latest upstream release: 03.01.15
Current version/release in rawhide: 03.01.13-8.fc23
URL: http://www.roaringpenguin.com/files/download/

Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy

More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring

Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream.

Failed to kick off scratch build.

cmd:  sha256sum /var/tmp/thn-8s5ayn/100.0%
return code:  1
stdout:

stderr:
sha256sum: /var/tmp/thn-8s5ayn/100.0%: No such file or directory

3.1.5 fixes a buffer overflow.  I recommend upgrading.  Alternatively, I strongly recommend applying the patch below to older versions.

Regards,

Dianne.

diff --git a/src/var.c b/src/var.c
index 2d68bab..cf933c2 100644
--- a/src/var.c
+++ b/src/var.c
@@ -757,6 +757,10 @@ static void DumpSysVar(char const *name, const SysVar *v)
     if (!v && !name) return;  /* Shouldn't happen... */
 
     buffer[0]='$'; buffer[1] = 0;
+    if (name && strlen(name) > VAR_NAME_LEN) {
+	fprintf(ErrFp, "$%s: Name too long\n", name);
+	return;
+    }
     if (name) strcat(buffer, name); else strcat(buffer, v->name);
     fprintf(ErrFp, "%*s  ", VAR_NAME_LEN+1, buffer);
     if (v) {

Hello DIanne.

As the third number in the version string means patchlevel, I think we can update to that patchlevel in all supported fedora releases. The two patchsets contain bugfixes mainly. There's just one new minor feature and 8 bug fixes. I believe it's worthy to update instead of patching.

Even of that, thanks for the patch and your time.

Regards,
Jaromir.

jcapik's remind-03.01.15-1.fc24 completed http://koji.fedoraproject.org/koji/buildinfo?buildID=673436

remind-03.01.15-1.fc23 has been submitted as an update for Fedora 23.
https://admin.fedoraproject.org/updates/remind-03.01.15-1.fc23

remind-03.01.15-1.fc22 has been submitted as an update for Fedora 22.
https://admin.fedoraproject.org/updates/remind-03.01.15-1.fc22

remind-03.01.15-1.fc21 has been submitted as an update for Fedora 21.
https://admin.fedoraproject.org/updates/remind-03.01.15-1.fc21

*** Bug 1247937 has been marked as a duplicate of this bug. ***

*** Bug 1247938 has been marked as a duplicate of this bug. ***

Package remind-03.01.15-1.fc23:
* should fix your issue,
* was pushed to the Fedora 23 testing repository,
* should be available at your local mirror within two days.
Update it with:
# su -c 'yum update --enablerepo=updates-testing remind-03.01.15-1.fc23'
as soon as you are able to.
Please go to the following url:
https://admin.fedoraproject.org/updates/FEDORA-2015-12320/remind-03.01.15-1.fc23
then log in and leave karma (feedback).

remind-03.01.15-1.fc23 has been pushed to the Fedora 23 stable repository.  If problems still persist, please make note of it in this bug report.

remind-03.01.15-1.fc22 has been pushed to the Fedora 22 stable repository.  If problems still persist, please make note of it in this bug report.

remind-03.01.15-1.fc21 has been pushed to the Fedora 21 stable repository.  If problems still persist, please make note of it in this bug report.