196673 CVE-2007-0650 2007-10-21 22:39 0000 app-text/{cstetex, ptex} Multiple issues (CVE-2007-{0650,2756,3387,3472,3473,3474,3475,3476,3477,3478}) 2008-05-12 21:33:40 0000 1 1 1 Unclassified Gentoo Security Vulnerabilities unspecified All Linux RESOLVED FIXED B2 [glsa] P2 normal --- 140507 196735 1 rbu@gentoo.org security@gentoo.org cjk@gentoo.org hkmaly@bigfoot.com malenko@email.cz mr_bones_@gentoo.org tex@gentoo.org usata@gentoo.org rbu@gentoo.org 2007-10-21 22:39:59 0000 pTeX and CSTeX are vulnerable to three issues fixed for teTex in GLSA 200709-17: 1) Makeindex buffer overflows, bug 170861. CVE-2007-0650: Buffer overflow in the open_sty function in mkind.c for makeindex 2.14 in teTeX might allow user-assisted remote attackers to overwrite files and possibly execute arbitrary code via a long filename. NOTE: other overflows exist but might not be exploitable, such as a heap-based overflow in the check_idx function. 2) Vulerable XPDF code, bug 188172. CVE-2007-3387: Integer overflow in gpdf before 2.8.2 might allow remote attackers to execute arbitrary code via a crafted PDF file. 3) Several issues in GD code, bug 182055. CVE-2007-3478: Race condition in gdImageStringFTEx (gdft_draw_bitmap) in gdft.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors, possibly involving truetype font (TTF) support. CVE-2007-3477: The (a) imagearc and (b) imagefilledarc functions in GD Graphics Library (libgd) before 2.0.35 allows attackers to cause a denial of service (CPU consumption) via a large (1) start or (2) end angle degree value. CVE-2007-3476: Array index error in gd_gif_in.c in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash and heap corruption) via large color index values in crafted image data, which results in a segmentation fault. CVE-2007-3475: The GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via a GIF image that has no global color map. CVE-2007-3474: Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before 2.0.35 allow user-assisted remote attackers to have unspecified attack vectors and impact. CVE-2007-3473: The gdImageCreateXbm function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to cause a denial of service (crash) via unspecified vectors involving a gdImageCreate failure. CVE-2007-3472: Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers has unspecified attack vectors and impact. CVE-2007-2756: The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng. rbu@gentoo.org 2007-10-21 22:40:37 0000 Created an attachment (id=134087) tetex-2.0.2-makeindex-CVE-2007-0650.patch Patch for (1) rbu@gentoo.org 2007-10-21 22:40:52 0000 Created an attachment (id=134089) tetex-2.0.2-xpdf-CVE-2007-3387.patch Patch for (2) rbu@gentoo.org 2007-10-21 22:42:29 0000 For (3) you should probably upgrade the bundled GD lib to 2.0.35. teTeX 3 can link to the system GD lib, but teTeX 2 unfortunately cannot. rbu@gentoo.org 2007-10-21 22:43:52 0000 Maintainers, please advise. Is upstream alive? If not, please patch as necessary. rbu@gentoo.org 2007-10-29 22:39:00 0000 Ping, anyone? matsuu@gentoo.org 2007-11-01 17:21:56 0000 sorry for delay. I (cjk herd) try to fix it, but makes tetex-2.0.2-xpdf-CVE-2007-3387.patch compile failed. Stream.cc: In constructor 'StreamPredictor::StreamPredictor(Stream*, int, int, int, int)': Stream.cc:428: error: 'gfxColorMaxComps' was not declared in this scope make[1]: *** [Stream.o] Error 1 make[1]: Leaving directory `/var/tmp/portage/app-text/ptex-3.1.5-r3/work/tetex-src-2.0.2/libs/xpdf/xpdf' make: *** [libs/xpdf/xpdf/libxpdf.a] Error 2 it is under survey. rbu@gentoo.org 2007-11-07 23:47:40 0000 Please note bug 196735 and bug 198238 contains more issues that both ptex and cstetex are affected by. jakub@gentoo.org 2007-11-08 15:09:01 0000 I asked about cstetex usage @ http://www.abclinuxu.cz/forum/show/199391 so lets see if there's a *real* reason to keep this package 'alive' or whether we should rather just dump it. malenko@email.cz 2007-11-10 10:55:17 0000 (In reply to comment #8) > I asked about cstetex usage @ http://www.abclinuxu.cz/forum/show/199391 A brief conclusion of discussion: Nobody insits upon cstetex. The experience with babel in tetex-3, texlive and xetex is good. Skilled users recommended to migrate. Since there are good alternatives, it's ok to remove cstetex from portage. rbu@gentoo.org 2007-11-12 23:55:41 0000 # Alexis Ballier <aballier@gentoo.org> (11 Nov 2007) # Lots of security issues: bug #196673 # The experience with babel in tetex-3, texlive # and xetex is good. Skilled users recommended to migrate. # Masking for removal: Due 11 Dec 2007 app-text/cstetex rbu@gentoo.org 2007-11-13 01:21:00 0000 CJK and Matsuu, we will be removing CSTeX from the tree. Do you actually still need PTeX with teTeX's support for other languages and if so, what's the status of the issues piling up here? matsuu@gentoo.org 2007-11-18 06:22:54 0000 Created an attachment (id=136217) ptex-3.1.10_p20071030.ebuild sorry for delay. now I create ptex-3.1.10_p20071030.ebuild, it fixed CVE-2007-{0650,3387}, and it use --with-system-gd and --without-dviljk(#198238). but perhaps it doesn't fix some security bugs. matsuu@gentoo.org 2007-11-18 06:23:34 0000 Created an attachment (id=136218) files/ptex-3.1.10_p20071030-gentoo.patch rbu@gentoo.org 2007-11-18 14:15:11 0000 Matsuu, please also apply the patches for the XPDF issues from bug 196735 and the dvips patches from bug 198238. Then you're good to go. You can find an xpdf patch ported to tetex at the tetex-3 ebuilds in the tree. rbu@gentoo.org 2007-11-18 23:11:46 0000 (In reply to comment #14) > Matsuu, please also apply the patches for the XPDF issues from bug 196735 and > the dvips patches from bug 198238. Then you're good to go. Add the patch from t1lib to that list -- bug 193437 py@gentoo.org 2007-11-25 22:50:38 0000 GLSA 200711-34 for cstetex, still waiting for ptex. matsuu@gentoo.org 2007-11-27 17:37:14 0000 sorry for long long delay. the attached ebuild doesn't work well, so I added app-text/ptex to package.mask transiently. mr_bones_@gentoo.org 2007-11-27 18:53:48 0000 app-i18n/canna-3.7_p2: nonsolvable depset(depends) keyword(x86) profile (default-linux/x86/2007.0/desktop): solutions: [ app-text/ptex ] app-text/xdvik-22.84.10: nonsolvable depset(rdepends) keyword(x86) profile (default-linux/x86/2007.0/desktop): solutions: [ app-text/texlive-core, app-text/ptex ] Need to fix up the dep breakage before masking. I commented out the mask. Deps should never be broken by package masking. matsuu@gentoo.org 2007-11-30 14:32:22 0000 Added ptex-3.1.10_p20071122.ebuild in cvs. It WORKSFORME(tm). Please test and mark stable. rbu@gentoo.org 2007-12-04 01:41:42 0000 Does it include patches for the XPDF issues from bug 196735? At a first glance, it does not look like it. All other issues seem to be resolved. matsuu@gentoo.org 2007-12-06 14:57:23 0000 Added ptex-3.1.10_p20071203 and xpdf patch. py@gentoo.org 2007-12-10 21:33:08 0000 Arches, please test and mark stable app-text/ptex-ptex-3.1.10_p20071203. Target "alpha amd64 arm hppa ia64 ppc ppc-macos ppc64 sh sparc x86" fauli@gentoo.org 2007-12-11 10:12:20 0000 x86 stable corsair@gentoo.org 2007-12-11 16:58:27 0000 ppc64 stable aballier@gentoo.org 2007-12-11 21:11:59 0000 fyi: cstetex is gone welp@gentoo.org 2007-12-12 07:13:31 0000 amd64 is gone. jer@gentoo.org 2007-12-13 07:47:47 0000 Stable for HPPA. armin76@gentoo.org 2007-12-13 12:00:45 0000 alpha/ia64/sparc stable dertobi123@gentoo.org 2007-12-14 18:15:27 0000 ppc stable grobian@gentoo.org 2008-01-15 17:06:39 0000 cstetex is gone, ptex no longer keyworded ppc-macos. Sorry for the long wait. pva@gentoo.org 2008-02-25 10:45:18 0000 This bug does not affect 2008.0 shapshot, removing release@ from CC. py@gentoo.org 2008-05-07 22:31:57 0000 glsa request filed for ptex py@gentoo.org 2008-05-12 21:33:40 0000 GLSA 200805-13 for Ptex, sorry for the delay. 134087 2007-10-21 22:40 0000 tetex-2.0.2-makeindex-CVE-2007-0650.patch tetex-2.0.2-makeindex-CVE-2007-0650.patch text/plain SW5kZXg6IHRldGV4LXNyYy0yLjAuMi90ZXhrL21ha2VpbmRleGsvbWtpbmQuYwo9PT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 Ci0tLSB0ZXRleC1zcmMtMi4wLjIub3JpZy90ZXhrL21ha2VpbmRleGsvbWtpbmQuYworKysgdGV0 ZXgtc3JjLTIuMC4yL3RleGsvbWFrZWluZGV4ay9ta2luZC5jCkBAIC0xNzksNyArMTc5LDkgQEAg Y2hhciAgICphcmd2W107CiAJCSAgICBhcmdjLS07CiAJCSAgICBpZiAoYXJnYyA8PSAwKQogCQkJ RkFUQUwoIkV4cGVjdGVkIC1wIDxudW0+XG4iLCIiKTsKLQkJICAgIHN0cmNweShwYWdlbm8sICor K2FyZ3YpOworCQkgICAgaWYgKHN0cmxlbigqKythcmd2KSA+PSBzaXplb2YocGFnZW5vKSkKKwkJ CUZBVEFMKCJQYWdlIG51bWJlciB0b28gaGlnaFxuIiwiIik7CisJCSAgICBzdHJjcHkocGFnZW5v LCAqYXJndik7CiAJCSAgICBpbml0X3BhZ2UgPSBUUlVFOwogCQkgICAgaWYgKFNUUkVRKHBhZ2Vu bywgRVZFTikpIHsKIAkJCWxvZ19naXZlbiA9IFRSVUU7CkBAIC0yMzAsNyArMjMyLDcgQEAgY2hh ciAgICphcmd2W107CiAJCWNoYXIgdG1wW1NUUklOR19NQVggKyA1XTsKIAkJCiAJCS8qIGJhc2Ug c2V0IGJ5IGxhc3QgY2FsbCB0byBjaGVja19pZHggKi8KLQkJc3ByaW50ZiAodG1wLCAiJXMlcyIs IGJhc2UsIElOREVYX1NUWSk7CisJCXNucHJpbnRmICh0bXAsIHNpemVvZih0bXApLCAiJXMlcyIs IGJhc2UsIElOREVYX1NUWSk7CiAJCWlmICgwID09IGFjY2Vzcyh0bXAsIFJfT0spKSB7CiAJCQlv cGVuX3N0eSAodG1wKTsKIAkJCXN0eV9naXZlbiA9IFRSVUU7CkBAIC00MDUsOSArNDA3LDkgQEAg aW50ICAgICBvcGVuX2ZuOwogCQkgICAgU1RSSU5HX01BWCx0b3RtZW0pOwogI2VuZGlmIC8qIERF QlVHICovCiAKLQkgICAgaWYgKChpZHhfZm4gPSAoY2hhciAqKSBtYWxsb2MoU1RSSU5HX01BWCkp ID09IE5VTEwpCisJICAgIGlmICgoaWR4X2ZuID0gKGNoYXIgKikgbWFsbG9jKFNUUklOR19NQVgr NSkpID09IE5VTEwpCiAJCUZBVEFMKCJOb3QgZW5vdWdoIGNvcmUuLi5hYm9ydC5cbiIsICIiKTsK LQkgICAgc3ByaW50ZihpZHhfZm4sICIlcyVzIiwgYmFzZSwgSU5ERVhfSURYKTsKKwkgICAgc25w cmludGYoaWR4X2ZuLCBTVFJJTkdfTUFYKzUsICIlcyVzIiwgYmFzZSwgSU5ERVhfSURYKTsKIAkg ICAgaWYgKChvcGVuX2ZuICYmIAogCSAoKGlkeF9mcCA9IE9QRU5fSU4oaWR4X2ZuKSkgPT0gTlVM TCkKIAkpIHx8CkBAIC00MzQsNyArNDM2LDcgQEAgaW50ICAgICBsb2dfZ2l2ZW47CiAKICAgICAv KiBpbmRleCBvdXRwdXQgZmlsZSAqLwogICAgIGlmICghaW5kX2dpdmVuKSB7Ci0Jc3ByaW50Zihp bmQsICIlcyVzIiwgYmFzZSwgSU5ERVhfSU5EKTsKKwlzbnByaW50ZihpbmQsIHNpemVvZihpbmQp LCAiJXMlcyIsIGJhc2UsIElOREVYX0lORCk7CiAJaW5kX2ZuID0gaW5kOwogICAgIH0KICAgICBp ZiAoKGluZF9mcCA9IE9QRU5fT1VUKGluZF9mbikpID09IE5VTEwpCkBAIC00NDIsMTQgKzQ0NCwx NCBAQCBpbnQgICAgIGxvZ19naXZlbjsKIAogICAgIC8qIGluZGV4IHRyYW5zY3JpcHQgZmlsZSAq LwogICAgIGlmICghaWxnX2dpdmVuKSB7Ci0Jc3ByaW50ZihpbGcsICIlcyVzIiwgYmFzZSwgSU5E RVhfSUxHKTsKKwlzbnByaW50ZihpbGcsIHNpemVvZihpbGcpLCAiJXMlcyIsIGJhc2UsIElOREVY X0lMRyk7CiAJaWxnX2ZuID0gaWxnOwogICAgIH0KICAgICBpZiAoKGlsZ19mcCA9IE9QRU5fT1VU KGlsZ19mbikpID09IE5VTEwpCiAJRkFUQUwoIkNhbid0IGNyZWF0ZSB0cmFuc2NyaXB0IGZpbGUg JXMuXG4iLCBpbGdfZm4pOwogCiAgICAgaWYgKGxvZ19naXZlbikgewotCXNwcmludGYobG9nX2Zu LCAiJXMlcyIsIGJhc2UsIElOREVYX0xPRyk7CisJc25wcmludGYobG9nX2ZuLCBzaXplb2YobG9n X2ZuKSwgIiVzJXMiLCBiYXNlLCBJTkRFWF9MT0cpOwogCWlmICgobG9nX2ZwID0gT1BFTl9JTihs b2dfZm4pKSA9PSBOVUxMKSB7CiAJICAgIEZBVEFMKCJTb3VyY2UgbG9nIGZpbGUgJXMgbm90IGZv dW5kLlxuIiwgbG9nX2ZuKTsKIAl9IGVsc2UgewpAQCAtNTA1LDYgKzUwNyw5IEBAIGNoYXIgICAq Zm47CiAgIGlmICgoZm91bmQgPSBrcHNlX2ZpbmRfZmlsZSAoZm4sIGtwc2VfaXN0X2Zvcm1hdCwg MSkpID09IE5VTEwpIHsKICAgICAgRkFUQUwoIkluZGV4IHN0eWxlIGZpbGUgJXMgbm90IGZvdW5k LlxuIiwgZm4pOwogICB9IGVsc2UgeworICAgIGlmIChzdHJsZW4oZm91bmQpID49IHNpemVvZihz dHlfZm4pKSB7CisgICAgICBGQVRBTCgiU3R5bGUgZmlsZSAlcyB0b28gbG9uZy5cbiIsIGZvdW5k KTsKKyAgICB9CiAgICAgc3RyY3B5KHN0eV9mbixmb3VuZCk7CiAgICAgaWYgKChzdHlfZnAgPSBP UEVOX0lOKHN0eV9mbikpID09IE5VTEwpIHsKICAgICAgIEZBVEFMKCJDb3VsZCBub3Qgb3BlbiBz dHlsZSBmaWxlICVzLlxuIiwgc3R5X2ZuKTsKQEAgLTUxMiw2ICs1MTcsOSBAQCBjaGFyICAgKmZu OwogICB9CiAjZWxzZQogICAgIGlmICgocGF0aCA9IGdldGVudihTVFlMRV9QQVRIKSkgPT0gTlVM TCkgeworICAgICAgICBpZiAoc3RybGVuKGZuKSA+PSBzaXplb2Yoc3R5X2ZuKSkgeworICAgICAg ICAgIEZBVEFMKCJTdHlsZSBmaWxlICVzIHRvbyBsb25nLlxuIiwgZm4pOworICAgICAgICB9CiAJ Lyogc3R5bGUgaW5wdXQgcGF0aCBub3QgZGVmaW5lZCAqLwogCXN0cmNweShzdHlfZm4sIGZuKTsK IAlzdHlfZnAgPSBPUEVOX0lOKHN0eV9mbik7Cg== 134089 2007-10-21 22:40 0000 tetex-2.0.2-xpdf-CVE-2007-3387.patch tetex-2.0.2-xpdf-CVE-2007-3387.patch text/plain SW5kZXg6IHRldGV4LXNyYy0yLjAuMi9saWJzL3hwZGYveHBkZi9TdHJlYW0uY2MKPT09PT09PT09 PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09 PQotLS0gdGV0ZXgtc3JjLTIuMC4yLm9yaWcvbGlicy94cGRmL3hwZGYvU3RyZWFtLmNjCisrKyB0 ZXRleC1zcmMtMi4wLjIvbGlicy94cGRmL3hwZGYvU3RyZWFtLmNjCkBAIC00MjQsNyArNDI0LDEy IEBAIFN0cmVhbVByZWRpY3Rvcjo6U3RyZWFtUHJlZGljdG9yKFN0cmVhbSAKICAgfQogICBwaXhC eXRlcyA9IChuQ29tcHMgKiBuQml0cyArIDcpID4+IDM7CiAgIHJvd0J5dGVzID0gKChuVmFscyAq IG5CaXRzICsgNykgPj4gMykgKyBwaXhCeXRlczsKLSAgaWYgKHJvd0J5dGVzIDwgMCkgeworICBp ZiAod2lkdGggPD0gMCB8fCBuQ29tcHMgPD0gMCB8fCBuQml0cyA8PSAwIHx8CisgICAgIG5Db21w cyA+IGdmeENvbG9yTWF4Q29tcHMgfHwKKyAgICAgbkJpdHMgPiAxNiB8fAorICAgICBuVmFscyA8 PSAwIHx8CisgICAgIG5WYWxzICogbkJpdHMgKyA3IDw9IDAgfHwKKyAgICAgcm93Qnl0ZXMgPD0g MCkgewogICAgIHJldHVybjsKICAgfQogICBwcmVkTGluZSA9IChHdWNoYXIgKilnbWFsbG9jKHJv d0J5dGVzKTsK 136217 2007-11-18 06:22 0000 ptex-3.1.10_p20071030.ebuild ptex-3.1.10_p20071030.ebuild text/plain IyBDb3B5cmlnaHQgMTk5OS0yMDA3IEdlbnRvbyBGb3VuZGF0aW9uCiMgRGlzdHJpYnV0ZWQgdW5k ZXIgdGhlIHRlcm1zIG9mIHRoZSBHTlUgR2VuZXJhbCBQdWJsaWMgTGljZW5zZSB2MgojICRIZWFk ZXI6IC92YXIvY3Zzcm9vdC9nZW50b28teDg2L2FwcC10ZXh0L3B0ZXgvcHRleC0zLjEuMTBfYmV0 YTMuZWJ1aWxkLHYgMS4yIDIwMDcvMDEvMjggMDY6MDA6MzYgZ2Vub25lIEV4cCAkCgpURVRFWF9Q Vj0zLjAKCmluaGVyaXQgdGV0ZXgtMwoKREVTQ1JJUFRJT049IlRoZSBBU0NJSSBwdWJsaXNoaW5n IFRlWCBkaXN0cmlidXRpb24iCkhPTUVQQUdFPSJodHRwOi8vd3d3Lm5uLmlpajR1Lm9yLmpwL350 dXRpbXVyYS90ZXgvcHRldGV4Lmh0bWwiCgpQVEVYX1RFWE1GX1BWPTIuNQpQVEVYX1RFWE1GPSJw dGV4LXRleG1mLSR7UFRFWF9URVhNRl9QVn0udGFyLmd6IgpQVEVURVg9InB0ZXRleDMtJHtQVi8q X3B9IgoKUz0iJHtXT1JLRElSfS90ZXRleC1zcmMtJHtURVRFWF9QVn0iCgpTUkNfUEFUSF9QVEVY PSJmdHA6Ly9mdHAuYXNjaWkuY28uanAvcHViL1RlWC9hc2NpaS1wdGV4IgpTUkNfUEFUSF9URVRF WD0iZnRwOi8vY2FtLmN0YW4ub3JnL3RleC1hcmNoaXZlL3N5c3RlbXMvdW5peC90ZVRlWC9jdXJy ZW50L2Rpc3RyaWIiClRFVEVYX1NSQz0idGV0ZXgtc3JjLSR7VEVURVhfUFZ9LnRhci5neiIKVEVU RVhfVEVYTUY9InRldGV4LXRleG1mLSR7VEVURVhfUFZ9cG8udGFyLmd6IgpURVRFWF9URVhNRl9T UkM9IiIKU1JDX1VSST0iJHtTUkNfUEFUSF9URVRFWH0vJHtURVRFWF9TUkN9Cgkke1NSQ19QQVRI X1RFVEVYfS8ke1RFVEVYX1RFWE1GfQoJaHR0cDovL3R1dGltdXJhLmF0aC5jeC9+bm9iL3RleC9w dGV0ZXgvcHRldGV4My8ke1BURVRFWH0udGFyLmd6CgltaXJyb3I6Ly9nZW50b28vdGV0ZXgtJHtU RVRFWF9QVn0tZ2VudG9vLnRhci5neiIKCkxJQ0VOU0U9IkdQTC0yIEJTRCIKS0VZV09SRFM9In5h bHBoYSB+YXJtIH5hbWQ2NCB+aHBwYSB+aWE2NCB+cHBjIH5wcGM2NCB+cHBjLW1hY29zIH5zaCB+ c3BhcmMgfng4NiIKSVVTRT0iIgoKREVQRU5EPSIhdmlydHVhbC90ZXRleAoJIWFwcC10ZXh0L2R2 aXBuZyIKClM9IiR7V09SS0RJUn0vJHtQVEVURVh9IgoKUFJPVklERT0idmlydHVhbC90ZXRleCIK CnNyY191bnBhY2soKSB7CgkjdGV0ZXgtM19zcmNfdW5wYWNrCgl1bnBhY2sgJHtQVEVURVh9LnRh ci5negoJY3AgIiR7RElTVERJUn0vJHtURVRFWF9TUkN9IiAiJHtXT1JLRElSfSIKCWNwICIke0RJ U1RESVJ9LyR7VEVURVhfVEVYTUZ9IiAiJHtXT1JLRElSfSIKCWNkICIke1N9IgoJZXBhdGNoICIk e0ZJTEVTRElSfSIvJHtQfS1nZW50b28ucGF0Y2gKfQoKc3JjX2NvbXBpbGUoKSB7CgkjdGV0ZXgt M19zcmNfY29tcGlsZQoJY2F0IDw8RU9GID4gbXlfb3B0aW9uCktBTkpJX0NPREU9RVVDCiNLQU5K SV9DT0RFPVVURjgKZXhwb3J0IENGTEFHUz0iJHtDRkxBR1N9IgpTUkNfRElSPSIke1dPUktESVJ9 IgpUTVBfUFJFRklYPSIke1N9L3VzciIKUFJFRklYPS91c3IKREFUQURJUj0vdXNyL3NoYXJlCiNU RVhNRkRJU1Q9L3Vzci9zaGFyZS90ZXhtZi1kaXN0Cm1ha2Vfb3B0aW9uIHZhcnRleGZvbnRzPSIk e1R9IgoKY29uZl9vcHRpb24gLS13aXRob3V0LWR2aWxqawpjb25mX29wdGlvbiAtLXdpdGhvdXQt aW5mbwpjb25mX29wdGlvbiAtLXdpdGhvdXQtdGV4aTJodG1sCmNvbmZfb3B0aW9uIC0td2l0aG91 dC10ZXhpbmZvCgpjb25mX29wdGlvbiAtLXdpdGgtc3lzdGVtLXpsaWIKY29uZl9vcHRpb24gLS13 aXRoLXN5c3RlbS1wbmdsaWIKY29uZl9vcHRpb24gLS13aXRoLXN5c3RlbS1nZApjb25mX29wdGlv biAtLXdpdGgtc3lzdGVtLW5jdXJzZXMKY29uZl9vcHRpb24gLS13aXRoLXN5c3RlbS10MWxpYgpj b25mX29wdGlvbiAtLWVuYWJsZS1zaGFyZWQKY29uZl9vcHRpb24gLS1lbmFibGUta2FuamktaWNv bnYKRU9GCgl1bnNldCBURVhNRk1BSU4gVEVYTUYgSE9NRQoJbWFrZSBjaGVjayB4IHx8IGRpZSAi bWFrZSBjaGVjayB4IGZhaWxlZCIKCW1ha2UgYyBtYWNybyBvdGYgYmFiZWwgZm9udHkgfHwgZGll ICJtYWtlIGMgbWFjcm8gb3RmIGJhYmVsIGZvbnR5IGZhaWxlZCIKCn0KCnNyY19pbnN0YWxsKCkg ewoJI3RldGV4LTNfc3JjX2luc3RhbGwKCWRvYmluIHVzci9iaW4vKgoJaW5zaW50byAvdXNyL3No YXJlOyBkb2lucyAtciB1c3Ivc2hhcmUvKgoJaW5zaW50byAvdXNyL2luY2x1ZGU7IGRvaW5zIC1y IHVzci9pbmNsdWRlLyoKCWRvbGliIHVzci9saWIvKgoJZG9tYW4gdXNyL21hbi8qCglkb2luZm8g dXNyL2luZm8vKgoJCglybSAtciAiJHtEfSIvdXNyL3NoYXJlL3RleG1mL3dlYjJjL3RleG1mLmNu Zi4qIFwKCQkiJHtEfSIvdXNyL3NoYXJlL3RleG1mL3dlYjJjL2ZtdHV0aWwuY25mLiogXAoJCSIk e0R9Ii91c3Ivc2hhcmUvaW5mby9kaXIKfQoKcGtnX3Bvc3RpbnN0KCkgewoJIyBlYXJsaWVyIGRl Y2xhcmF0aW9uIG9mIFRFWElOUFVUUyBoaWRlcyBvdXIgcHRleCBjb25maWd1cmF0aW9uCglzZWQg LWkgLWUgJy9URVhJTlBVVFMucGxhdGV4L2QnICR7Uk9PVH0vZXRjL3RleG1mL3RleG1mLmQvMDB0 ZXhtZi5jbmYKCXRldGV4LTNfcGtnX3Bvc3RpbnN0CgoJZWxvZwoJZWxvZyAiSmFwYW5lc2UgZHZp cHMgYW5kIHhkdmkgaGF2ZSBiZWVuIHJlbmFtZWQgdG8gcGR2aXBzIGFuZCBweGR2aS4iCgllbG9n ICJZb3UgYWxzbyBuZWVkIHRvIGVtZXJnZSBhcHAtdGV4dC9kdmlwZGZteCB0byBjb252ZXJ0IGR2 aSBpbnRvIFBERi4iCgllbG9nCn0K 136218 2007-11-18 06:23 0000 files/ptex-3.1.10_p20071030-gentoo.patch ptex-3.1.10_p20071030-gentoo.patch text/plain ZGlmZiAtTmF1ciBwdGV0ZXgzLTIwMDcxMDMwLm9yaWcvMmV4dHJhY3Qtc3JjLnNoIHB0ZXRleDMt MjAwNzEwMzAvMmV4dHJhY3Qtc3JjLnNoCi0tLSBwdGV0ZXgzLTIwMDcxMDMwLm9yaWcvMmV4dHJh Y3Qtc3JjLnNoCTIwMDctMTAtMTggMTA6NDY6MTAuMDAwMDAwMDAwICswOTAwCisrKyBwdGV0ZXgz LTIwMDcxMDMwLzJleHRyYWN0LXNyYy5zaAkyMDA3LTExLTE1IDIzOjQxOjMxLjAwMDAwMDAwMCAr MDkwMApAQCAtMTQ2LDI5ICsxNDYsMjkgQEAKICAgICAkQ1AgJFNSQy90ZXhrL2R2aXBzay8qICRT UkMvdGV4ay9wZHZpcHNrLwogICAgICRNS0RJUiAkU1JDL3RleGsvcHhkdmlrCiAgICAgJENQIC1y ICRTUkMvdGV4ay94ZHZpay8qICRTUkMvdGV4ay9weGR2aWsvCi0gICAgUD1wCisgICAgUFA9cAog ZmkgIyAiJEpBUEFORVNFIiA9ICJpbnRlcm5hdGlvbmFsIgogIyMgZm9yIGR2aXBzawotI3Rhcngg YXJjaGl2ZS9kdmlwc2stanBhdGNoLXAxLjdhLnRhci5neiAgICAgICAgICAkU1JDL3RleGsvJHtQ fWR2aXBzawotI2NwYXRjaCAkU1JDL3RleGsvJHtQfWR2aXBzay9kdmlwc2stcDEuN2EucGF0Y2gg MSAkU1JDL3RleGsvJHtQfWR2aXBzawotJENQICRTUkMvdGV4ay8ke1B9ZHZpcHNrL01ha2VmaWxl LmluICRTUkMvdGV4ay8ke1B9ZHZpcHNrL01ha2VmaWxlLmluLnRldGV4Ci10YXJ4IGFyY2hpdmUv ZHZpcHNrLTUuOTViLXAxLjdhLnRhci5neiAgICAgICAgICAgICAgICAkU1JDL3RleGsvJHtQfWR2 aXBzawotY3BhdGNoICRTUkMvdGV4ay8ke1B9ZHZpcHNrL2R2aXBzay01Ljk1Yi1wMS43YS5kaWZm IDEgJFNSQy90ZXhrLyR7UH1kdmlwc2sKKyN0YXJ4IGFyY2hpdmUvZHZpcHNrLWpwYXRjaC1wMS43 YS50YXIuZ3ogICAgICAgICAgJFNSQy90ZXhrLyR7UFB9ZHZpcHNrCisjY3BhdGNoICRTUkMvdGV4 ay8ke1BQfWR2aXBzay9kdmlwc2stcDEuN2EucGF0Y2ggMSAkU1JDL3RleGsvJHtQUH1kdmlwc2sK KyRDUCAkU1JDL3RleGsvJHtQUH1kdmlwc2svTWFrZWZpbGUuaW4gJFNSQy90ZXhrLyR7UFB9ZHZp cHNrL01ha2VmaWxlLmluLnRldGV4Cit0YXJ4IGFyY2hpdmUvZHZpcHNrLTUuOTViLXAxLjdhLnRh ci5neiAgICAgICAgICAgICAgICAkU1JDL3RleGsvJHtQUH1kdmlwc2sKK2NwYXRjaCAkU1JDL3Rl eGsvJHtQUH1kdmlwc2svZHZpcHNrLTUuOTViLXAxLjdhLmRpZmYgMSAkU1JDL3RleGsvJHtQUH1k dmlwc2sKICMjIGRpc2FibGUgaW5zdGFsbGluZyAnY29uZmlnLnBzJwotJENQICRTUkMvdGV4ay8k e1B9ZHZpcHNrL01ha2VmaWxlLmluICAgICAgICRTUkMvdGV4ay8ke1B9ZHZpcHNrL01ha2VmaWxl LmluLmpwCi0kQ1AgJFNSQy90ZXhrLyR7UH1kdmlwc2svTWFrZWZpbGUuaW4udGV0ZXggJFNSQy90 ZXhrLyR7UH1kdmlwc2svTWFrZWZpbGUuaW4KKyRDUCAkU1JDL3RleGsvJHtQUH1kdmlwc2svTWFr ZWZpbGUuaW4gICAgICAgJFNSQy90ZXhrLyR7UFB9ZHZpcHNrL01ha2VmaWxlLmluLmpwCiskQ1Ag JFNSQy90ZXhrLyR7UFB9ZHZpcHNrL01ha2VmaWxlLmluLnRldGV4ICRTUkMvdGV4ay8ke1BQfWR2 aXBzay9NYWtlZmlsZS5pbgogIyMgZGlzYWJsZSBwc2ZvbnRzX2pwLm1hcAotI3BlcmxwcmludCAn cy9eKHAgXCtwc2ZvbnRzXF9qcFwubWFwKS8qIFwxL2cnICRTUkMvdGV4ay8ke1B9ZHZpcHNrL2Nv bmZpZy5wcworI3BlcmxwcmludCAncy9eKHAgXCtwc2ZvbnRzXF9qcFwubWFwKS8qIFwxL2cnICRT UkMvdGV4ay8ke1BQfWR2aXBzay9jb25maWcucHMKICNwZXJsbm9wcmludCAnJGE9MSBpZiAvXiMg cHNmb250c19qcC5tYXAvOyAkYT0wIGlmIC9eIyBJbmZvIGZpbGVzLzsKLSMJcHJpbnQgdW5sZXNz ICRhJyAkU1JDL3RleGsvJHtQfWR2aXBzay9NYWtlZmlsZS5pbgorIwlwcmludCB1bmxlc3MgJGEn ICRTUkMvdGV4ay8ke1BQfWR2aXBzay9NYWtlZmlsZS5pbgogCiAjIyBmb3IgeGR2aWsKLXpwYXRj aCBhcmNoaXZlL3hkdmlrLTIwMD8/Pz8/LXRldGV4LTMuMC5kaWZmLmd6IDMgJFNSQy90ZXhrLyR7 UH14ZHZpaworenBhdGNoIGFyY2hpdmUveGR2aWstMjAwPz8/Pz8tdGV0ZXgtMy4wLmRpZmYuZ3og MyAkU1JDL3RleGsvJHtQUH14ZHZpawogIyBmaXggZm9yIEZDNQogcGVybHByaW50ICdwcmludCAi I2RlZmluZSBOZWVkV2lkZVByb3RvdHlwZXMgMVxuIiBpZiAvbGltaXRzLycgXAotICAgICRTUkMv dGV4ay8ke1B9eGR2aWsveGR2aS5oCisgICAgJFNSQy90ZXhrLyR7UFB9eGR2aWsveGR2aS5oCiAj IGFkanVzdCBYIHJlc291cmNlCi1jYXQgPDxFT0YgPj4gJFNSQy90ZXhrLyR7UH14ZHZpay90ZXht Zi9YRHZpIHx8IGV4aXQgMQorY2F0IDw8RU9GID4+ICRTUkMvdGV4ay8ke1BQfXhkdmlrL3RleG1m L1hEdmkgfHwgZXhpdCAxCiAKIAogISEhIC0tLS0tLS0gYWRkZWQgYnkgcHRldGV4MyAtLS0tLS0t CmRpZmYgLU5hdXIgcHRldGV4My0yMDA3MTAzMC5vcmlnLzdmb250LXNlYXJjaC5zaCBwdGV0ZXgz LTIwMDcxMDMwLzdmb250LXNlYXJjaC5zaAotLS0gcHRldGV4My0yMDA3MTAzMC5vcmlnLzdmb250 LXNlYXJjaC5zaAkyMDA3LTEwLTMwIDE4OjIyOjI3LjAwMDAwMDAwMCArMDkwMAorKysgcHRldGV4 My0yMDA3MTAzMC83Zm9udC1zZWFyY2guc2gJMjAwNy0xMS0xNiAwMDoyOTowMC4wMDAwMDAwMDAg KzA5MDAKQEAgLTE4MiwxOCArMTgyLDE4IEBACiAjICB0aGUgbGF0dGVyLCBoaWdoZXIgcXVhbGl0 eQogcm1sZ2JtIDw8RU9GCiAjIGtvY2hpIChkaXN0cmlidXRpb24gc3RvcHBlZCkKLQlrb2NoaS1t aW5jaG8udHRmCi0Ja29jaGktZ290aGljLnR0ZgorCS91c3Ivc2hhcmUvZm9udHMva29jaGktZm9u dHMva29jaGktbWluY2hvLnR0ZgorCS91c3Ivc2hhcmUvZm9udHMva29jaGktZm9udHMva29jaGkt Z290aGljLnR0ZgogIyBrb2NoaS1zdWJzdCAoZm9ybWVyIG9mIHNhemFuYW1pKQotCWtvY2hpLW1p bmNoby1zdWJzdC50dGYKLQlrb2NoaS1nb3RoaWMtc3Vic3QudHRmCisJL3Vzci9zaGFyZS9mb250 cy9rb2NoaS1zdWJzdGl0dXRlL2tvY2hpLW1pbmNoby1zdWJzdC50dGYKKwkvdXNyL3NoYXJlL2Zv bnRzL2tvY2hpLXN1YnN0aXR1dGUva29jaGktZ290aGljLXN1YnN0LnR0ZgogIyBzYXphbmFtaSBo dHRwOi8vd2lraS5mZGlhcnkubmV0L2ZvbnQvP3NhemFuYW1pCi0Jc2F6YW5hbWktbWluY2hvLnR0 ZgotCXNhemFuYW1pLWdvdGhpYy50dGYKKwkvdXNyL3NoYXJlL2ZvbnRzL3NhemFuYW1pL3NhemFu YW1pLW1pbmNoby50dGYKKwkvdXNyL3NoYXJlL2ZvbnRzL3NhemFuYW1pL3NhemFuYW1pLWdvdGhp Yy50dGYKICMgSVBBIGZvbnQgaHR0cHM6Ly9zb3VyY2Vmb3JnZS5qcC9wcm9qZWN0cy9vcGZjLwog IyAob3BmYy1Nb2R1bGVIUC0xLjEuMV93aXRoSVBBRm9udHMudGFyLmd6KQotCWlwYW0udHRmCi0J aXBhZy50dGYKKwkvdXNyL3NoYXJlL2ZvbnRzL2phLWlwYWZvbnRzL2lwYW0udHRmCisJL3Vzci9z aGFyZS9mb250cy9qYS1pcGFmb250cy9pcGFnLnR0ZgogIyBEeW5hTGFiCiAJZGZtaW1wMy50dGMK IAlkZmdvdHA1LnR0Ywo=