source: trunk/server/fedora/specs/bash.spec.patch @ 2619

Last change on this file since 2619 was 2619, checked in by andersk, 10 years ago
bash: Disable function imports The upstream fix for CVE-2014-6271 isn’t good enough. Furthermore, even if they were completely fixed to operate as intended, they are still a bad idea to begin with. Disable this feature entirely.
File size: 900 bytes
RevLine 
[2619]1--- bash.spec.old       2014-07-21 07:48:05.000000000 -0400
2+++ bash.spec   2014-09-24 20:59:58.416349649 -0400
3@@ -7,7 +7,8 @@
4 Version: %{baseversion}%{patchleveltag}
5 Name: bash
6 Summary: The GNU Bourne Again shell
7-Release: 3%{?dist}
8+Release: 3%{?dist}.scripts.%{scriptsversion}
9+Provides: scripts-bash
10 Group: System Environment/Shells
11 License: GPLv3+
12 Url: http://www.gnu.org/software/bash
13@@ -124,6 +125,9 @@
14 # 1112710 - mention ulimit -c and -f POSIX block size
15 Patch128: bash-4.2-man-ulimit.patch
16 
17+# Disable function imports
18+Patch9000: bash-4.2-disable-function-imports.patch
19+
20 BuildRequires: texinfo bison
21 BuildRequires: ncurses-devel
22 BuildRequires: autoconf, gettext
23@@ -226,6 +230,7 @@
24 %patch125 -p1 -b .size_type
25 %patch126 -p1 -b .missing_closes
26 %patch128 -p1 -b .ulimit
27+%patch9000 -p1 -b .disable_function_imports
28 
29 echo %{version} > _distribution
30 echo %{release} > _patchlevel
Note: See TracBrowser for help on using the repository browser.