source: trunk/server/fedora/specs/gnutls.spec.patch @ 2533

Last change on this file since 2533 was 2507, checked in by achernya, 9 years ago
Fix gnutls CVE 2014-0092
File size: 989 bytes
RevLine 
[2507]1--- gnutls.spec.orig    2014-03-08 16:13:24.922925743 -0500
2+++ gnutls.spec 2014-03-08 16:14:50.464231133 -0500
3@@ -1,7 +1,7 @@
4 Summary: A TLS protocol implementation
5 Name: gnutls
6 Version: 2.12.23
7-Release: 2%{?dist}
8+Release: 2%{?dist}.scripts.%{scriptsversion}
9 # The libgnutls library is LGPLv2+, utilities and remaining libraries are GPLv3+
10 License: GPLv3+ and LGPLv2+
11 Group: System Environment/Libraries
12@@ -26,6 +26,8 @@
13 # Use only FIPS approved ciphers in the FIPS mode
14 Patch7: gnutls-2.12.21-fips-algorithms.patch
15 Patch8: gnutls-2.12.23-cve-2013-2116.patch
16+# Patch GNUTLS-SA-2014-2
17+Patch9: gnutls-2.12.x-cve-2014-0092.patch
18 
19 BuildRoot:  %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
20 Requires: libgcrypt >= 1.2.2
21@@ -99,6 +101,7 @@
22 %patch6 -p1 -b .cli-debug
23 %patch7 -p1 -b .fips
24 %patch8 -p1 -b .overread
25+%patch9 -p1 -b .cve-2014-0092
26 
27 for i in auth_srp_rsa.c auth_srp_sb64.c auth_srp_passwd.c auth_srp.c gnutls_srp.c ext_srp.c; do
28     touch lib/$i
Note: See TracBrowser for help on using the repository browser.