Last change
on this file since 1433 was
1433,
checked in by mitchb, 15 years ago
|
Scriptsify gzip to patch for CVE-2009-2624 and CVE-2010-0001
|
File size:
1.1 KB
|
Rev | Line | |
---|
[1433] | 1 | --- gzip.spec.orig 2010-01-21 05:33:38.000000000 -0500 |
---|
| 2 | +++ gzip.spec 2010-01-21 05:37:54.000000000 -0500 |
---|
| 3 | @@ -1,7 +1,7 @@ |
---|
| 4 | Summary: The GNU data compression program |
---|
| 5 | Name: gzip |
---|
| 6 | Version: 1.3.12 |
---|
| 7 | -Release: 9%{?dist} |
---|
| 8 | +Release: 9.scripts.%{scriptsversion}%{?dist} |
---|
| 9 | # info pages are under GFDL license |
---|
| 10 | License: GPLv2 and GFDL |
---|
| 11 | Group: Applications/File |
---|
| 12 | @@ -17,6 +17,8 @@ |
---|
| 13 | Patch16: gzip-1.3.5-cve-2006-4337_len.patch |
---|
| 14 | Patch17: gzip-1.3.12-futimens.patch |
---|
| 15 | Patch18: gzip-1.3.12-zdiff.patch |
---|
| 16 | +Patch100: gzip-cve-2009-2624.patch |
---|
| 17 | +Patch101: gzip-cve-2010-0001.patch |
---|
| 18 | URL: http://www.gzip.org/ |
---|
| 19 | Requires: /sbin/install-info |
---|
| 20 | Requires: mktemp less |
---|
| 21 | @@ -43,6 +45,8 @@ |
---|
| 22 | %patch16 -p1 -b .4337l |
---|
| 23 | %patch17 -p1 -b .futimens |
---|
| 24 | %patch18 -p1 -b .ret |
---|
| 25 | +%patch100 -p0 -b .cve-2009-2624 |
---|
| 26 | +%patch101 -p0 -b .cve-2010-0001 |
---|
| 27 | %build |
---|
| 28 | export DEFS="NO_ASM" |
---|
| 29 | export CPPFLAGS="-DHAVE_LSTAT" |
---|
| 30 | @@ -89,6 +93,10 @@ |
---|
| 31 | %{_infodir}/gzip.info* |
---|
| 32 | |
---|
| 33 | %changelog |
---|
| 34 | +* Thu Jan 21 2010 Mitchell Berger <mitchb@mit.edu> 1.3.12-9.scripts.1432 |
---|
| 35 | +- Add patch for CVE-2009-2624 |
---|
| 36 | +- Add patch for CVE-2010-0001 |
---|
| 37 | + |
---|
| 38 | * Fri Mar 13 2009 Ivana Varekova <varekova@redhat.com> - 1.3.12-9 |
---|
| 39 | - fix #484213 - zdiff shows no output |
---|
| 40 | |
---|
Note: See
TracBrowser
for help on using the repository browser.