source: trunk/server/fedora/specs/gzip.spec.patch @ 1433

Last change on this file since 1433 was 1433, checked in by mitchb, 15 years ago
Scriptsify gzip to patch for CVE-2009-2624 and CVE-2010-0001
File size: 1.1 KB
RevLine 
[1433]1--- gzip.spec.orig      2010-01-21 05:33:38.000000000 -0500
2+++ gzip.spec   2010-01-21 05:37:54.000000000 -0500
3@@ -1,7 +1,7 @@
4 Summary: The GNU data compression program
5 Name: gzip
6 Version: 1.3.12
7-Release: 9%{?dist}
8+Release: 9.scripts.%{scriptsversion}%{?dist}
9 # info pages are under GFDL license
10 License: GPLv2 and GFDL
11 Group: Applications/File
12@@ -17,6 +17,8 @@
13 Patch16: gzip-1.3.5-cve-2006-4337_len.patch
14 Patch17: gzip-1.3.12-futimens.patch
15 Patch18: gzip-1.3.12-zdiff.patch
16+Patch100: gzip-cve-2009-2624.patch
17+Patch101: gzip-cve-2010-0001.patch
18 URL: http://www.gzip.org/
19 Requires: /sbin/install-info
20 Requires: mktemp less
21@@ -43,6 +45,8 @@
22 %patch16 -p1 -b .4337l
23 %patch17 -p1 -b .futimens
24 %patch18 -p1 -b .ret
25+%patch100 -p0 -b .cve-2009-2624
26+%patch101 -p0 -b .cve-2010-0001
27 %build
28 export DEFS="NO_ASM"
29 export CPPFLAGS="-DHAVE_LSTAT"
30@@ -89,6 +93,10 @@
31 %{_infodir}/gzip.info*
32 
33 %changelog
34+* Thu Jan 21 2010 Mitchell Berger <mitchb@mit.edu> 1.3.12-9.scripts.1432
35+- Add patch for CVE-2009-2624
36+- Add patch for CVE-2010-0001
37+
38 * Fri Mar 13 2009 Ivana Varekova <varekova@redhat.com> - 1.3.12-9
39 - fix #484213 - zdiff shows no output
40 
Note: See TracBrowser for help on using the repository browser.