Last change
on this file since 1558 was
1557,
checked in by adehnert, 14 years ago
|
Patch for CVE-2010-1440 (and CVE-2010-0739)
Both are crashes or arbitrary code execution.
|
File size:
1.1 KB
|
Rev | Line | |
---|
[1557] | 1 | --- texlive.orig.spec 2010-05-07 00:27:05.000000000 -0400 |
---|
| 2 | +++ texlive.spec 2010-05-07 00:40:09.000000000 -0400 |
---|
| 3 | @@ -21,7 +21,7 @@ |
---|
| 4 | |
---|
| 5 | Name: texlive |
---|
| 6 | Version: %{texlive_ver} |
---|
| 7 | -Release: 46%{?dist} |
---|
| 8 | +Release: 46.scripts.%{scriptsversion}%{?dist} |
---|
| 9 | Summary: Binaries for the TeX formatting system |
---|
| 10 | |
---|
| 11 | Group: Applications/Publishing |
---|
| 12 | @@ -126,6 +126,9 @@ |
---|
| 13 | Patch1006: texlive-2007-ptex-3.1.10.patch |
---|
| 14 | Patch1007: texlive-2007-fmtutil-ptex.patch |
---|
| 15 | |
---|
| 16 | +# 2000-: Scripts patches |
---|
| 17 | +Patch2000: texlive-CVE-2010-1440.patch |
---|
| 18 | + |
---|
| 19 | BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) |
---|
| 20 | |
---|
| 21 | BuildRequires: flex bison ed xdg-utils |
---|
| 22 | @@ -431,6 +434,8 @@ |
---|
| 23 | |
---|
| 24 | %patch1007 -p1 -b .ptex |
---|
| 25 | |
---|
| 26 | +%patch2000 -p1 -b .CVE-2010-1440 |
---|
| 27 | + |
---|
| 28 | %if %{disable_lcdf_typetools} |
---|
| 29 | pushd utils |
---|
| 30 | rm -rf lcdf-typetools |
---|
| 31 | @@ -1238,6 +1243,10 @@ |
---|
| 32 | %{_mandir}/man1/texutil.1* |
---|
| 33 | |
---|
| 34 | %changelog |
---|
| 35 | +* Fri May 07 2010 Alex Dehnert <adehnert@mit.edu> 2007-46.scripts |
---|
| 36 | +- add patch for Bug 586819 - (CVE-2010-1440) from |
---|
| 37 | + https://bugzilla.redhat.com/attachment.cgi?id=410148 |
---|
| 38 | + |
---|
| 39 | * Fri Oct 23 2009 Jindrich Novy <jnovy@redhat.com> 2007-46 |
---|
| 40 | - add missing dependency on kpathsea |
---|
| 41 | |
---|
Note: See
TracBrowser
for help on using the repository browser.