|
|
@@ -3,13 +3,20 @@ Summary(ja): SSH2プロトコルを実装するためのライブラリ
|
|
|
|
|
|
Name: libssh
|
|
|
Version: 0.4.8
|
|
|
-Release: 1%{?_dist_release}
|
|
|
+Release: 2%{?_dist_release}
|
|
|
|
|
|
Group: System Environment/Libraries
|
|
|
License: LGPLv2+
|
|
|
URL: http://www.libssh.org/
|
|
|
Source0: http://www.libssh.org/files/%{name}-%{version}.tar.gz
|
|
|
Patch0: libssh-0.2-libdir.patch
|
|
|
+# security fix
|
|
|
+## from Debian libssh 0.4.5-3+squeeze1
|
|
|
+Patch10: CVE-2012-4559.patch
|
|
|
+Patch11: CVE-2012-4561.patch
|
|
|
+Patch12: CVE-2012-4562.patch
|
|
|
+## based Red Hat BTS #871614
|
|
|
+Patch13: CVE-2012-4560.patch
|
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-root
|
|
|
|
|
|
BuildRequires: openssl-devel
|
|
|
@@ -37,6 +44,10 @@ developing applications that use %{name}.
|
|
|
|
|
|
%prep
|
|
|
%setup -q
|
|
|
+%patch10 -p 1 -b .CVE-2012-4559
|
|
|
+%patch11 -p 1 -b .CVE-2012-4561
|
|
|
+%patch12 -p 1 -b .CVE-2012-4562
|
|
|
+%patch13 -p 1 -b .CVE-2012-4560
|
|
|
|
|
|
%build
|
|
|
mkdir -p %{_target_platform}
|
|
|
@@ -72,6 +83,15 @@ rm -rf $RPM_BUILD_ROOT
|
|
|
%{_libdir}/*.so
|
|
|
|
|
|
%changelog
|
|
|
+* Mon Dec 3 2012 IWAI, Masaharu <iwai@alib.jp> 0.4.8-2
|
|
|
+- SECURITY FIX:
|
|
|
+ - add patches from Debian libssh 0.4.5-3+squeeze1
|
|
|
+ - CVE-2012-4559.patch (Patch10)
|
|
|
+ - CVE-2012-4561.patch (Patch11)
|
|
|
+ - CVE-2012-4562.patch (Patch12)
|
|
|
+ - add patch based Red Hat BTS #871614
|
|
|
+ - CVE-2012-4560.patch (Patch13)
|
|
|
+
|
|
|
* Sat Jan 29 2011 Yoji TOYODA <bsyamato@sea.plala.or.jp> 0.4.8-1
|
|
|
- new upstream release
|
|
|
|
iwaim