|
@@ -6,7 +6,7 @@ Summary(ja): GNU Bourne Again シェル (bash).
|
|
|
|
|
|
Name: bash
|
|
|
Version: %{bashversion}.%{patchlevel}
|
|
|
-Release: 1%{?_dist_release}
|
|
|
+Release: 2%{?_dist_release}
|
|
|
|
|
|
Group: System Environment/Shells
|
|
|
License: GPLv3+
|
|
@@ -88,6 +88,10 @@ Patch123: bash-4.2-manpage_trap.patch
|
|
|
# https://www.securecoding.cert.org/confluence/display/seccode/INT32-C.+Ensure+that+operations+on+signed+integers+do+not+result+in+overflow
|
|
|
Patch125: bash-4.2-size_type.patch
|
|
|
|
|
|
+# CVE-2014-7169
|
|
|
+# http://www.openwall.com/lists/oss-security/2014/09/25/10
|
|
|
+Patch1000: bash-eol-pushback.patch
|
|
|
+
|
|
|
Buildroot: %{_tmppath}/%{name}-%{version}-root
|
|
|
BuildRequires: texinfo, bison, ncurses-devel, autoconf, gettext
|
|
|
Obsoletes: bash <= 1.14.7
|
|
@@ -177,6 +181,8 @@ Again shell.
|
|
|
%patch123 -p1
|
|
|
%patch125 -p1 -b .size_type
|
|
|
|
|
|
+%patch1000 -p0 -b .CVE-2014-7169
|
|
|
+
|
|
|
echo %{version} > _distribution
|
|
|
echo %{release} |sed 's/vl.*//' > _patchlevel
|
|
|
|
|
@@ -307,6 +313,9 @@ f:close()
|
|
|
|
|
|
|
|
|
%changelog
|
|
|
+* Thu Sep 25 2014 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> 4.3.25-2
|
|
|
+- added patch1000 to fix CVE-2014-7169.
|
|
|
+
|
|
|
* Thu Sep 25 2014 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> 4.3.25-1
|
|
|
- updated to 4.3 patch level 25
|
|
|
|