|
@@ -12,7 +12,7 @@
|
|
|
%define new_perl %{new_perl_flags} $RPM_BUILD_ROOT/%{_bindir}/perl
|
|
%define new_perl %{new_perl_flags} $RPM_BUILD_ROOT/%{_bindir}/perl
|
|
|
|
|
|
|
|
%define perl_version 5.12.3
|
|
%define perl_version 5.12.3
|
|
|
-%define perlrel 5
|
|
|
|
|
|
|
+%define perlrel 9
|
|
|
%define perl_epoch 2
|
|
%define perl_epoch 2
|
|
|
|
|
|
|
|
Provides: perl(:WITH_PERLIO)
|
|
Provides: perl(:WITH_PERLIO)
|
|
@@ -130,6 +130,11 @@ Patch1011: perl-5.12.1-fix_thread_leak.patch
|
|
|
# CVE-2011-1487
|
|
# CVE-2011-1487
|
|
|
# based http://perl5.git.perl.org/perl.git/commitdiff/539689e74a3bcb04d29e4cd9396de91a81045b99
|
|
# based http://perl5.git.perl.org/perl.git/commitdiff/539689e74a3bcb04d29e4cd9396de91a81045b99
|
|
|
Patch2001: perl-5.12.3-CVE-2011-1487.patch
|
|
Patch2001: perl-5.12.3-CVE-2011-1487.patch
|
|
|
|
|
+Patch2010: perl-5.12.3_CVE-2012-3597.patch
|
|
|
|
|
+Patch2020: perl-5.12.3_CVE-2012-5195.patch
|
|
|
|
|
+Patch2030: perl-5.12.3_CVE-2012-5526.patch
|
|
|
|
|
+Patch2040: perl-5.12.5_CVE-2013-1667.patch
|
|
|
|
|
+Patch2050: perl-5.12.3_CVE-2012-6329.patch
|
|
|
|
|
|
|
|
Buildroot: %{_tmppath}/%{name}-%{version}-root
|
|
Buildroot: %{_tmppath}/%{name}-%{version}-root
|
|
|
BuildRequires: gawk, grep, tcsh, gdbm-devel, db4-devel
|
|
BuildRequires: gawk, grep, tcsh, gdbm-devel, db4-devel
|
|
@@ -266,6 +271,11 @@ Perl library directories in /usr/local
|
|
|
## security patch(es)
|
|
## security patch(es)
|
|
|
# CVE-2011-1487
|
|
# CVE-2011-1487
|
|
|
%patch2001 -p1
|
|
%patch2001 -p1
|
|
|
|
|
+%patch2010 -p1 -b .CVE-2012-3597
|
|
|
|
|
+%patch2020 -p1 -b .CVE-2012-5195
|
|
|
|
|
+%patch2030 -p1
|
|
|
|
|
+%patch2040 -p1 -b .CVE-2013-1667
|
|
|
|
|
+%patch2050 -p1
|
|
|
|
|
|
|
|
# Compress Changes* to save space
|
|
# Compress Changes* to save space
|
|
|
%{__gzip} Changes*
|
|
%{__gzip} Changes*
|
|
@@ -549,6 +559,19 @@ make test
|
|
|
%dir %{_prefix}/local/lib/site_perl/%{perl_version}/%{_arch}-%{_os}%{thread_arch}
|
|
%dir %{_prefix}/local/lib/site_perl/%{perl_version}/%{_arch}-%{_os}%{thread_arch}
|
|
|
|
|
|
|
|
%changelog
|
|
%changelog
|
|
|
|
|
+* Wed Apr 3 2013 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> - 5.12.3-9
|
|
|
|
|
+- add patch2050 for fix CVE-2012-6329 (Guts.pm)
|
|
|
|
|
+
|
|
|
|
|
+* Tue Mar 12 2013 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> - 5.12.3-8
|
|
|
|
|
+- add Patch2040 for fix CVE-2013-1667 (rehashing)
|
|
|
|
|
+
|
|
|
|
|
+* Sun Jan 6 2013 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> - 5.12.3-7
|
|
|
|
|
+- add patch2030 for fix CVE-2012-5526 (LF escape)
|
|
|
|
|
+
|
|
|
|
|
+* Tue Oct 16 2012 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> - 5.12.3-6
|
|
|
|
|
+- add patch2010 for fix CVE-2012-3597 (Digest)
|
|
|
|
|
+- add patch2020 for fix CVE-2012-5195 ('x' string repeat operator)
|
|
|
|
|
+
|
|
|
* Mon Mar 05 2012 MATSUBAYASHI Kohji <shaolin@vinelinux.org> - 5.12.3-5
|
|
* Mon Mar 05 2012 MATSUBAYASHI Kohji <shaolin@vinelinux.org> - 5.12.3-5
|
|
|
- fix vendorlib/sitelib paths (so that building noarch Perl module will
|
|
- fix vendorlib/sitelib paths (so that building noarch Perl module will
|
|
|
always go into library paths whith starts with /usr/lib on x86_64 archs)
|
|
always go into library paths whith starts with /usr/lib on x86_64 archs)
|
iwaim