[php-pear-CAS] update to 1.3.2, security fix for CVE-2012-5583

Remi Collet remi at fedoraproject.org
Sat Dec 29 16:13:13 UTC 2012 

commit a445f38105e485729f741d1e86115f519416122c
Author: Remi Collet <remi at fedoraproject.org>
Date:   Sat Dec 29 17:13:06 2012 +0100

    update to 1.3.2, security fix for CVE-2012-5583

 .gitignore        |    1 +
 php-pear-CAS.spec |   21 +++++++++++++++++----
 sources           |    2 +-
 3 files changed, 19 insertions(+), 5 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index a971c5c..d1b5232 100644
--- a/.gitignore
+++ b/.gitignore
@@ -3,3 +3,4 @@ package-*.xml
 /CAS-1.2.2.tgz
 /CAS-1.3.0.tgz
 /CAS-1.3.1.tgz
+/CAS-1.3.2.tgz
diff --git a/php-pear-CAS.spec b/php-pear-CAS.spec
index 8d21fbd..bd30b17 100644
--- a/php-pear-CAS.spec
+++ b/php-pear-CAS.spec
@@ -1,12 +1,13 @@
 %{!?__pear: %{expand: %%global __pear %{_bindir}/pear}}
+%{!?pear_metadir: %global pear_metadir %{pear_phpdir}}
 %global pear_name CAS
 %global channel   __uri
 #global prever    RC7
 
 
 Name:           php-pear-CAS
-Version:        1.3.1
-Release:        2%{?dist}
+Version:        1.3.2
+Release:        1%{?dist}
 Summary:        Central Authentication Service client library in php
 
 Group:          Development/Libraries
@@ -22,7 +23,14 @@ BuildRequires:  php-pear >= 1:1.4.9-1.2
 Requires(post): %{__pear}
 Requires(postun): %{__pear}
 Requires:       php-pear(PEAR) >= 1.4.3
-Requires:       php-pdo, php-xml >= 5.0.0
+Requires:       php-curl
+Requires:       php-dom
+Requires:       php-pcre
+Requires:       php-pdo
+Requires:       php-session
+Requires:       php-spl
+# Optional: php-imap (when use Proxied Imap)
+
 Provides:       php-pear(%{channel}/%{pear_name}) = %{version}
 # this library is mostly known as phpCAS
 Provides:       phpCAS = %{version}-%{release}
@@ -50,7 +58,7 @@ cd %{pear_name}-%{version}%{?prever}
 %{__pear} install --nodeps --packagingroot %{buildroot} %{name}.xml
 
 # Clean up unnecessary files
-rm -rf %{buildroot}%{pear_phpdir}/.??*
+rm -rf %{buildroot}%{pear_metadir}/.??*
 
 # Install XML package description
 mkdir -p %{buildroot}%{pear_xmldir}
@@ -81,6 +89,11 @@ fi
 
 
 %changelog
+* Sat Dec 29 2012 Remi Collet <remi at fedoraproject.org> - 1.3.2-1
+- update to Version 1.3.2, security fix for
+  CVE-2012-5583 Missing CN validation of CAS server certificate
+- add requires for all needed php extensions
+
 * Fri Jul 20 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.3.1-2
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
 
diff --git a/sources b/sources
index 5cd66d5..7005de2 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-783a499a49bd69ab012e6c42781fd199  CAS-1.3.1.tgz
+79f07386db2f2c267abcd26d3e7f24b2  CAS-1.3.2.tgz

More information about the scm-commits mailing list