[php-pear-CAS] update to 1.3.2, security fix for CVE-2012-5583
Remi Collet
remi at fedoraproject.org
Sat Dec 29 16:13:13 UTC 2012
commit a445f38105e485729f741d1e86115f519416122c
Author: Remi Collet <remi at fedoraproject.org>
Date: Sat Dec 29 17:13:06 2012 +0100
update to 1.3.2, security fix for CVE-2012-5583
.gitignore | 1 +
php-pear-CAS.spec | 21 +++++++++++++++++----
sources | 2 +-
3 files changed, 19 insertions(+), 5 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index a971c5c..d1b5232 100644
--- a/.gitignore
+++ b/.gitignore
@@ -3,3 +3,4 @@ package-*.xml
/CAS-1.2.2.tgz
/CAS-1.3.0.tgz
/CAS-1.3.1.tgz
+/CAS-1.3.2.tgz
diff --git a/php-pear-CAS.spec b/php-pear-CAS.spec
index 8d21fbd..bd30b17 100644
--- a/php-pear-CAS.spec
+++ b/php-pear-CAS.spec
@@ -1,12 +1,13 @@
%{!?__pear: %{expand: %%global __pear %{_bindir}/pear}}
+%{!?pear_metadir: %global pear_metadir %{pear_phpdir}}
%global pear_name CAS
%global channel __uri
#global prever RC7
Name: php-pear-CAS
-Version: 1.3.1
-Release: 2%{?dist}
+Version: 1.3.2
+Release: 1%{?dist}
Summary: Central Authentication Service client library in php
Group: Development/Libraries
@@ -22,7 +23,14 @@ BuildRequires: php-pear >= 1:1.4.9-1.2
Requires(post): %{__pear}
Requires(postun): %{__pear}
Requires: php-pear(PEAR) >= 1.4.3
-Requires: php-pdo, php-xml >= 5.0.0
+Requires: php-curl
+Requires: php-dom
+Requires: php-pcre
+Requires: php-pdo
+Requires: php-session
+Requires: php-spl
+# Optional: php-imap (when use Proxied Imap)
+
Provides: php-pear(%{channel}/%{pear_name}) = %{version}
# this library is mostly known as phpCAS
Provides: phpCAS = %{version}-%{release}
@@ -50,7 +58,7 @@ cd %{pear_name}-%{version}%{?prever}
%{__pear} install --nodeps --packagingroot %{buildroot} %{name}.xml
# Clean up unnecessary files
-rm -rf %{buildroot}%{pear_phpdir}/.??*
+rm -rf %{buildroot}%{pear_metadir}/.??*
# Install XML package description
mkdir -p %{buildroot}%{pear_xmldir}
@@ -81,6 +89,11 @@ fi
%changelog
+* Sat Dec 29 2012 Remi Collet <remi at fedoraproject.org> - 1.3.2-1
+- update to Version 1.3.2, security fix for
+ CVE-2012-5583 Missing CN validation of CAS server certificate
+- add requires for all needed php extensions
+
* Fri Jul 20 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.3.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
diff --git a/sources b/sources
index 5cd66d5..7005de2 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-783a499a49bd69ab012e6c42781fd199 CAS-1.3.1.tgz
+79f07386db2f2c267abcd26d3e7f24b2 CAS-1.3.2.tgz
More information about the scm-commits
mailing list