[libuser] Update to libuser-0.59 (CVE-2012-5630, CVE-2012-5644)

Miloslav Trmac mitr at fedoraproject.org
Fri Mar 29 14:59:20 UTC 2013 

commit f44715d5f91b12c8ee79e157331f89a2548e1fc3
Author: Miloslav Trmač <mitr at redhat.com>
Date:   Fri Mar 29 15:58:25 2013 +0100

    Update to libuser-0.59 (CVE-2012-5630, CVE-2012-5644)

 .gitignore                        |    1 +
 libuser-force-secure-getenv.patch |   49 -------------------------------------
 libuser.spec                      |   23 +++++------------
 sources                           |    2 +-
 4 files changed, 9 insertions(+), 66 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 80d4cf2..9108ffb 100644
--- a/.gitignore
+++ b/.gitignore
@@ -10,3 +10,4 @@ libuser-0.56.16.tar.xz
 /libuser-0.57.6.tar.xz
 /libuser-0.57.7.tar.xz
 /libuser-0.58.tar.xz
+/libuser-0.59.tar.xz
diff --git a/libuser.spec b/libuser.spec
index 6772e78..37465de 100644
--- a/libuser.spec
+++ b/libuser.spec
@@ -1,22 +1,18 @@
 %{!?python_sitearch: %global python_sitearch %(%{__python} -c "from distutils.sysconfig import get_python_lib; print get_python_lib(1)")}
 
 Name: libuser
-Version: 0.58
-Release: 2%{?dist}
+Version: 0.59
+Release: 1%{?dist}
 Group: System Environment/Base
 License: LGPLv2+
 URL: https://fedorahosted.org/libuser/
-# Upstream commit 51e9d56ed656c3aeceb39b7de5a1db7d976d4e51
-Patch0: libuser-force-secure-getenv.patch
 Source: https://fedorahosted.org/releases/l/i/libuser/libuser-%{version}.tar.xz
 BuildRequires: glib2-devel, linuxdoc-tools, pam-devel, popt-devel, python2-devel
 BuildRequires: cyrus-sasl-devel, libselinux-devel, openldap-devel
 # To make sure the configure script can find it
 BuildRequires: nscd
 # For %%check
-BuildRequires: openldap-clients, openldap-servers, openssl
-# For regenerating autoconf/automake files
-BuildRequires: gtk-doc, libtool, gettext-devel, automake, autoconf
+BuildRequires: fakeroot, openldap-clients, openldap-servers, openssl
 Summary: A user and group account administration library
 
 %description
@@ -49,17 +45,8 @@ administering user and group accounts.
 
 %prep
 %setup -q
-%patch0 -p1 -b .force_secure_getenv
 
 %build
-# Copied from upstream autogen.sh
-gtkdocize --docdir docs/reference
-libtoolize --force
-autopoint
-aclocal -I m4
-autoconf -Wall
-autoheader -Wall
-automake -Wall --add-missing
 %configure --with-selinux --with-ldap --with-html-dir=%{_datadir}/gtk-doc/html
 make
 
@@ -109,6 +96,10 @@ python -c "import libuser"
 %{_datadir}/gtk-doc/html/*
 
 %changelog
+* Thu Mar 28 2013 Miloslav Trmač <mitr at redhat.com> - 0.59-1
+- Update to libuser-0.59 (CVE-2012-5630, CVE-2012-5644)
+  Resolves: #928846
+
 * Mon Feb  4 2013 Miloslav Trmač <mitr at redhat.com> - 0.58-2
 - Always use secure_getenv() or __secure_getenv(), fail build if neither is
   available.  Patch by Viktor Hercinger <vhercing at redhat.com>.
diff --git a/sources b/sources
index de418c5..b118806 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-1fc3ef3f3a3955b2d78562ff4daed793  libuser-0.58.tar.xz
+22835cbfec894b1e9491845ed5023244  libuser-0.59.tar.xz

More information about the scm-commits mailing list