rpms/lftp/F-12 .cvsignore, 1.44, 1.45 lftp.spec, 1.89, 1.90 sources, 1.44, 1.45 lftp-4.0.5-ccc.patch, 1.1, NONE

Jiri Skala jskala at fedoraproject.org
Fri Jun 11 11:37:57 UTC 2010 

Author: jskala

Update of /cvs/extras/rpms/lftp/F-12
In directory cvs01.phx2.fedoraproject.org:/tmp/cvs-serv21553

Modified Files:
	.cvsignore lftp.spec sources 
Removed Files:
	lftp-4.0.5-ccc.patch 
Log Message:
* Fri Jun 11 2010 Jiri Skala <jskala at redhat.com> - 4.0.8-1
- fixes #602836 - CVE-2010-2251 lftp: multiple HTTP client download filename vulnerability
- updated to latest version



Index: .cvsignore
===================================================================
RCS file: /cvs/extras/rpms/lftp/F-12/.cvsignore,v
retrieving revision 1.44
retrieving revision 1.45
diff -u -p -r1.44 -r1.45
--- .cvsignore	4 Feb 2010 08:46:03 -0000	1.44
+++ .cvsignore	11 Jun 2010 11:37:57 -0000	1.45
@@ -1 +1 @@
-lftp-4.0.5.tar.lzma
+lftp-4.0.8.tar.lzma


Index: lftp.spec
===================================================================
RCS file: /cvs/extras/rpms/lftp/F-12/lftp.spec,v
retrieving revision 1.89
retrieving revision 1.90
diff -u -p -r1.89 -r1.90
--- lftp.spec	1 Apr 2010 12:50:24 -0000	1.89
+++ lftp.spec	11 Jun 2010 11:37:57 -0000	1.90
@@ -1,7 +1,7 @@
 Summary:	A sophisticated file transfer program
 Name:		lftp
-Version:	4.0.5
-Release:	3%{?dist}
+Version:	4.0.8
+Release:	1%{?dist}
 License:	GPLv3+
 Group:		Applications/Internet
 Source0:	ftp://ftp.yar.ru/lftp/lftp-%{version}.tar.lzma
@@ -9,8 +9,7 @@ URL:		http://lftp.yar.ru/
 BuildRoot:	%{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
 BuildRequires:	ncurses-devel, gnutls-devel, pkgconfig, readline-devel, gettext
 
-Patch1: lftp-4.0.5-ccc.patch
-Patch2: lftp-4.0.5-manconf.patch
+Patch1: lftp-4.0.5-manconf.patch
 
 %description
 LFTP is a sophisticated ftp/http file transfer program. Like bash, it has job
@@ -30,8 +29,7 @@ Utility scripts for use with lftp.
 %prep
 %setup -q
 
-%patch1 -p1 -b .ccc
-%patch2 -p1 -b .manconf
+%patch1 -p1 -b .manconf
 
 #sed -i.rpath -e '/lftp_cv_openssl/s|-R.*lib||' configure
 sed -i.norpath -e \
@@ -94,6 +92,10 @@ rm -rf $RPM_BUILD_ROOT
 
 
 %changelog
+* Fri Jun 11 2010 Jiri Skala <jskala at redhat.com> - 4.0.8-1
+- fixes #602836 - CVE-2010-2251 lftp: multiple HTTP client download filename vulnerability
+- updated to latest version
+
 * Wed Apr 01 2010 Jiri Skala <jskala at redhat.com> - 4.0.5-3
 - fixes #525662 - Missing man-pages
 


Index: sources
===================================================================
RCS file: /cvs/extras/rpms/lftp/F-12/sources,v
retrieving revision 1.44
retrieving revision 1.45
diff -u -p -r1.44 -r1.45
--- sources	4 Feb 2010 08:46:03 -0000	1.44
+++ sources	11 Jun 2010 11:37:57 -0000	1.45
@@ -1 +1 @@
-07803bc69f5f78538e2534a484af174f  lftp-4.0.5.tar.lzma
+a8900b3481b1f8e2be7f01e6acfedbae  lftp-4.0.8.tar.lzma


--- lftp-4.0.5-ccc.patch DELETED ---

More information about the scm-commits mailing list