rpms/kdenetwork/F-12 kdenetwork.spec,1.222,1.223
Jaroslav Reznik
jreznik at fedoraproject.org
Thu May 13 15:28:59 UTC 2010
Author: jreznik
Update of /cvs/pkgs/rpms/kdenetwork/F-12
In directory cvs01.phx2.fedoraproject.org:/tmp/cvs-serv4927
Modified Files:
kdenetwork.spec
Log Message:
* Thu May 13 2010 Jaroslav Reznik <jreznik at redhat.com> - 7:4.4.3-3
- security fixes: CVE-2010-1000, CVE-2010-1511 (#591966)
Index: kdenetwork.spec
===================================================================
RCS file: /cvs/pkgs/rpms/kdenetwork/F-12/kdenetwork.spec,v
retrieving revision 1.222
retrieving revision 1.223
diff -u -p -r1.222 -r1.223
--- kdenetwork.spec 12 May 2010 21:41:16 -0000 1.222
+++ kdenetwork.spec 13 May 2010 15:28:59 -0000 1.223
@@ -3,7 +3,7 @@ Summary: KDE Network Applications
Name: kdenetwork
Epoch: 7
Version: 4.4.3
-Release: 2%{?dist}
+Release: 3%{?dist}
License: GPLv2
Group: Applications/Internet
@@ -21,6 +21,11 @@ Patch2: kdenetwork-4.3.3-resolv-conf-pat
## upstream patches
+## security patches
+# rhbz#591966 - CVE-2010-1000 CVE-2010-1511 kdenetwork: improper sanitization
+# of metalink attribute for downloading files
+Patch100: kdenetwork-4.4.3-cve-2010-1000_1511.patch
+
%if 0%{?fedora}
BuildRequires: avahi-compat-libdns_sd-devel
BuildRequires: libgadu-devel >= 1.8.0
@@ -108,7 +113,7 @@ Requires: kdelibs4-devel
%setup -q -a 1 -n kdenetwork-%{version}%{?alphatag}
%patch1 -p1 -b .icon
%patch2 -p1 -b .resolv-conf-path
-
+%patch100 -p0 -b .cve-2010-1000_1511
%build
mkdir -p %{_target_platform}
@@ -211,6 +216,9 @@ fi
%changelog
+* Thu May 13 2010 Jaroslav Reznik <jreznik at redhat.com> - 7:4.4.3-3
+- security fixes: CVE-2010-1000, CVE-2010-1511 (#591966)
+
* Wed May 12 2010 Than Ngo <than at redhat.com> - 7:4.4.3-2
- add consolehelper
More information about the scm-commits
mailing list