[rubygem-actionpack/f16] The CVE patches names now contain the CVE id.

Bohuslav Kabrda bkabrda at fedoraproject.org
Fri Mar 16 06:56:21 UTC 2012 

commit 9403b3e1a7ff26043b49a53d1c4953955f0f08da
Author: Bohuslav Kabrda <bkabrda at redhat.com>
Date:   Fri Mar 16 07:56:12 2012 +0100

    The CVE patches names now contain the CVE id.

 ...atch => actionpack-CVE-2011-4319-XSS-flaw.patch |    0
 ...ctionpack-CVE-2012-1098-safe-buffer-slice.patch |    0
 ...tionpack-CVE-2012-1099-select-options-XSS.patch |    0
 rubygem-actionpack.spec                            |   11 +++++++----
 4 files changed, 7 insertions(+), 4 deletions(-)
---
diff --git a/actionpack-3.0.10-XSS-flaw-fix.patch b/actionpack-CVE-2011-4319-XSS-flaw.patch
similarity index 100%
rename from actionpack-3.0.10-XSS-flaw-fix.patch
rename to actionpack-CVE-2011-4319-XSS-flaw.patch
diff --git a/actionpack-safe-buffer-slice-fix.patch b/actionpack-CVE-2012-1098-safe-buffer-slice.patch
similarity index 100%
rename from actionpack-safe-buffer-slice-fix.patch
rename to actionpack-CVE-2012-1098-safe-buffer-slice.patch
diff --git a/actionpack-select-options-XSS-fix.patch b/actionpack-CVE-2012-1099-select-options-XSS.patch
similarity index 100%
rename from actionpack-select-options-XSS-fix.patch
rename to actionpack-CVE-2012-1099-select-options-XSS.patch
diff --git a/rubygem-actionpack.spec b/rubygem-actionpack.spec
index da4a879..4a4b43c 100644
--- a/rubygem-actionpack.spec
+++ b/rubygem-actionpack.spec
@@ -10,7 +10,7 @@ Summary: Web-flow and rendering framework putting the VC in MVC
 Name: rubygem-%{gemname}
 Epoch: 1
 Version: 3.0.10
-Release: 3%{?dist}
+Release: 4%{?dist}
 Group: Development/Languages
 License: MIT
 URL: http://www.rubyonrails.org
@@ -40,18 +40,18 @@ Patch2: actionpack-tests-fix.patch
 Patch3: actionpack-downgrade-dependencies.patch
 
 # Fixes RHBZ #755006
-Patch4: actionpack-%{version}-XSS-flaw-fix.patch
+Patch4: actionpack-CVE-2011-4319-XSS-flaw-fix.patch
 
 # Fixes tests failing with Ruby-1.8.7.p357
 Patch5: actionpack-%{version}-fix-tests-failing-with-ruby-1.8.7.p357.patch
 
 # Fixes CVE-2012-1098
 # https://bugzilla.redhat.com/show_bug.cgi?id=799275
-Patch6: actionpack-safe-buffer-slice-fix.patch
+Patch6: actionpack-CVE-2012-1098-safe-buffer-slice-fix.patch
 
 # Fixes CVE-2012-1099
 # https://bugzilla.redhat.com/show_bug.cgi?id=799276
-Patch7: actionpack-select-options-XSS-fix.patch
+Patch7: actionpack-CVE-2012-1099-select-options-XSS-fix.patch
 
 Requires: rubygems
 Requires: rubygem(activesupport) = %{version}
@@ -185,6 +185,9 @@ rake test --trace
 
 
 %changelog
+* Fri Mar 16 2012 Bohuslav Kabrda <bkabrda at redhat.com> - 1:3.0.10-4
+- The CVE patches names now contain the CVE id.
+
 * Tue Mar 06 2012 Bohuslav Kabrda <bkabrda at redhat.com> - 1:3.0.10-3
 - Fix for CVE-2012-1098.
 - Fix for CVE-2012-1099.

More information about the scm-commits mailing list