[cgit] Update to 0.9.2, fixes CVE-2013-2117

Todd Zullinger tmz at fedoraproject.org
Tue May 28 01:41:58 UTC 2013 

commit 0cb92fbdbd07ad7eb149324fad0dd1eb65410fcf
Author: Todd Zullinger <tmz at pobox.com>
Date:   Mon May 27 21:28:05 2013 -0400

    Update to 0.9.2, fixes CVE-2013-2117

 .gitignore |    4 ++--
 cgit.spec  |   11 +++++++----
 sources    |    4 ++--
 3 files changed, 11 insertions(+), 8 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index ae0d777..735b7b6 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1,6 +1,6 @@
 *~
 *.rpm
-*.tar.bz2
+*.tar.gz
+*.tar.xz
 /.build*.log
 /cgit-*/
-/cgit-0.9.1.tar.xz
diff --git a/cgit.spec b/cgit.spec
index 2d37303..36cc3b4 100644
--- a/cgit.spec
+++ b/cgit.spec
@@ -1,6 +1,6 @@
 # Review bug: https://bugzilla.redhat.com/479723
 
-%global gitver      1.7.4
+%global gitver      1.8.3
 %global cachedir    %{_localstatedir}/cache/%{name}
 %global filterdir   %{_libexecdir}/%{name}/filters
 %global scriptdir   %{_localstatedir}/www/cgi-bin
@@ -20,15 +20,15 @@ make V=1 %{?_smp_mflags} \\\
      filterdir=%{filterdir}
 
 Name:           cgit
-Version:        0.9.1
-Release:        4%{?dist}
+Version:        0.9.2
+Release:        1%{?dist}
 Summary:        A fast web interface for git
 
 Group:          Development/Tools
 License:        GPLv2
 URL:            http://git.zx2c4.com/cgit/
 Source0:        http://git.zx2c4.com/cgit/snapshot/%{name}-%{version}.tar.xz
-Source1:        http://www.kernel.org/pub/software/scm/git/git-%{gitver}.tar.bz2
+Source1:        http://git-core.googlecode.com/files/git-%{gitver}.tar.gz
 Source2:        cgitrc
 Source3:        cgit.httpd
 Source4:        README.SELinux
@@ -102,6 +102,9 @@ rm -rf %{buildroot}
 
 
 %changelog
+* Mon May 27 2013 Todd Zullinger <tmz at pobox.com> - 0.9.2-1
+- Update to 0.9.2, fixes CVE-2013-2117
+
 * Wed Feb 13 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.1-4
 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
 
diff --git a/sources b/sources
index b5750a8..e141ea4 100644
--- a/sources
+++ b/sources
@@ -1,2 +1,2 @@
-ed1a1ccccdcbf55ddd6a9de29bca6edf  cgit-0.9.1.tar.xz
-fa24dc1ef0b663327ea0fe1981365b39  git-1.7.4.tar.bz2
+fe11018eff8d79caad112f4fac64b90f  cgit-0.9.2.tar.xz
+d91b6099fb6763cf92c696977a247060  git-1.8.3.tar.gz

More information about the scm-commits mailing list