[file] fix CVE-2014-3710 (#1155464)
Jan Kaluža
jkaluza at fedoraproject.org
Thu Oct 23 07:05:27 UTC 2014
commit d6f358b96015809f08c516210962707f8c1215b2
Author: Jan Kaluza <jkaluza at redhat.com>
Date: Thu Oct 23 09:05:29 2014 +0200
fix CVE-2014-3710 (#1155464)
file.spec | 7 ++++++-
1 files changed, 6 insertions(+), 1 deletions(-)
---
diff --git a/file.spec b/file.spec
index 013683a..b776d21 100644
--- a/file.spec
+++ b/file.spec
@@ -4,7 +4,7 @@
Summary: A utility for determining file types
Name: file
Version: 5.20
-Release: 1%{?dist}
+Release: 2%{?dist}
License: BSD
Group: Applications/File
Source0: ftp://ftp.astron.com/pub/file/file-%{version}.tar.gz
@@ -19,6 +19,7 @@ Patch6: file-5.04-generic-msdos.patch
Patch7: file-5.14-x86boot.patch
Patch8: file-5.14-perl.patch
Patch14: file-5.19-cafebabe.patch
+Patch15: file-5.20-CVE-2014-3710.patch
URL: http://www.darwinsys.com/file/
Requires: file-libs = %{version}-%{release}
BuildRequires: zlib-devel
@@ -88,6 +89,7 @@ file(1) command.
%patch7 -p1
%patch8 -p1
%patch14 -p1
+%patch15 -p1
# Patches can generate *.orig files, which can't stay in the magic dir,
# otherwise there will be problems with compiling magic file!
@@ -196,6 +198,9 @@ cd %{py3dir}
%endif
%changelog
+* Thu Oct 23 2014 Jan Kaluza <jkaluza at redhat.com> - 5.20-2
+- fix CVE-2014-3710 (#1155464)
+
* Thu Oct 16 2014 Jan Kaluza <jkaluza at redhat.com> - 5.20-1
- update to new version 5.20
More information about the scm-commits
mailing list