Browse Source

unzip 6.0-4

git-svn-id: http://trac.vinelinux.org/repos/projects/specs@9397 ec354946-7b23-47d6-9f5a-488ba84defc7
iwaim 9 years ago
parent
commit
1362d43ee5
1 changed files with 7 additions and 1 deletions
  1. 7 1
      u/unzip/unzip-vl.spec

+ 7 - 1
u/unzip/unzip-vl.spec

@@ -4,7 +4,7 @@ Summary: A utility for unpacking zip files.
 Summary(ja): zip ファイルを展開するユーティリティ
 Name: unzip
 Version: 6.0
-Release: 3%{?_dist_release}
+Release: 4%{?_dist_release}
 License: BSD
 Group: Applications/Archiving
 URL: http://www.info-zip.org/UnZip.html
@@ -42,6 +42,8 @@ Patch12: unzip-6.0-x-option.patch
 Patch100: unzip-6.0-CVE-2014-8139.patch
 Patch110: unzip-6.0-CVE-2014-8140.patch
 Patch120: unzip-6.0-CVE-2014-8141.patch
+## http://www.openwall.com/lists/oss-security/2014/11/03/10
+Patch130: unzip-6.0-CVE-2014-9636.patch
 
 # japanese charset support
 # https://gist.github.com/hamano/573753
@@ -98,6 +100,7 @@ zip と unzip は PKWARE(R) の MS-DOS 用 PKZIP で作成された zip アー
 %patch100 -p1 -b .CVE-2014-8139
 %patch110 -p1 -b .CVE-2014-8140
 %patch120 -p1 -b .CVE-2014-8141
+%patch130 -p1 -b .CVE-2014-9636
 
 %patch200 -p1 -b .jp
 %patch201 -p1 -b .ignore-E
@@ -126,6 +129,9 @@ make prefix=$RPM_BUILD_ROOT%{_prefix} MANDIR=$RPM_BUILD_ROOT/%{_mandir}/man1 ins
 
 
 %changelog
+* Sun Feb  8 2015 IWAI, Masaharu <iwaim.sub@gmail.com> 6.0-4
+- add Patch130 for CVE-2014-9636 (heap overflow)
+
 * Sun Jan 18 2015 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp>  6.0-3
 - add Patch100 for fix CVE-2014-8139 (crc-overflow)
 - add Patch110 for fix CVE-2014-8140 (test-compr-eb)