SPECS: lynx.spec - fix for CVE-2008-4690; rel 4
glen
glen at pld-linux.org
Mon Nov 10 20:25:41 CET 2008
Author: glen Date: Mon Nov 10 19:25:41 2008 GMT
Module: SPECS Tag: HEAD
---- Log message:
- fix for CVE-2008-4690; rel 4
---- Files affected:
SPECS:
lynx.spec (1.125 -> 1.126)
---- Diffs:
================================================================
Index: SPECS/lynx.spec
diff -u SPECS/lynx.spec:1.125 SPECS/lynx.spec:1.126
--- SPECS/lynx.spec:1.125 Mon Nov 10 20:16:15 2008
+++ SPECS/lynx.spec Mon Nov 10 20:25:35 2008
@@ -9,7 +9,7 @@
Summary(tr.UTF-8): Metin ekranda WWW tarayıcı
Name: lynx
Version: 2.8.6rel.5
-Release: 3
+Release: 4
License: GPL
Group: Applications/Networking
Source0: http://lynx.isc.org/current/%{name}%{version}.tar.bz2
@@ -27,10 +27,8 @@
Patch6: %{name}-acfix.patch
Patch7: %{name}-gzip_fallback.patch
Patch8: %{name}-etc_dir.patch
+Patch9: %{name}-CVE-2008-4690.patch
URL: http://lynx.browser.org/
-# Fix is in RH packages:
-# http://securitytracker.com/alerts/2008/Oct/1021106.html
-#BuildRequires: security(CVE-2008-4690)
BuildRequires: autoconf
BuildRequires: automake
BuildRequires: bzip2-devel
@@ -98,6 +96,7 @@
%patch6 -p1
%patch7 -p1
%patch8 -p1
+%patch9 -p1
%build
cp /usr/share/automake/config.sub .
@@ -151,6 +150,10 @@
%clean
rm -rf $RPM_BUILD_ROOT
+%triggerpostun -- %{name} < 2.8.6rel.5-4
+# for CVE-2008-4690
+%{__sed} -i -e '/^#TRUSTED_LYNXCGI:/s,^#,,' %{_sysconfdir}/lynx.cfg
+
%files -f %{name}.lang
%defattr(644,root,root,755)
%doc CHANGES COPYHEADER PROBLEMS README samples test docs/README*
@@ -171,6 +174,9 @@
All persons listed below can be reached at <cvs_login>@pld-linux.org
$Log$
+Revision 1.126 2008/11/10 19:25:35 glen
+- fix for CVE-2008-4690; rel 4
+
Revision 1.125 2008/11/10 19:16:15 glen
- release 3
@@ -312,13 +318,13 @@
Revision 1.84 2002/07/03 08:45:27 marcus
- fixed ac for new autoconf
-- new %%doc
+- new %doc
- rel.3.
Revision 1.83 2002/05/21 23:14:06 kloczek
-perl -pi -e "s/^automake -a -c -f --foreing/\%\{__automake\}/; \
+- perl -pi -e "s/^automake -a -c -f --foreing/\%\{__automake\}/; \
s/^automake -a -c -f/\%\{__automake\}/; \
- s/^autoconf/\%\{__autoconf\}/"
+ s/^autoconf/\%\{__autoconf\}/"
Revision 1.82 2002/02/23 03:36:25 kloczek
- adapterized.
@@ -328,7 +334,7 @@
Group field using gettext).
Revision 1.80 2002/01/18 02:13:46 kloczek
-perl -pi -e "s/pld-list\@pld.org.pl/feedback\@pld.org.pl/"
+- perl -pi -e "s/pld-list\@pld.org.pl/feedback\@pld.org.pl/"
Revision 1.79 2001/11/14 22:24:38 ankry
- adde cs,fi,pl man pages
@@ -343,7 +349,7 @@
Revision 1.76 2001/10/02 19:50:41 mkochano
- Release 3.
-- Added ,,noreplace'' to %%config.
+- Added ,,noreplace'' to %config.
Revision 1.75 2001/10/01 21:15:22 qboosh
- acfix patch, rebuild configure - it's needed to fix lynx.cnf path
@@ -353,16 +359,16 @@
Revision 1.74 2001/09/29 22:16:47 qboosh
- 2.8.5dev.2, updated config patch
- removed SA_LEN patch (already in sources)
-- removed %%requires_eq for openssl
+- removed %requires_eq for openssl
Revision 1.73 2001/08/12 02:52:48 agaran
-s/configure/configure2_13/
-now builds in ac-25 env, (something is wrong in ac/am and regen dont help)
+- s/configure/configure2_13/
+ now builds in ac-25 env, (something is wrong in ac/am and regen dont help)
Revision 1.72 2001/07/13 10:05:25 kloczek
- release 2,
- rebuild against openssl 0.9.6b,
-- added "%%requires_eq openssl".
+- added "%requires_eq openssl".
Revision 1.71 2001/06/10 16:01:05 qboosh
- 2.8.4pre.1, updated lynx.cfg, autoconf, config patches
@@ -374,7 +380,7 @@
Revision 1.69 2001/04/05 16:07:47 qboosh
- SA_LEN patch to fix build problems
-- use %%rpm{c,ld}flags macros
+- use %rpm{c,ld}flags macros
- release 4
Revision 1.68 2001/02/22 17:21:25 qboosh
@@ -385,7 +391,7 @@
- release 3
Revision 1.67 2001/01/25 20:03:24 misiek
-Massive attack. We use -O0 instead -O flags while debug enabled.
+- Massive attack. We use -O0 instead -O flags while debug enabled.
Revision 1.66 2001/01/17 00:28:08 qboosh
- release 2:
@@ -394,24 +400,24 @@
- Obsoletes: lynx-ssl
Revision 1.65 2000/12/23 00:48:45 michuz
-- changed %%{!?debug:...}%%{?debug...} to %%{?debug:...}%%{!?debug...}
+- changed %{!?debug:...}%{?debug...} to %{?debug:...}%{!?debug...}
(now it's more C like)
Revision 1.64 2000/12/17 00:23:38 misiek
-updated to 14
+- updated to 14
Revision 1.63 2000/10/20 16:57:58 kloczek
- release 4: use new rpm automation.
Revision 1.62 2000/08/07 18:59:54 agaran
-Added autoconf execution in %build,and ssl now works (hopefully)
+- Added autoconf execution in %build,and ssl now works (hopefully)
Revision 1.61 2000/08/05 21:31:15 baggins
- release 3
- fixed compilation with SSL
Revision 1.60 2000/08/04 08:06:41 agaran
-Update to 2.8.4dev.7, adapterized
+- Update to 2.8.4dev.7, adapterized
Revision 1.59 2000/06/19 07:05:50 kloczek
- release 2,
@@ -419,7 +425,7 @@
- wmconfig replaced by desktop file.
Revision 1.58 2000/06/09 07:23:25 kloczek
-- added using %%{__make} macro.
+- added using %{__make} macro.
Revision 1.57 2000/06/07 09:21:51 kloczek
- removed bashizms,
@@ -468,74 +474,10 @@
- translated kloczkish into english
Revision 1.14 1999/11/08 19:45:42 kura
-changed Group to Applications/Networking
+- changed Group to Applications/Networking
Revision 1.13 1999/07/20 12:48:09 wiget
- switch to rpm 3.0.2
Revision 1.12 1999/07/12 23:06:06 kloczek
-
- added using CVS keywords in %changelog (for automating them).
-
-* Thu Mar 4 1999 Artur Frysiak <wiget at usa.net>
- [2.8.2dev.19-1]
-- added new configure option: --enable-nls --without-included-gettext
- --enable-addrlist-page --enable-libjs
-- added lynx-dev.19.patch (correct typo, included in next release)
-
-* Wed Feb 17 1999 Artur Frysiak <wiget at usa.net>
- [2.8.2dev.17-1d]
-- gziped help files
-- change install metod
-
-* Tue Feb 16 1999 Artur Frysiak <wiget at usa.net>
- [2.8.2dev.16-1d]
-- moved help and test files to %{_datadir}/lynx
-- changed default color scheme
-- added TEMP_SPACE patch ( now lynx save temp file in ~/tmp )
-
-* Fri Feb 05 1999 Wojtek Ślusarczyk <wojtek at shadow.eu.org>
- [2.8.2dev15-2d]
-- changed group,
-- compressed documentation.
-
-* Sun Jan 10 1999 Artur Frysiak <wiget at usa.net>
- [2.8.2dev.12-1d]
-- added URL and Group(pl) tags
-
-* Mon Sep 01 1998 Wojtek Ślusarczyk <wojtek at shadow.eu.org>
- [2.8-5d]
-- build against glibc-2.1,
-- changed Buildroot to /var/tmp/%%{name}-%%{version}-%%{release}-root,
-- changed permission of lynx to 711,
-- translation modified for pl.
-
-* Sun Aug 30 1998 Tomasz Kłoczko <kloczek at rudy.mif.pg.gda.pl>
- [2.8-5]
-- added -q %setup parameter,
-- changed Buildroot to /tmp/%%{name}-%%{version}-root,
-- URL in HELPFILE in /etc/lynx.cfh changed to localhost,
-- removed INSTALLATION from %doc,
-- added %attr and %defattr macros in %files (allow build package from
- non-root account).
-
-* Fri May 08 1998 Prospector System <bugs at redhat.com>
-- translations modified for de, fr, tr
-
-* Mon May 04 1998 Cristian Gafton <gafton at redhat.com>
-- upgraded to 2.8rel3
-- fixed mailto: buffer overflow (used Alan's patch)
-
-* Fri Mar 20 1998 Cristian Gafton <gafton at redhat.com>
-- updated to 2.8
-- added buildroot
-
-* Tue Jan 13 1998 Erik Troan <ewt at redhat.com>
-- updated to 2.7.2
-- enabled lynxcgi
-
-* Thu Oct 23 1997 Donnie Barnes <djb at redhat.com>
-- updated from 2.6 to 2.7.1
-- moved /usr/lib/lynx.cfg to /etc/lynx.cfg
-- build with slang instead of ncurses
-- made default startup file be file:/usr/doc/HTML/index.html
================================================================
---- CVS-web:
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SPECS/lynx.spec?r1=1.125&r2=1.126&f=u
More information about the pld-cvs-commit
mailing list