packages (JIRA_4_0): jira/jira.spec - security patch (fixes JRA-21004) - rel 2

pawelz pawelz at pld-linux.org
Thu Jul 15 13:01:37 CEST 2010 

Author: pawelz                       Date: Thu Jul 15 11:01:37 2010 GMT
Module: packages                      Tag: JIRA_4_0
---- Log message:
- security patch (fixes JRA-21004)
- rel 2

---- Files affected:
packages/jira:
   jira.spec (1.30.2.2 -> 1.30.2.3) 

---- Diffs:

================================================================
Index: packages/jira/jira.spec
diff -u packages/jira/jira.spec:1.30.2.2 packages/jira/jira.spec:1.30.2.3
--- packages/jira/jira.spec:1.30.2.2	Tue Jul 13 00:58:22 2010
+++ packages/jira/jira.spec	Thu Jul 15 13:01:29 2010
@@ -19,6 +19,7 @@
 %if 0
 # Download sources manually:
 wget -c http://www.atlassian.com/software/jira/downloads/binary/atlassian-jira-enterprise-4.0.tar.gz
+wget -c http://downloads.atlassian.com/software/jira/downloads/patch/patch-JRA-21004-4.0.zip
 wget -c http://www.atlassian.com/about/licensing/Atlassian_EULA_3.0.pdf
 wget -c http://www.atlassian.com/software/jira/docs/servers/jars/v1/jira-jars-tomcat5.zip
 %endif
@@ -28,7 +29,7 @@
 Summary:	JIRA bug and issue tracker
 Name:		jira
 Version:	4.0
-Release:	1.1
+Release:	2
 License:	Proprietary, not distributable
 Group:		Networking/Daemons/Java/Servlets
 Source0:	atlassian-%{name}-enterprise-%{version}.tar.gz
@@ -44,6 +45,10 @@
 Source4:	entityengine.xml
 Source5:	application.properties
 Source6:	README.PLD
+# see http://confluence.atlassian.com/display/JIRA/JIRA+Security+Advisory+2010-04-16
+Source7:	patch-JRA-21004-4.0.zip
+# NoSource7-md5:	83748a2151dcbf17abc1c9026bc06e56
+NoSource:	7
 URL:		http://www.atlassian.com/software/jira/default.jsp
 BuildRequires:	jpackage-utils
 BuildRequires:	rpm-javaprov
@@ -67,7 +72,9 @@
 you can customise to match to your business processes.
 
 %prep
-%setup -q -n atlassian-%{name}-enterprise-%{version} -a2
+%setup -q -n atlassian-%{name}-enterprise-%{version} -a2 -a7
+
+unzip -o -d webapp JRA-21004-4.0-patch.zip
 
 cp %{SOURCE1} .
 
@@ -138,6 +145,10 @@
 All persons listed below can be reached at <cvs_login>@pld-linux.org
 
 $Log$
+Revision 1.30.2.3  2010/07/15 11:01:29  pawelz
+- security patch (fixes JRA-21004)
+- rel 2
+
 Revision 1.30.2.2  2010/07/12 22:58:22  pawelz
 - md5
 - dropped felix hack
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/packages/jira/jira.spec?r1=1.30.2.2&r2=1.30.2.3&f=u

More information about the pld-cvs-commit mailing list