[Foresight-commits] Source: bash=4.2.48-2
2 views
Skip to first unread message
repos-...@foresightlinux.org
Sep 25, 2014, 7:51:13 PM9/25/14
to foresigh...@lists.foresightlinux.org
================================
bash:source=4.2.48-2 (previous: 4.2.48-1)
cvc rdiff bash -1 /foresight.rpath.org@fl:2-devel/4.2.48-2
================================
4.2.48-2 Michael K. Johnson (http://danlj.org/mkj/) Thu Sep 25 19:45:27 2014
Added patches for CVE-2014-7169 from Fedora 20
bash.recipe: changed
Index: bash.recipe
====================================================================
contents(size sha1)
inode(mtime)
--- bash.recipe /foresight.rpath.org@fl:2-devel/4.2.48-1
+++ bash.recipe /foresight.rpath.org@fl:2-devel/4.2.48-2
@@ -73,16 +73,10 @@
'mirror://gnu/bash/bash-%%(baseversion)s-patches/bash%%(bash_shortversion)s-%03d'%p)#, keyid='64EA74AB')
# key downloading seems to hang atm
- # gentoo claims this is upstream, but i can't find it. in any case, it
- # fixes issues with cursor position with non-ascii and color prompts.
- # see http://bugs.gentoo.org/show_bug.cgi?id=155369 for a fuller
- # description
- # r.addPatch('http://viewcvs.gentoo.org/viewcvs.py/*checkout*/gentoo-x86/app-shells/bash/files/bash-3.2-redisplay-cursor.patch?rev=1.1')
- # NOTE: this was fixed upstream as of bash 3.2_p17
-
- # RPL-3003
- # FIXME - Zodman -> uncomment when you get this to work right!
- # r.addPatch('https://svn.pardus.org.tr/pardus/devel/system/base/bash/files/command-not-found.patch')
+ # CVE-2014-7169 -- hopefully replaced later by later upstream patch
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
r.Configure('--with-bash-malloc=no --with-afs', preConfigure='EMACS=emacs')
r.Make('version.h')
bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
Committed by: johnsonm
_______________________________________________
Foresight-commits mailing list
Foresigh...@lists.foresightlinux.org
https://lists.foresightlinux.org/mailman/listinfo/foresight-commits
bash:source=4.2.48-2 (previous: 4.2.48-1)
cvc rdiff bash -1 /foresight.rpath.org@fl:2-devel/4.2.48-2
================================
4.2.48-2 Michael K. Johnson (http://danlj.org/mkj/) Thu Sep 25 19:45:27 2014
Added patches for CVE-2014-7169 from Fedora 20
bash.recipe: changed
Index: bash.recipe
====================================================================
contents(size sha1)
inode(mtime)
--- bash.recipe /foresight.rpath.org@fl:2-devel/4.2.48-1
+++ bash.recipe /foresight.rpath.org@fl:2-devel/4.2.48-2
@@ -73,16 +73,10 @@
'mirror://gnu/bash/bash-%%(baseversion)s-patches/bash%%(bash_shortversion)s-%03d'%p)#, keyid='64EA74AB')
# key downloading seems to hang atm
- # gentoo claims this is upstream, but i can't find it. in any case, it
- # fixes issues with cursor position with non-ascii and color prompts.
- # see http://bugs.gentoo.org/show_bug.cgi?id=155369 for a fuller
- # description
- # r.addPatch('http://viewcvs.gentoo.org/viewcvs.py/*checkout*/gentoo-x86/app-shells/bash/files/bash-3.2-redisplay-cursor.patch?rev=1.1')
- # NOTE: this was fixed upstream as of bash 3.2_p17
-
- # RPL-3003
- # FIXME - Zodman -> uncomment when you get this to work right!
- # r.addPatch('https://svn.pardus.org.tr/pardus/devel/system/base/bash/files/command-not-found.patch')
+ # CVE-2014-7169 -- hopefully replaced later by later upstream patch
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
r.Configure('--with-bash-malloc=no --with-afs', preConfigure='EMACS=emacs')
r.Make('version.h')
bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
Committed by: johnsonm
_______________________________________________
Foresight-commits mailing list
Foresigh...@lists.foresightlinux.org
https://lists.foresightlinux.org/mailman/listinfo/foresight-commits
repos-...@foresightlinux.org
Sep 26, 2014, 1:54:55 AM9/26/14
to foresigh...@lists.foresightlinux.org
================================
bash:source=4.2.48-2 (previous: 4.2.48-1)
cvc rdiff bash -1 /foresight.rpath.org@fl:2-qa/4.2.48-2
bash:source=4.2.48-2 (previous: 4.2.48-1)
================================
4.2.48-2 Tomas Forsman (tfor...@foresightlinux.se) Fri Sep 26 01:41:16 2014
Promote to fl:2-qa
bash.recipe: changed
Index: bash.recipe
====================================================================
contents(size sha1)
inode(mtime)
+++ bash.recipe /foresight.rpath.org@fl:2-qa/4.2.48-2
@@ -73,16 +73,10 @@
'mirror://gnu/bash/bash-%%(baseversion)s-patches/bash%%(bash_shortversion)s-%03d'%p)#, keyid='64EA74AB')
# key downloading seems to hang atm
- # gentoo claims this is upstream, but i can't find it. in any case, it
- # fixes issues with cursor position with non-ascii and color prompts.
- # see http://bugs.gentoo.org/show_bug.cgi?id=155369 for a fuller
- # description
- # r.addPatch('http://viewcvs.gentoo.org/viewcvs.py/*checkout*/gentoo-x86/app-shells/bash/files/bash-3.2-redisplay-cursor.patch?rev=1.1')
- # NOTE: this was fixed upstream as of bash 3.2_p17
-
- # RPL-3003
- # FIXME - Zodman -> uncomment when you get this to work right!
- # r.addPatch('https://svn.pardus.org.tr/pardus/devel/system/base/bash/files/command-not-found.patch')
+ # CVE-2014-7169 -- hopefully replaced later by later upstream patch
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
r.Configure('--with-bash-malloc=no --with-afs', preConfigure='EMACS=emacs')
r.Make('version.h')
bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
Committed by: tforsman
'mirror://gnu/bash/bash-%%(baseversion)s-patches/bash%%(bash_shortversion)s-%03d'%p)#, keyid='64EA74AB')
# key downloading seems to hang atm
- # gentoo claims this is upstream, but i can't find it. in any case, it
- # fixes issues with cursor position with non-ascii and color prompts.
- # see http://bugs.gentoo.org/show_bug.cgi?id=155369 for a fuller
- # description
- # r.addPatch('http://viewcvs.gentoo.org/viewcvs.py/*checkout*/gentoo-x86/app-shells/bash/files/bash-3.2-redisplay-cursor.patch?rev=1.1')
- # NOTE: this was fixed upstream as of bash 3.2_p17
-
- # RPL-3003
- # FIXME - Zodman -> uncomment when you get this to work right!
- # r.addPatch('https://svn.pardus.org.tr/pardus/devel/system/base/bash/files/command-not-found.patch')
+ # CVE-2014-7169 -- hopefully replaced later by later upstream patch
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
+ r.addPatch('http://pkgs.fedoraproject.org/cgit/bash.git/plain/bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28')
r.Configure('--with-bash-malloc=no --with-afs', preConfigure='EMACS=emacs')
r.Make('version.h')
bash-4.2-cve-2014-7169-1.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-2.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
bash-4.2-cve-2014-7169-0.patch?h=f20&id=67d114f0159162c62b2ade7ac82cca49bacf4e28: new
Reply all
Reply to author
Forward
0 new messages