packages/libtar
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix CVE-2021-33643 CVE-2021-33644 CVE-2021-33645 CVE-2021-33646

Browse Source 
(cherry picked from commit 8585e7c89c9076f64fd71f1b3ccc7f1163caa822)
This commit is contained in:
shixuantong 2022-07-29 10:16:18 +08:00 committed by openeuler-sync-bot
parent 744b62cece
commit 94e22ad7da
3 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
libtar.spec
View File

@ -1,6 +1,6 @@
Name: libtar
Version: 1.2.20
Release: 20
Release: 21
Summary: Library for manipulating tar files from within C programs.
License: BSD
URL: http://repo.or.cz/libtar.git
@ -13,8 +13,8 @@ Patch3: libtar-1.2.11-bz729009.patch
Patch4: libtar-1.2.20-no-static-buffer.patch
Patch5: CVE-2013-4420.patch
Patch9000: openEuler-Ensure-that-sz-is-greater-than-0.patch
Patch9001: openEuler-fix-memory-leak.patch
Patch9000: openEuler-CVE-2021-33643-CVE-2021-33644.patch
Patch9001: openEuler-CVE-2021-33645-CVE-2021-33646.patch
BuildRequires: libtool git
@ -73,6 +73,9 @@ rm $RPM_BUILD_ROOT%{_libdir}/*.la
%{_mandir}/man3/*.3*
%changelog
* Fri Jul 29 2022 shixuantong <shixuantong@h-partners.com> - 1.2.20-21
- fix CVE-2021-33643 CVE-2021-33644 CVE-2021-33645 CVE-2021-33646
* Mon Jun 20 2022 shixuantong <shixuantong@h-partners.com> - 1.2.20-20
- fix memory leak and ensure that sz is greater than 0.

0
openEuler-Ensure-that-sz-is-greater-than-0.patch → openEuler-CVE-2021-33643-CVE-2021-33644.patch
View File

0
openEuler-fix-memory-leak.patch → openEuler-CVE-2021-33645-CVE-2021-33646.patch
View File