Accepting request 974893 from home:eeich:branches:science

- Security Fix: Add configure option --disable-hltools to disable GIF tools as recommended in the 1.10.8 release: CVE-2018-17433 (bsc#1109565), CVE-2018-17436 (bsc#1109568), CVE-2020-10809 (bsc#1167404). * Fixed CVE-2018-17432 (bsc#1109564) parsing (bsc#1167401) * Fixed CVE-2018-14460 (bsc#1102175) * Fixed CVE-2018-11206 (bsc#1093657) (same issue as CVE-2018-14032 (bsc#1101474)) * Fixed CVE-2018-14033 (bsc#1101471) (same issue as CVE-2020-10811 (bsc#1167405)) H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3 (bsc#1109570) * CVE-2018-17437: Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c. (bsc#1109569) * CVE-2018-17237: A SIGFPE signal is raised in the function H5D__chunk_set_info_real (bsc#1109168) (commit 4e31361d). OBS-URL: https://build.opensuse.org/request/show/974893 OBS-URL: https://build.opensuse.org/package/show/science/hdf5?expand=0&rev=150
2022-05-04 11:39:11 +00:00
parent 4a1a5dfcb4
commit 7a28a99698
2 changed files with 25 additions and 9 deletions
--- a/hdf5.spec
+++ b/hdf5.spec
@@ -438,7 +438,7 @@ Patch7:         hdf5-mpi.patch
 Patch8:         Disable-phdf5-tests.patch
 # boo#1179521, boo#1196682, gh#HDFGroup/hdf5#1494
 Patch9:         hdf5-1.10.8-pr1494-fix-release-check-version.patch
-# Imported from Fedora, strip flags from h5cc wrapper 
+# Imported from Fedora, strip flags from h5cc wrapper
 Patch10:        hdf5-wrappers.patch
 BuildRequires:  fdupes
 %if 0%{?use_sz2}
@@ -760,6 +760,7 @@ export MPICXX=mpicxx
 %hpc_configure \
 %define hpc_exec_prefix %{expand:%_hpc_exec_prefix}
 %endif # ?hpc
+  --disable-hltools \
  --disable-dependency-tracking \
  --enable-fortran \
  --enable-unsupported \