- Fix double-free in SPNEGO [CVE-2014-4343] (bnc#888697)

krb5-1.12-CVE-2014-4343-Fix-double-free-in-SPNEGO.patch Fix null deref in SPNEGO acceptor [CVE-2014-4344] krb5-1.12-CVE-2014-4344-Fix-null-deref-in-SPNEGO-acceptor.patch OBS-URL: https://build.opensuse.org/package/show/network/krb5?expand=0&rev=124
2014-07-28 09:58:41 +00:00
parent 3ac7b19a80
commit f2e853070c
6 changed files with 140 additions and 1 deletions
--- a/krb5-mini.spec
+++ b/krb5-mini.spec
@@ -49,7 +49,7 @@ BuildRequires:  python-lxml
 BuildRequires:  pkgconfig(systemd)
 %{?systemd_requires}
 %else
-PreReq:         %insserv_prereq
+PreReq:         %insserv_prereq 
 %endif
 # bug437293
 %ifarch ppc64
@@ -84,6 +84,8 @@ Patch13:        krb5-1.9-debuginfo.patch
 Patch14:        krb5-kvno-230379.patch
 Patch15:        krb5-master-keyring-kdcsync.patch
 Patch16:        krb5-1.12-CVE-2014-4341-CVE-2014-4342.patch
+Patch17:        krb5-1.12-CVE-2014-4343-Fix-double-free-in-SPNEGO.patch
+Patch18:        krb5-1.12-CVE-2014-4344-Fix-null-deref-in-SPNEGO-acceptor.patch
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 PreReq:         mktemp, grep, /bin/touch, coreutils
 PreReq:         %fillup_prereq 
@@ -205,6 +207,8 @@ Include Files for Development
 %patch14 -p1
 %patch15 -p1
 %patch16 -p1
+%patch17 -p1
+%patch18 -p1

 %build
 # needs to be re-generated