- Add CVE-2022-45299-update-webbrowser.patch (copied from
gh#tree-sitter/tree-sitter#2042) to use more recent version of webbrowser-rs, which has been fixed against CVE-2022-45299 (bsc#1207196). OBS-URL: https://build.opensuse.org/package/show/editors/tree-sitter?expand=0&rev=11
This commit is contained in:
parent
d896bd26b7
commit
d10e68f11a
15
CVE-2022-45299-update-webbrowser.patch
Normal file
15
CVE-2022-45299-update-webbrowser.patch
Normal file
@ -0,0 +1,15 @@
|
|||||||
|
---
|
||||||
|
cli/Cargo.toml | 2 +-
|
||||||
|
1 file changed, 1 insertion(+), 1 deletion(-)
|
||||||
|
|
||||||
|
--- a/cli/Cargo.toml
|
||||||
|
+++ b/cli/Cargo.toml
|
||||||
|
@@ -37,7 +37,7 @@ serde = { version = "1.0.130", features
|
||||||
|
smallbitvec = "2.5.1"
|
||||||
|
tiny_http = "0.8"
|
||||||
|
walkdir = "2.3"
|
||||||
|
-webbrowser = "0.5.1"
|
||||||
|
+webbrowser = "0.8.4"
|
||||||
|
which = "4.1.0"
|
||||||
|
|
||||||
|
[dependencies.tree-sitter]
|
@ -1,3 +1,11 @@
|
|||||||
|
-------------------------------------------------------------------
|
||||||
|
Wed Jan 18 10:05:05 UTC 2023 - Matej Cepl <mcepl@suse.com>
|
||||||
|
|
||||||
|
- Add CVE-2022-45299-update-webbrowser.patch (copied from
|
||||||
|
gh#tree-sitter/tree-sitter#2042) to use more recent version
|
||||||
|
of webbrowser-rs, which has been fixed against CVE-2022-45299
|
||||||
|
(bsc#1207196).
|
||||||
|
|
||||||
-------------------------------------------------------------------
|
-------------------------------------------------------------------
|
||||||
Sat Sep 24 09:49:29 UTC 2022 - socvirnyl.estela@gmail.com
|
Sat Sep 24 09:49:29 UTC 2022 - socvirnyl.estela@gmail.com
|
||||||
|
|
||||||
|
@ -1,7 +1,7 @@
|
|||||||
#
|
#
|
||||||
# spec file for package tree-sitter
|
# spec file for package tree-sitter
|
||||||
#
|
#
|
||||||
# Copyright (c) 2022 SUSE LLC
|
# Copyright (c) 2023 SUSE LLC
|
||||||
#
|
#
|
||||||
# All modifications and additions to the file contributed by third parties
|
# All modifications and additions to the file contributed by third parties
|
||||||
# remain the property of their copyright owners, unless otherwise agreed
|
# remain the property of their copyright owners, unless otherwise agreed
|
||||||
@ -27,6 +27,9 @@ URL: https://tree-sitter.github.io/
|
|||||||
Source0: https://github.com/tree-sitter/%{name}/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.xz
|
Source0: https://github.com/tree-sitter/%{name}/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.xz
|
||||||
Source1: vendor.tar.xz
|
Source1: vendor.tar.xz
|
||||||
Source2: cargo_config
|
Source2: cargo_config
|
||||||
|
# PATCH-FIX-UPSTREAM CVE-2022-45299-update-webbrowser.patch bsc#1207196 mcepl@suse.com
|
||||||
|
# Use more recent version of webbrowser-rs
|
||||||
|
Patch0: CVE-2022-45299-update-webbrowser.patch
|
||||||
BuildRequires: cargo-packaging
|
BuildRequires: cargo-packaging
|
||||||
BuildRequires: rust > 1.40
|
BuildRequires: rust > 1.40
|
||||||
Requires: lib%{name}%{somajor} = %{version}
|
Requires: lib%{name}%{somajor} = %{version}
|
||||||
@ -63,6 +66,7 @@ developing applications that use %{name}.
|
|||||||
|
|
||||||
%prep
|
%prep
|
||||||
%autosetup -p1 -a1
|
%autosetup -p1 -a1
|
||||||
|
|
||||||
mkdir -p .cargo
|
mkdir -p .cargo
|
||||||
cp %{SOURCE2} .cargo/config
|
cp %{SOURCE2} .cargo/config
|
||||||
|
|
||||||
|
@ -1,3 +1,3 @@
|
|||||||
version https://git-lfs.github.com/spec/v1
|
version https://git-lfs.github.com/spec/v1
|
||||||
oid sha256:6d108dc827180efa41d637739fdb6936e862bf120ddc425562d016352c89a16a
|
oid sha256:75a09d0cfc00ece53acb11649f0c3753fe215693fa51add1f8cb959ada676fdb
|
||||||
size 8203012
|
size 19780556
|
||||||
|
Loading…
Reference in New Issue
Block a user