Accepting request 373839 from home:tiwai:branches:devel:tools:scm

- Fix remote code execution via buffer overflow (CVE-2016-2315, CVE-2016-2324, bsc#971328): 0012-http-push-stop-using-name_path.patch 0013-show_object_with_name-simplify-by-using-path_name.patch 0014-list-objects-convert-name_path-to-a-strbuf.patch 0015-list-objects-drop-name_path-entirely.patch 0016-list-objects-pass-full-pathname-to-callbacks.patch OBS-URL: https://build.opensuse.org/request/show/373839 OBS-URL: https://build.opensuse.org/package/show/devel:tools:scm/cgit?expand=0&rev=27
2016-03-16 15:50:59 +00:00
parent 34d802498a
commit db2b3d263a
7 changed files with 912 additions and 0 deletions
--- a/cgit.spec
+++ b/cgit.spec
@@ -33,6 +33,12 @@ Source3:        https://www.kernel.org/pub/software/scm/git/git-%git_version.tar
 Source4:        %name.keyring
 Source9:        cgitrc
 Patch0:         cgit-optflags.diff
+# PATCH-FIX-UPSTREAM fix remote code execution via buffer overflow (CVE-2016-2324, bsc#971328)
+Patch12:        0012-http-push-stop-using-name_path.patch
+Patch13:        0013-show_object_with_name-simplify-by-using-path_name.patch
+Patch14:        0014-list-objects-convert-name_path-to-a-strbuf.patch
+Patch15:        0015-list-objects-drop-name_path-entirely.patch
+Patch16:        0016-list-objects-pass-full-pathname-to-callbacks.patch
 # Requirements for cgit
 BuildRequires:  gnu-crypto
 BuildRequires:  libopenssl-devel
@@ -52,6 +58,12 @@ builtin cache to decrease server I/O pressue.
 %patch0 -p1
 rm -rf git
 ln -s git-%git_version git
+cd git
+%patch12 -p1
+%patch13 -p1
+%patch14 -p1
+%patch15 -p1
+%patch16 -p1

 %build
 make V=1 prefix="%_prefix" %{?_smp_mflags}