- Add gmp-6.2.1-CVE-2021-43618.diff to fix buffer overflow on

malformed input to mpz_inp_raw. [bsc#1192717, CVE-2021-43618] OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/gmp?expand=0&rev=91
2021-11-16 07:39:19 +00:00
parent 5d9088ca84
commit 749f35f705
3 changed files with 33 additions and 0 deletions
--- a/gmp.spec
+++ b/gmp.spec
@@ -30,6 +30,7 @@ Source2:        %{name}.keyring
 Source3:        baselibs.conf
 # revert change causing bsc#1179751
 Patch1:         gmp-6.2.1-arm64-invert_limb.patch
+Patch2:         gmp-6.2.1-CVE-2021-43618.patch
 BuildRequires:  fipscheck
 BuildRequires:  gcc-c++
 BuildRequires:  m4
@@ -78,6 +79,7 @@ huge numbers (integer and floating point).
 %prep
 %setup -q
 %patch1
+%patch2 -p1

 %build
 export CFLAGS="%{optflags} -fexceptions"