mirror of
https://git.linuxfromscratch.org/lfs.git
synced 2025-01-18 21:17:38 +00:00
Added bzgrep security patch
git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@6700 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689
This commit is contained in:
parent
0c78fca937
commit
50125deceb
@ -87,6 +87,7 @@ First a summary, then a detailed log.</para>
|
||||
|
||||
<listitem><para>Added:</para>
|
||||
<itemizedlist>
|
||||
<listitem><para>&bzip2-bzgrep-patch;</para></listitem>
|
||||
<listitem><para>&bzip2-docs-patch;</para></listitem>
|
||||
<listitem><para>&gcc-linkonce-patch;</para></listitem>
|
||||
<listitem><para>&gcc-no_fixincludes-patch;</para></listitem>
|
||||
@ -113,6 +114,9 @@ First a summary, then a detailed log.</para>
|
||||
</itemizedlist>
|
||||
</listitem>
|
||||
|
||||
<listitem><para>August 18th, 2005 [ken]: Add a patch to sanitise bzgrep's
|
||||
handling of filenames.</para></listitem>
|
||||
|
||||
<listitem><para>August 16th, 2005 [matt]: Install sed's man page to
|
||||
/usr/share/doc/sed-4.1.4 instead of /usr/share/doc (fixes bug 1600).</para>
|
||||
</listitem>
|
||||
|
@ -37,8 +37,15 @@ needed to build an LFS system:</para>
|
||||
<para><ulink url="&patches-root;&bzip2-docs-patch;"/></para>
|
||||
</listitem>
|
||||
</varlistentry>
|
||||
<varlistentry>
|
||||
|
||||
<varlistentry>
|
||||
<term>Bzip2 Bzgrep Security Fixes Patch - 1 KB:</term>
|
||||
<listitem>
|
||||
<para><ulink url="&patches-root;&bzip2-bzgrep-patch;"/></para>
|
||||
</listitem>
|
||||
</varlistentry>
|
||||
|
||||
<varlistentry>
|
||||
<term>Coreutils Suppress Uptime, Kill, Su Patch - 15 KB:</term>
|
||||
<listitem>
|
||||
<para><ulink url="&patches-root;&coreutils-suppress-patch;"/></para>
|
||||
|
@ -36,6 +36,11 @@ GCC, Glibc, and Make</seg></seglistitem>
|
||||
|
||||
<screen><userinput>patch -Np1 -i ../&bzip2-docs-patch;</userinput></screen>
|
||||
|
||||
<para><command>Bzgrep</command> fails to sufficiently sanitise filenames passed
|
||||
to it. Apply the following to address this:</para>
|
||||
|
||||
<screen><userinput>patch -Np1 -i ../&bzip2-bzgrep-patch;</userinput></screen>
|
||||
|
||||
<para>Prepare Bzip2 for compilation with:</para>
|
||||
|
||||
<screen><userinput>make -f Makefile-libbz2_so
|
||||
|
@ -1,6 +1,6 @@
|
||||
<?xml version="1.0" encoding="ISO-8859-1"?>
|
||||
<!ENTITY version "SVN-20050816">
|
||||
<!ENTITY releasedate "August 16, 2005">
|
||||
<!ENTITY version "SVN-20050818">
|
||||
<!ENTITY releasedate "August 18, 2005">
|
||||
<!ENTITY milestone "6.2">
|
||||
<!ENTITY generic-version "development"> <!-- Use "development", "testing", or "x.y[-pre{x}]" -->
|
||||
|
||||
|
@ -5,6 +5,7 @@
|
||||
<!ENTITY bash-avoid_WCONTINUED-patch "bash-&bash-version;-avoid_WCONTINUED-1.patch">
|
||||
|
||||
<!ENTITY bzip2-docs-patch "bzip2-&bzip2-version;-install_docs-1.patch">
|
||||
<!ENTITY bzip2-bzgrep-patch "bzip2-&bzip2-version;-bzgrep_security-1.patch">
|
||||
|
||||
<!ENTITY coreutils-suppress-patch "coreutils-&coreutils-version;-suppress_uptime_kill_su-1.patch">
|
||||
<!ENTITY coreutils-uname-patch "coreutils-&coreutils-version;-uname-2.patch">
|
||||
|
Loading…
Reference in New Issue
Block a user