Added security patch for zlib.

git-svn-id: http://svn.linuxfromscratch.org/LFS/trunk/BOOK@6414 4aa44e1e-78dd-0310-a6d2-fbcd4c07a689
2025-03-05 22:04:48 +00:00 · 2005-07-06 18:51:27 +00:00 · 2005-07-06 18:51:27 +00:00 · cf62a33e4f
commit cf62a33e4f
parent 334a0dfdde
4 changed files with 16 additions and 0 deletions
--- a/chapter01/changelog.xml
+++ b/chapter01/changelog.xml
@ -107,6 +107,9 @@ First a summary, then a detailed log.</para>
 </itemizedlist>
 </listitem>

+<listitem><para>July  6th, 2005 [archaic]: Added security patch for zlib.
+</para></listitem>
+
 <listitem><para>July  6th, 2005 [matt]: Several typo corrections, as suggested
 by Bernard Leak.</para></listitem>

--- a/chapter03/patches.xml
+++ b/chapter03/patches.xml
@ -147,6 +147,12 @@ needed to build an LFS system:</para>
 </listitem>
 </varlistentry>

+<varlistentry>
+<term>Zlib Security Patch - 1KB:</term><listitem>
+<para><ulink url="&patches-root;&zlib-security_fix-patch;"/></para>
+</listitem>
+</varlistentry>
+
 </variablelist>

 <para>In addition to the above required patches, there exist a number of
--- a/chapter06/zlib.xml
+++ b/chapter06/zlib.xml
@ -30,6 +30,11 @@ some programs.</para>
 <sect2 role="installation">
 <title>Installation of Zlib</title>

+<para>Zlib has a security vulnerability currently being addressed upstream. The
+following patch fixes the problem:</para>
+
+<screen><userinput>patch -Np1 -i ../&zlib-security_fix-patch;</userinput></screen>
+
 <note><para>Zlib is known to build its shared library incorrectly if
 <envar>CFLAGS</envar> is specified in the environment. If using a 
 specified <envar>CFLAGS</envar>
--- a/patches.ent
+++ b/patches.ent
@ -34,3 +34,5 @@
 <!ENTITY util-linux-cramfs-patch "util-linux-&util-linux-version;-cramfs-1.patch">

 <!ENTITY vim-security_fix-patch "vim-&vim-version;-security_fix-1.patch">
+
+<!ENTITY zlib-security_fix-patch "zlib-&zlib-version;-security_fix-1.patch">