RHEL 9.7 ERRATUM

CVE-2025-54389 aide: improper output neutralization enables bypassing Resolves: RHEL-109912
2025-08-21 08:28:57 +02:00 · 2025-08-21 08:28:57 +02:00 · 4638788abc
commit 4638788abc
parent 445369c9ce
2 changed files with 1638 additions and 60 deletions
--- a/aide-0.16-CVE-2025-54389.patch
+++ b/aide-0.16-CVE-2025-54389.patch
--- a/aide.spec
+++ b/aide.spec
@ -1,7 +1,7 @@
 Summary:        Intrusion detection environment
 Name:           aide
 Version:        0.16
-Release:        104%{?dist}
+Release:        105%{?dist}
 URL:            http://sourceforge.net/projects/aide
 License:        GPLv2+

@ -41,8 +41,7 @@ Patch9: aide-static-analysis.patch
 Patch10: aide-0.16-CVE-2021-45417.patch
 Patch11: aide-db-problem.patch
 Patch12: rootPrefix.patch
-Patch13: aide-0.16-CVE-2025-54389-part1.patch
-Patch14: aide-0.16-CVE-2025-54389-part2.patch
+Patch13: aide-0.16-CVE-2025-54389.patch

 %description
 AIDE (Advanced Intrusion Detection Environment) is a file integrity
@ -89,7 +88,7 @@ mkdir -p -m0700 %{buildroot}%{_localstatedir}/lib/aide
 %dir %attr(0700,root,root) %{_localstatedir}/log/aide

 %changelog
-* Wed Aug 20 2025 Attila Lakatos <alakatos@redhat.com> - 0.16-104
+* Wed Aug 20 2025 Attila Lakatos <alakatos@redhat.com> - 0.16-105
 RHEL 9.7 ERRATUM
 - CVE-2025-54389 aide: improper output neutralization enables bypassing
 Resolves: RHEL-109912