rpms/fapolicyd
7
0
Fork 0
Code Issues Pull Requests Releases Activity

Rebase to v1.1.2

Browse Source 
- fixed CVE-2022-1117
Resolves: rhbz#2089692

Signed-off-by: Radovan Sroka <rsroka@redhat.com>
This commit is contained in:
Radovan Sroka 2022-05-25 13:41:20 +02:00
parent f1912834ed
commit 182cc455be
No known key found for this signature in database
GPG Key ID: F5778AD785E3581F
3 changed files with 19 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
.gitignore vendored
View File

@ -20,3 +20,4 @@
/fapolicyd-1.0.4.tar.gz /fapolicyd-1.0.4.tar.gz
/fapolicyd-1.1.tar.gz /fapolicyd-1.1.tar.gz
/fapolicyd-1.1.1.tar.gz /fapolicyd-1.1.1.tar.gz
/fapolicyd-1.1.2.tar.gz

20
fapolicyd.spec
View File

@ -4,8 +4,8 @@
Summary: Application Whitelisting Daemon Summary: Application Whitelisting Daemon
Name: fapolicyd Name: fapolicyd
Version: 1.1.1 Version: 1.1.2
Release: 2%{?dist} Release: 1%{?dist}
License: GPLv3+ License: GPLv3+
URL: http://people.redhat.com/sgrubb/fapolicyd URL: http://people.redhat.com/sgrubb/fapolicyd
Source0: https://people.redhat.com/sgrubb/fapolicyd/%{name}-%{version}.tar.gz Source0: https://people.redhat.com/sgrubb/fapolicyd/%{name}-%{version}.tar.gz
@ -82,9 +82,18 @@ Don't use dnf and rpm plugin together.
%patch2 -p1 -b .watch-perm %patch2 -p1 -b .watch-perm
%patch3 -p1 -b .home %patch3 -p1 -b .home
# generate rules for python
sed -i "s/%python2_path%/`readlink -f %{__python2} | sed 's/\//\\\\\//g'`/g" rules.d/*.rules sed -i "s/%python2_path%/`readlink -f %{__python2} | sed 's/\//\\\\\//g'`/g" rules.d/*.rules
sed -i "s/%python3_path%/`readlink -f %{__python3} | sed 's/\//\\\\\//g'`/g" rules.d/*.rules sed -i "s/%python3_path%/`readlink -f %{__python3} | sed 's/\//\\\\\//g'`/g" rules.d/*.rules
sed -i "s/%ld_so_path%/`find /usr/lib64/ -type f -name 'ld-linux-*.so.*' | sed 's/\//\\\\\//g'`/g" rules.d/*.rules
# Detect run time linker directly from bash
interpret=`readelf -e /usr/bin/bash \
| grep Requesting \
| sed 's/.$//' \
| rev | cut -d" " -f1 \
| rev`
sed -i "s|%ld_so_path%|`realpath $interpret`|g" rules.d/*.rules
%build %build
./autogen.sh ./autogen.sh
@ -218,6 +227,11 @@ fi
%changelog %changelog
* Wed May 25 2022 Radovan Sroka <rsroka@redhat.com> - 1.1.2-1
- rebase to v1.1.2
- fixed CVE-2022-1117
Resolves: rhbz#2089692
* Wed Mar 30 2022 Radovan Sroka <rsroka@redhat.com> - 1.1.1-2 * Wed Mar 30 2022 Radovan Sroka <rsroka@redhat.com> - 1.1.1-2
- rebase to v1.1.1 - rebase to v1.1.1

2
sources
View File

@ -1,3 +1,3 @@
SHA512 (fapolicyd-1.1.1.tar.gz) = f1c808f488dd30ef6b559455cf57a79a2bd6237417e20afcd8a86c3b79db8ad8616f193f733fc0417b5f69a3db740e59c3b1c4283391b32b42841f9c69ca2383 SHA512 (fapolicyd-1.1.2.tar.gz) = e61d952e92e7bf31915ae2aa8875a40fc79aa0465bb99e30abeb2cf1374c7c076ea0328cb25285203f5893bad1f2037cc9518a1a95a5ad98551646178da54521
SHA512 (fapolicyd-selinux-0.4.tar.gz) = afc74b9c55c71bec2039d112e8e16abc510b58bf794bd665f3128a63daa45572a6f18d1c4de1f63e45a01f8696aacfbf54ed2a07485d581f25446b7fe92307a2 SHA512 (fapolicyd-selinux-0.4.tar.gz) = afc74b9c55c71bec2039d112e8e16abc510b58bf794bd665f3128a63daa45572a6f18d1c4de1f63e45a01f8696aacfbf54ed2a07485d581f25446b7fe92307a2
SHA512 (uthash-2.3.0.tar.gz) = 3b01f1074790fb242900411cb16eb82c1a9afcf58e3196a0f4611d9d7ef94690ad38c0a500e7783d3efa20328aa8d6ab14f246be63b3b3d385502ba2b6b2a294 SHA512 (uthash-2.3.0.tar.gz) = 3b01f1074790fb242900411cb16eb82c1a9afcf58e3196a0f4611d9d7ef94690ad38c0a500e7783d3efa20328aa8d6ab14f246be63b3b3d385502ba2b6b2a294