Fix CVE-2007-4565

2007-09-04 12:27:30 +00:00 · 2007-09-04 12:27:30 +00:00 · 8824613a1c
commit 8824613a1c
parent 2a66f07227
1 changed files with 6 additions and 1 deletions
--- a/fetchmail.spec
+++ b/fetchmail.spec
@ -4,11 +4,12 @@
 Summary: A remote mail retrieval and forwarding utility
 Name: fetchmail
 Version: 6.3.8
-Release: 2%{?dist}
+Release: 3%{?dist}
 Requires: smtpdaemon
 Source0: http://download.berlios.de/fetchmail/fetchmail-%{version}.tar.bz2
 Source1: http://download.berlios.de/fetchmail/fetchmail-%{version}.tar.bz2.asc
 Patch0: fetchmail-6.2.5-addrconf.patch
+Patch1: fetchmail-6.3.8-CVE-2007-4565.patch
 URL: http://fetchmail.berlios.de/
 # For a breakdown of the licensing, see COPYING
 License: GPL+ and Public Domain
@ -47,6 +48,7 @@ need to have Python and Tk installed in order to use fetchmailconf.
 %prep
 %setup -q
 %patch0 -p1 -b .addrconf
+%patch1 -p1 -b .cve_2007_4565

 %build
 %configure --enable-POP3 --enable-IMAP --with-ssl --with-hesiod \
@ -84,6 +86,9 @@ rm -rf $RPM_BUILD_ROOT
 %endif

 %changelog
+* Tue Sep  4 2007 Vitezslav Crhonek <vcrhonek@redhat.com> - 6.3.8-3
+- Fix CVE-2007-4565
+
 * Thu Aug 23 2007 Vitezslav Crhonek <vcrhonek@redhat.com> - 6.3.8-2
 - fix license
 - rebuild