Fix CVE-2024-34397, signal subscription vulnerabilities

This commit is contained in:
Michael Catanzaro 2024-05-13 15:04:11 -05:00 committed by root
parent b40e10aeb2
commit 154c6d90a7
3 changed files with 3371 additions and 1 deletions

1
.glib2.metadata Normal file
View File

@ -0,0 +1 @@
bfebd4a5074715962177e8712cec630219f58786 glib-2.68.4.tar.xz

3359
4038.patch Normal file

File diff suppressed because it is too large Load Diff

View File

@ -1,6 +1,6 @@
Name: glib2
Version: 2.68.4
Release: 14%{?dist}
Release: 15%{?dist}
Summary: A library of handy utility functions
License: LGPLv2+
@ -54,6 +54,12 @@ Patch: 3353.patch
# https://gitlab.gnome.org/GNOME/glib/-/merge_requests/3845
Patch: 3845.patch
# https://gitlab.gnome.org/GNOME/glib/-/merge_requests/3720
# https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4038
# https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4053
# https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4057
Patch: 4038.patch
BuildRequires: chrpath
BuildRequires: gcc
BuildRequires: gcc-c++
@ -269,6 +275,10 @@ glib-compile-schemas %{_datadir}/glib-2.0/schemas &> /dev/null || :
%{_datadir}/installed-tests
%changelog
* Mon May 13 2024 Michael Catanzaro <mcatanzaro@redhat.com> - 2.68.4-15
- Fix CVE-2024-34397, signal subscription vulnerabilities
- Resolves: RHEL-35775
* Wed Feb 21 2024 Michael Catanzaro <mcatanzaro@redhat.com> - 2.68.4-14
- Rebuild against newer util-linux for libmnt changes
- Resolves: RHEL-23637