Resolves:RHEL-8400 allows attackers to trigger O(n^2) growth via consecutive marks
This commit is contained in:
Parag Nemade
parent
30e1d7ea66
commit
ac068bc058
@ -1,12 +1,15 @@
|
|||||||
Name: harfbuzz
|
Name: harfbuzz
|
||||||
Version: 1.7.5
|
Version: 1.7.5
|
||||||
Release: 3%{?dist}
|
Release: 4%{?dist}
|
||||||
Summary: Text shaping library
|
Summary: Text shaping library
|
||||||
|
|
||||||
License: MIT
|
License: MIT
|
||||||
URL: http://freedesktop.org/wiki/Software/HarfBuzz
|
URL: http://freedesktop.org/wiki/Software/HarfBuzz
|
||||||
Source0: http://www.freedesktop.org/software/harfbuzz/release/harfbuzz-%{version}.tar.bz2
|
Source0: http://www.freedesktop.org/software/harfbuzz/release/harfbuzz-%{version}.tar.bz2
|
||||||
|
|
||||||
|
# https://github.com/harfbuzz/harfbuzz/issues/4147#issuecomment-1707674277
|
||||||
|
Patch1: CVE-2023-25193-Limit_how_far_we_skip_when_looking_back.patch
|
||||||
|
|
||||||
BuildRequires: cairo-devel
|
BuildRequires: cairo-devel
|
||||||
BuildRequires: freetype-devel
|
BuildRequires: freetype-devel
|
||||||
BuildRequires: glib2-devel
|
BuildRequires: glib2-devel
|
||||||
@ -36,8 +39,9 @@ Requires: %{name}%{?_isa} = %{version}-%{release}
|
|||||||
This package contains Harfbuzz ICU support library.
|
This package contains Harfbuzz ICU support library.
|
||||||
|
|
||||||
%prep
|
%prep
|
||||||
%autosetup
|
%autosetup -p1
|
||||||
|
# rpminspect complained about invalid unicode characters like 0x202B and 0x202C
|
||||||
|
rm -f test/shaping/texts/in-house/shaper-arabic/script-arabic/language-persian/mehran.txt
|
||||||
|
|
||||||
%build
|
%build
|
||||||
%configure --disable-static --with-graphite2
|
%configure --disable-static --with-graphite2
|
||||||
@ -81,6 +85,9 @@ rm -f $RPM_BUILD_ROOT%{_libdir}/*.la
|
|||||||
%{_libdir}/libharfbuzz-icu.so.*
|
%{_libdir}/libharfbuzz-icu.so.*
|
||||||
|
|
||||||
%changelog
|
%changelog
|
||||||
|
* Mon Sep 25 2023 Parag Nemade <pnemade AT redhat DOT com> - 1.7.5-4
|
||||||
|
- Resolves:RHEL-8400 allows attackers to trigger O(n^2) growth via consecutive marks
|
||||||
|
|
||||||
* Mon Feb 19 2018 Parag Nemade <pnemade AT redhat DOT com> - 1.7.5-3
|
* Mon Feb 19 2018 Parag Nemade <pnemade AT redhat DOT com> - 1.7.5-3
|
||||||
- Add BuildRequires: gcc-c++ as per packaging guidelines
|
- Add BuildRequires: gcc-c++ as per packaging guidelines
|
||||||
- Used %%autosetup
|
- Used %%autosetup
|
||||||
|
|||||||
@ -5,19 +5,6 @@
|
|||||||
roles:
|
roles:
|
||||||
- role: standard-test-source
|
- role: standard-test-source
|
||||||
|
|
||||||
- hosts: localhost
|
|
||||||
tags:
|
|
||||||
- classic
|
|
||||||
tasks:
|
|
||||||
- name: Copy epel repo file to remote machine
|
|
||||||
copy:
|
|
||||||
src: "{{ playbook_dir }}/epel.repo"
|
|
||||||
dest: /etc/yum.repos.d/
|
|
||||||
- name: Copy epel gpg file to remote machine
|
|
||||||
copy:
|
|
||||||
src: "{{ playbook_dir }}/RPM-GPG-KEY-EPEL-8"
|
|
||||||
dest: /etc/pki/rpm-gpg/
|
|
||||||
|
|
||||||
- hosts: localhost
|
- hosts: localhost
|
||||||
tags:
|
tags:
|
||||||
- classic
|
- classic
|
||||||
@ -32,7 +19,6 @@
|
|||||||
- gcc-c++
|
- gcc-c++
|
||||||
- make
|
- make
|
||||||
- python3-devel
|
- python3-devel
|
||||||
- ragel
|
|
||||||
- libtool
|
- libtool
|
||||||
- gtk-doc
|
- gtk-doc
|
||||||
- cairo-devel
|
- cairo-devel
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user