0ade2b2bc6
The fix in 1.6.2 for CVE-2022-3515 was found to be incomplete¹. This release fixes a related bug in the code to parse CRL signatures. Use a glob to match all gnupg tarballs rather than having fedpkg add each one to .gitignore. Also ignore rpm's, extracted source dirs, and the mock build results directory. ¹ https://gnupg.org/blog/20221017-pepe-left-the-ksba.html#sec-2-2
5 lines
57 B
Plaintext
5 lines
57 B
Plaintext
/*.rpm
|
|
/libksba-*/
|
|
/libksba-*.tar.bz2*
|
|
/results_libksba/
|