Update to upstream 2.0.0, Fixes the following CVEs plus others CVE-2017-6440 CVE-2017-6439 CVE-2017-6438 CVE-2017-6437 CVE-2017-6436 CVE-2017-6435 CVE-2017-5836 CVE-2017-5835 CVE-2017-5834 CVE-2017-5545 CVE-2017-5209

2017-04-26 21:36:06 +01:00 · 2017-04-26 21:36:06 +01:00 · 55d155fa32
commit 55d155fa32
parent d0f10df318
2 changed files with 22 additions and 18 deletions
--- a/libplist.spec
+++ b/libplist.spec
@ -1,18 +1,16 @@
 %{!?python_sitearch: %global python_sitearch %(%{__python} -c "from distutils.sysconfig import get_python_lib; print(get_python_lib(1))")}

-Name:          libplist
-Version:       1.12
-Release:       9%{?dist}
-Summary:       Library for manipulating Apple Binary and XML Property Lists
+Name:     libplist
+Version:  2.0.0
+Release:  1%{?dist}
+Summary:  Library for manipulating Apple Binary and XML Property Lists

-Group:         System Environment/Libraries
-License:       LGPLv2+
-URL:           http://www.libimobiledevice.org/
-Source0:       http://www.libimobiledevice.org/downloads/%{name}-%{version}.tar.bz2
+License:  LGPLv2+
+URL:      http://www.libimobiledevice.org/
+Source0:  http://www.libimobiledevice.org/downloads/%{name}-%{version}.tar.bz2

 BuildRequires: chrpath
 BuildRequires: Cython
-BuildRequires: libxml2-devel
 BuildRequires: python-devel
 BuildRequires: python-setuptools

@ -21,21 +19,20 @@ libplist is a library for manipulating Apple Binary and XML Property Lists

 %package  devel
 Summary:  Development package for libplist
-Group:    Development/Libraries
-Requires: libplist = %{version}-%{release}
+Requires: %{name}%{?_isa} = %{version}-%{release}
 Requires: pkgconfig

 %description devel
 %{name}, development headers and libraries.

 %package  python
-Summary:  Python package for libplist
-Group:    Development/Libraries
-Requires: libplist = %{version}-%{release}
+Summary:  Python2 bindings for libplist
+%{?python_provide:%python_provide python2-libplist}
+Requires: %{name}%{?_isa} = %{version}-%{release}
 Requires: python

 %description python
-%{name}, python libraries and support
+%{name}, python2 libraries and bindings.

 %prep
 %setup -q
@ -45,10 +42,10 @@ export CFLAGS='%optflags -fno-strict-aliasing'
 export CXXFLAGS='%optflags -fno-strict-aliasing'
 %configure --disable-static

-make V=1
+make %{?_smp_mflags} V=1

 %install
-make install DESTDIR=$RPM_BUILD_ROOT
+make install DESTDIR=%{buildroot}

 find $RPM_BUILD_ROOT -type f -name "*.la" -delete

@ -81,6 +78,13 @@ make check
 %{python_sitearch}/plist*

 %changelog
+* Wed Apr 26 2017 Peter Robinson <pbrobinson@fedoraproject.org> 2.0.0-1
+- Update to upstream 2.0.0
+- Fixes the following CVEs plus others
+- CVE-2017-6440 CVE-2017-6439 CVE-2017-6438 CVE-2017-6437 CVE-2017-6436
+- CVE-2017-6435 CVE-2017-5836 CVE-2017-5835 CVE-2017-5834 CVE-2017-5545
+- CVE-2017-5209
+
 * Thu Mar 09 2017 Kalev Lember <klember@redhat.com> - 1.12-9
 - Remove lib64 rpaths
 - Disable strict aliasing as it's not strict-aliasing clean on ppc64el
--- a/2
+++ b/2
@ -1 +1 @@
-8b04b0f09f2398022dcd4fba75012997  libplist-1.12.tar.bz2
+SHA512 (libplist-2.0.0.tar.bz2) = 81508bf6773483528816725c3b5b868563b84fd7810999404072e5ea9efa7fc9f11ef997f32208e4421aa26b15edd0c65f87c67c1472e8c4e356f1e9fe7740ee