import UBI rust-1.66.1-2.el9_2
This commit is contained in:
parent
69013e98d0
commit
3af2802ed6
1468
SOURCES/CVE-2023-38497-cargo-umask.patch
Normal file
1468
SOURCES/CVE-2023-38497-cargo-umask.patch
Normal file
File diff suppressed because it is too large
Load Diff
@ -84,7 +84,7 @@
|
||||
|
||||
Name: rust
|
||||
Version: 1.66.1
|
||||
Release: 1%{?dist}
|
||||
Release: 2%{?dist}
|
||||
Summary: The Rust Programming Language
|
||||
License: (ASL 2.0 or MIT) and (BSD and MIT)
|
||||
# ^ written as: (rust itself) and (bundled libraries)
|
||||
@ -115,6 +115,9 @@ Patch4: 0001-Improve-generating-Custom-entry-function.patch
|
||||
# https://github.com/rust-lang/rust/pull/105468
|
||||
Patch5: 0001-Mangle-main-as-__main_void-on-wasm32-wasi.patch
|
||||
|
||||
# CVE-2023-38497: cargo does not respect the umask when extracting dependencies
|
||||
Patch6: CVE-2023-38497-cargo-umask.patch
|
||||
|
||||
### RHEL-specific patches below ###
|
||||
|
||||
# Simple rpm macros for rust-toolset (as opposed to full rust-packaging)
|
||||
@ -592,6 +595,7 @@ test -f '%{local_rust_root}/bin/rustc'
|
||||
%patch3 -p1
|
||||
%patch4 -p1
|
||||
%patch5 -p1
|
||||
%patch6 -p1
|
||||
|
||||
%if %with disabled_libssh2
|
||||
%patch100 -p1
|
||||
@ -1056,6 +1060,10 @@ end}
|
||||
|
||||
|
||||
%changelog
|
||||
* Mon Aug 07 2023 Josh Stone <jistone@redhat.com> - 1.66.1-2
|
||||
- CVE-2023-38497: fix cargo to respect umask
|
||||
- Resolves: rhbz#2228140
|
||||
|
||||
* Wed Jan 11 2023 Josh Stone <jistone@redhat.com> - 1.66.1-1
|
||||
- Update to 1.66.1.
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user