Commit Graph

107 Commits

Author SHA1 Message Date
Jakub Martisko
0cde67cbab fix possible zipbomb
resolves: CVE-2019-19332
2019-10-23 15:35:14 +02:00
Fedora Release Engineering
ff818abf89 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-07-27 02:33:54 +00:00
Fedora Release Engineering
b0bcf41c8a - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2019-02-03 10:52:31 +00:00
Igor Gnatenko
00cbc98c7e Remove obsolete Group tag
References: https://fedoraproject.org/wiki/Changes/Remove_Group_Tag
2019-01-28 20:24:53 +01:00
Jakub Martisko
25c3b2b0ae fix several possibly unterminated strings
When copying to OEM_CP and ISO_CP strings, the string could end unterminated
(stncpy does not append '\0'). These string are part of the -I and -O options.
2018-11-08 13:02:36 +01:00
Jakub Martisko
84dde35223 Fix: CVE-2018-18384
Resolves: CVE-2018-18384
2018-11-08 13:02:00 +01:00
Fedora Release Engineering
0bbb61c4e2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-07-14 08:16:54 +00:00
Jason Tibbitts
a18b5d154d Remove needless use of %defattr 2018-07-10 01:42:37 -05:00
Jakub Martisko
e01061f107 unzip.spec: add gcc to buildrequires 2018-03-01 11:18:21 +01:00
Jakub Martisko
8d5c0ff1a9 Fix CVE-2018-1000035 - Heap-based buffer overflow in fileio.c
Resolves: #1537043
2018-02-26 10:42:05 +01:00
Fedora Release Engineering
a442c69cc7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
Signed-off-by: Fedora Release Engineering <releng@fedoraproject.org>
2018-02-09 20:05:41 +00:00
Fedora Release Engineering
e28499ab81 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild 2017-08-03 09:50:01 +00:00
Fedora Release Engineering
79f6785bb1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild 2017-07-27 21:02:20 +00:00
Devrim Gündüz
a5ac94a85f Fix typo. 2017-07-20 06:56:15 +03:00
Petr Stodulka
9334f086e1 restore of unix timestam accurately
Resolves: #1451953
2017-07-14 17:36:50 +02:00
Petr Stodulka
87704ddca0 non-important changes in spec 2017-03-03 21:57:43 +01:00
Fedora Release Engineering
cd6cf59f9b - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild 2017-02-11 16:46:57 +00:00
Stephen Gallagher
1c244629ca Add missing %license macro 2017-02-02 11:00:15 +01:00
Petr Stodulka
ee4e72f3fc Fix CVE-2016-9844 - buffer overflow in zipinfo
Resolves: #1404283
2016-12-14 16:59:00 +01:00
Petr Stodulka
45bcfca8da hardened builds + configuration for linker from the spec file
- rename patch unzip-6.0-nostrip.patch to unzip-6.0-configure.patch
  so linking is now configurable from the spec file
- define __global_ldflags on EL <= 7
- set LFLAGS2 with __global_ldflags for hardened build
  Resolves: #1330519
2016-07-14 14:11:04 +02:00
Petr Stodulka
23857b3ef2 added build parameter "-DNO_LCHMOD"
- because lchmod isn't provided on Linux system
  Resolves: #1350627
2016-07-01 04:17:12 +02:00
Fedora Release Engineering
75951ec294 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild 2016-02-05 02:24:11 +00:00
Petr Stodulka
85a1bbca89 fix patch unzip-6.0-alt-iconv-utf8-print.patch
- remove "izu_" prefix for malloc|free functions (not interesting for Linux)
2015-12-02 17:59:46 +01:00
Petr Stodulka
848c7d24bf fix print of non-ascii filenames (#225576) 2015-11-25 12:08:53 +01:00
Petr Stodulka
36af2c8ca9 fix unsigned overflow patch for #1260944
Resolves: #1281804
2015-11-13 14:56:24 +01:00
Petr Stodulka
d599e36567 add support of non-latin and non-unicode encodings for filenames (#885540) 2015-10-29 18:25:01 +01:00
Kamil Dudka
d18f821e5f Resolves: #1260944 - prevent unsigned overflow on invalid input 2015-09-23 12:41:59 +02:00
Kamil Dudka
dbce0b0774 Resolves: #1260947 - Fix heap overflow and infinite loop when invalid input is given 2015-09-14 20:16:29 +02:00
Dennis Gilmore
b7bb883ace - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild 2015-06-19 01:37:17 +00:00
Jaromir Capik
fea1c9ec02 Adding STAGE1 bootstrap recipe 2015-06-15 17:45:40 +02:00
Jaromir Capik
7f75bc209e Merge branches 'f22' and 'f21' 2015-06-15 17:43:51 +02:00
Till Maas
8f81d1ceb2 Rebuilt for Fedora 23 Change
https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code
2015-02-21 22:26:26 +01:00
Petr Stodulka
9758fc2ff1 fix typo in specfile 2015-02-11 16:41:18 +01:00
Petr Stodulka
d2ca9d56e7 re-patch CVE-2014-9636 - original patch was incorrect (#1184986) 2015-02-11 16:39:55 +01:00
Petr Stodulka
c1b9a30e8c re-patch CVE-2014-9636 - original patch was incorrect (#1184986) 2015-02-11 16:35:12 +01:00
Petr Stodulka
df221ec2ac re-patch CVE-2014-9636 - original patch was incorrect (#1184986) 2015-02-11 16:23:27 +01:00
Petr Stodulka
1e71db15e9 fixed few security bugs and overflow for long file sizes 2015-02-10 21:35:39 +01:00
Petr Stodulka
f6883dfa85 Fixes few security bugs and overflow on long file sizes 2015-02-10 21:26:05 +01:00
Petr Stodulka
e6cccc653b security fix CVE-2014-9636 (#1184986) 2015-01-26 09:39:49 +01:00
Petr Stodulka
a5144dfa86 fix version and bogus dates 2015-01-26 09:31:48 +01:00
Petr Stodulka
9e783e27d0 - security fix CVE-2014-9636 (#1184986) 2015-01-26 09:28:07 +01:00
Petr Stodulka
da968d58c3 fixed reading of unitialized input (valgrind) and -X works now 2014-11-27 14:32:07 +01:00
Petr Stodulka
0cc72ee6f2 edit lines in *-x-option.patch 2014-11-27 14:12:45 +01:00
Petr Stodulka
228318ce86 fixed reading of unitialized input (valgrind) and -X works now 2014-11-21 16:36:05 +01:00
Petr Stodulka
e677faaf23 fix incorrect output data due to memcpy() overlap 2014-11-06 22:28:46 +01:00
Petr Stodulka
23ebc162f6 fix memcpy() overlap - #1153388 2014-11-06 21:57:19 +01:00
Peter Robinson
5ce36c6e92 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild 2014-08-18 07:05:49 +00:00
Petr Stodulka
6c088e2b9e fix previous patch - case-insensitive matching 2014-06-06 13:11:49 +02:00
Petr Stodulka
874f1688f1 - fix bug with caseinsensitive matching - #1104018
- fix false positives for build option "-Werror=format-security"
2014-06-04 17:04:55 +02:00
Petr Stodulka
197087d9bc Solve problem with symlink errors in archive with many files 2013-11-19 13:18:32 +01:00