From f2ba2025b6c479844587ec6d878060b4efef966f Mon Sep 17 00:00:00 2001 From: Sergio Pascual Date: Feb 18 2010 18:11:32 +0000 Subject: - Patch to ltdl, fixes security problem CVE-2009-3736, bz #563969 --- diff --git a/esorex-ltdl.patch b/esorex-ltdl.patch new file mode 100644 index 0000000..e3addd3 --- /dev/null +++ b/esorex-ltdl.patch @@ -0,0 +1,22 @@ +diff -pruN libtool-2.2.6.org/libltdl/ltdl.c libtool-2.2.6/libltdl/ltdl.c +--- libtool-2.2.6.org/libltdl/ltdl.c 2008-09-05 05:54:41.000000000 -0600 ++++ libtool-2.2.6/libltdl/ltdl.c 2009-11-19 10:30:12.000000000 -0700 +@@ -529,7 +529,8 @@ find_module (lt_dlhandle *handle, const + /* Try to open the old library first; if it was dlpreopened, + we want the preopened version of it, even if a dlopenable + module is available. */ +- if (old_name && tryall_dlopen (handle, old_name, advise, 0) == 0) ++ if (old_name && tryall_dlopen (handle, old_name, ++ advise, lt_dlloader_find ("lt_preopen") ) == 0) + { + return 0; + } +@@ -1345,7 +1346,7 @@ try_dlopen (lt_dlhandle *phandle, const + } + #endif + } +- if (!file) ++ else + { + file = fopen (attempt, LT_READTEXT_MODE); + } diff --git a/esorex.spec b/esorex.spec index e0277ad..fd58c02 100644 --- a/esorex.spec +++ b/esorex.spec @@ -1,6 +1,6 @@ Name: esorex Version: 3.7.2 -Release: 3%{?dist} +Release: 5%{?dist} Summary: Recipe Execution Tool of the European Southern Observatory Group: Applications/Engineering @@ -8,12 +8,12 @@ License: GPLv2+ URL: http://www.eso.org/observing/cpl/esorex.html Source0: ftp://ftp.hq.eso.org/pub/cpl/%{name}-%{version}.tar.gz Patch0: esorex-configure.patch +Patch1: esorex-ltdl.patch Buildroot: %(mktemp -ud %{_tmppath}/%{name}-%{version}-%{release}-XXXXXX) BuildRequires: cpl-devel BuildRequires: cfitsio-devel - %description EsoRex is the ESO Recipe Execution Tool. It can list, configure and execute CPL-based recipes from the command line. @@ -25,6 +25,7 @@ CPL data-reduction development environment. %prep %setup -q %patch0 -p1 +%patch1 -p1 %build %configure --with-cpl-libs=%{_libdir} @@ -44,14 +45,20 @@ rm -rf %{buildroot} %{_datadir}/* %changelog -* Mon Nov 16 2009 Sergio Pascual 3.7.2-3 -- Rebuilt for new cpl 5.0 +* Wed Feb 17 2010 Sergio Pascual 3.7.2-5 +- Patch to ltdl, fixes security problem CVE-2009-3736, bz #563969 + +* Wed Nov 04 2009 Sergio Pascual 3.7.2-4 +- Updated build requires -* Thu Nov 05 2009 Sergio Pascual 3.7.2-2 -- Wrong configure patch fixed +* Tue Nov 03 2009 Sergio Pascual 3.7.2-3 +- Rebuilt for new cpl -* Thu Nov 05 2009 Sergio Pascual 3.7.2-1 -- Rebuilt for new cpl 5.0 +* Wed Oct 28 2009 Sergio Pascual 3.7.2-2 +- Fixed configure patch + +* Wed Oct 28 2009 Sergio Pascual 3.7.2-1 +- New upstream source * Fri Jul 24 2009 Fedora Release Engineering - 3.6.12-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild