1 |
jpp |
1.1 |
%define release 0 |
2 |
|
|
Name: libarchive |
3 |
|
|
Version: 2.8.5 |
4 |
|
|
Release: %{release}%{?dist} |
5 |
|
|
Summary: A library for handling streaming archive formats |
6 |
|
|
|
7 |
|
|
Group: System Environment/Libraries |
8 |
|
|
License: BSD |
9 |
|
|
URL: http://code.google.com/p/libarchive/ |
10 |
|
|
# Source0: http://libarchive.googlecode.com/files/libarchive-%{version}.tar.gz |
11 |
|
|
Source0: http://libarchive.googlecode.com/files/libarchive-%{version}.zip |
12 |
|
|
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n) |
13 |
|
|
|
14 |
|
|
|
15 |
|
|
BuildRequires: autoconf, automake, bison, libtool |
16 |
|
|
BuildRequires: sharutils |
17 |
|
|
BuildRequires: zlib-devel |
18 |
|
|
BuildRequires: bzip2-devel |
19 |
|
|
BuildRequires: xz-devel |
20 |
|
|
BuildRequires: e2fsprogs-devel |
21 |
|
|
BuildRequires: libacl-devel |
22 |
|
|
BuildRequires: libattr-devel |
23 |
|
|
BuildRequires: openssl-devel |
24 |
|
|
BuildRequires: libxml2-devel |
25 |
|
|
|
26 |
|
|
|
27 |
|
|
# from upstream |
28 |
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=597243 |
29 |
|
|
Patch0: libarchive-2.8.4-iso9660-data-types.patch |
30 |
|
|
# CVE-2010-4666 CVE-2011-1777 CVE-2011-1778 CVE-2011-1779 libarchive: multiple vulnerabilities in version 2.8.4 |
31 |
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=739940 |
32 |
|
|
Patch1: CVE-2011-1777.patch |
33 |
|
|
Patch2: CVE-2011-1778.patch |
34 |
|
|
|
35 |
|
|
# Patch needed to make the testsuite at least "somehow" work. This is done with |
36 |
|
|
# intention that we would see potential breakage in the following set of CVE |
37 |
|
|
# patches. Particular notes follow. |
38 |
|
|
# * test_read_format_isorr_rr_moved: Broken due to CVE-2011-1777 fix. I don't |
39 |
|
|
# have mandate to work on this atm. |
40 |
|
|
# * test_write_disk, test_write_disk_times, test_read_format_tz: I don't know |
41 |
|
|
# why those fail in brew. On my box (in epel6 mock) and within internal Copr |
42 |
|
|
# (rhel/centos mocks) those test cases pass, so most probably some environment |
43 |
|
|
# issue. |
44 |
|
|
Patch3: libarchive-2.8.3-testsuite.patch |
45 |
|
|
|
46 |
|
|
# Set of summer 2016 CVE patches. |
47 |
|
|
Patch4: libarchive-2.8.3-rhbz-1347086.patch |
48 |
|
|
Patch5: libarchive-2.8.3-CVE-2015-8920.patch |
49 |
|
|
Patch6: libarchive-2.8.3-CVE-2015-8921.patch |
50 |
|
|
Patch7: libarchive-2.8.3-CVE-2015-8932.patch |
51 |
|
|
Patch8: libarchive-2.8.3-CVE-2016-4809.patch |
52 |
|
|
Patch9: libarchive-2.8.3-CVE-2016-5844.patch |
53 |
|
|
|
54 |
|
|
Patch10: libarchive-2.8.3-CVE-2016-5418.patch |
55 |
|
|
Patch11: libarchive-2.8.3-CVE-2016-5418-variation.patch |
56 |
|
|
|
57 |
|
|
|
58 |
|
|
%description |
59 |
|
|
Libarchive is a programming library that can create and read several different |
60 |
|
|
streaming archive formats, including most popular tar variants, several cpio |
61 |
|
|
formats, and both BSD and GNU ar variants. It can also write shar archives and |
62 |
|
|
read ISO9660 CDROM images and ZIP archives. |
63 |
|
|
|
64 |
|
|
%package devel |
65 |
|
|
Summary: Development files for %{name} |
66 |
|
|
Group: Development/Libraries |
67 |
|
|
Requires: %{name} = %{version}-%{release} |
68 |
|
|
|
69 |
|
|
%description devel |
70 |
|
|
The %{name}-devel package contains libraries and header files for |
71 |
|
|
developing applications that use %{name}. |
72 |
|
|
|
73 |
|
|
|
74 |
|
|
%prep |
75 |
|
|
%setup -q |
76 |
|
|
# %patch0 -p0 -b .iso9660-testsuite |
77 |
|
|
# %patch1 -p1 -b .CVE-2011-1777 |
78 |
|
|
%patch2 -p1 -b .CVE-2011-1778 |
79 |
|
|
%patch3 -p1 -b .testsuite |
80 |
|
|
# %patch4 -p1 -b .rhbz-1347086 |
81 |
|
|
%patch5 -p1 -b .CVE-2015-8920 |
82 |
|
|
%patch6 -p1 -b .CVE-2015-8921 |
83 |
|
|
%patch7 -p1 -b .CVE-2015-8932 |
84 |
|
|
%patch8 -p1 -b .CVE-2016-4809 |
85 |
|
|
%patch9 -p1 -b .CVE-2016-5844 |
86 |
|
|
%patch10 -p1 -b .CVE-2016-5418 |
87 |
|
|
%patch11 -p1 -b .CVE-2016-5418-var |
88 |
|
|
autoreconf -vi --force --install |
89 |
|
|
|
90 |
|
|
|
91 |
|
|
%build |
92 |
|
|
%configure --disable-static --disable-bsdtar --disable-bsdcpio |
93 |
|
|
make %{?_smp_mflags} |
94 |
|
|
|
95 |
|
|
|
96 |
|
|
%install |
97 |
|
|
rm -rf $RPM_BUILD_ROOT |
98 |
|
|
make install DESTDIR=$RPM_BUILD_ROOT |
99 |
|
|
iconv -f latin1 -t utf-8 < NEWS > NEWS.utf8; cp NEWS.utf8 NEWS |
100 |
|
|
find $RPM_BUILD_ROOT -name '*.la' -exec rm -f {} ';' |
101 |
|
|
find $RPM_BUILD_ROOT -name cpio.5 -exec rm -f {} ';' |
102 |
|
|
find $RPM_BUILD_ROOT -name mtree.5 -exec rm -f {} ';' |
103 |
|
|
find $RPM_BUILD_ROOT -name tar.5 -exec rm -f {} ';' |
104 |
|
|
|
105 |
|
|
|
106 |
|
|
%check |
107 |
|
|
make libarchive_test %{?_smp_mflags} |
108 |
|
|
./libarchive_test -vvv -d |
109 |
|
|
|
110 |
|
|
|
111 |
|
|
%clean |
112 |
|
|
rm -rf $RPM_BUILD_ROOT |
113 |
|
|
|
114 |
|
|
|
115 |
|
|
%post -p /sbin/ldconfig |
116 |
|
|
|
117 |
|
|
%postun -p /sbin/ldconfig |
118 |
|
|
|
119 |
|
|
|
120 |
|
|
%files |
121 |
|
|
%defattr(-,root,root,-) |
122 |
|
|
%doc COPYING README NEWS |
123 |
|
|
%{_libdir}/*.so.* |
124 |
|
|
|
125 |
|
|
|
126 |
|
|
%files devel |
127 |
|
|
%defattr(-,root,root,-) |
128 |
|
|
%doc |
129 |
|
|
%{_includedir}/* |
130 |
|
|
%{_mandir}/*/* |
131 |
|
|
%{_libdir}/*.so |
132 |
|
|
%{_libdir}/pkgconfig/* |
133 |
|
|
|
134 |
|
|
|
135 |
|
|
%changelog |
136 |
|
|
* Fri Aug 12 2016 Petr Kubat <pkubat@redhat.com> - 2.8.3-7 |
137 |
|
|
- Fixes variation of CVE-2016-5418: Hard links could include ".." in their path. |
138 |
|
|
|
139 |
|
|
* Thu Aug 11 2016 Petr Kubat <pkubat@redhat.com> - 2.8.3-6 |
140 |
|
|
- Fixes CVE-2016-5418: Archive Entry with type 1 (hardlink) causes file overwrite (#1365774) |
141 |
|
|
|
142 |
|
|
* Mon Jul 18 2016 Pavel Raiskup <praiskup@redhat.com> - 2.8.3-5 |
143 |
|
|
- enable testsuite |
144 |
|
|
- CVE batch in summer 2016 |
145 |
|
|
|
146 |
|
|
* Fri Feb 3 2012 Tomas Bzatek <tbzatek@redhat.com> - 2.8.3-4 |
147 |
|
|
- Updated CVE-2011-1777 fix (#783375) |
148 |
|
|
|
149 |
|
|
* Mon Oct 3 2011 Tomas Bzatek <tbzatek@redhat.com> - 2.8.3-3 |
150 |
|
|
- Security fixes (CVE-2011-1777, CVE-2011-1778) (#739940) |
151 |
|
|
|
152 |
|
|
* Fri Jun 25 2010 Tomas Bzatek <tbzatek@redhat.com> - 2.8.3-2 |
153 |
|
|
- Fix ISO9660 reader data type mismatches (#597243) |
154 |
|
|
|
155 |
|
|
* Wed May 26 2010 Tomas Bzatek <tbzatek@redhat.com> - 2.8.3-1 |
156 |
|
|
- Update to 2.8.3 |
157 |
|
|
|
158 |
|
|
* Mon May 17 2010 Tomas Bzatek <tbzatek@redhat.com> - 2.8.0-2 |
159 |
|
|
- Cleanup for package review |
160 |
|
|
|
161 |
|
|
* Fri Feb 5 2010 Tomas Bzatek <tbzatek@redhat.com> - 2.8.0-1 |
162 |
|
|
- Update to 2.8.0 |
163 |
|
|
|
164 |
|
|
* Wed Jan 6 2010 Tomas Bzatek <tbzatek@redhat.com> - 2.7.902a-1 |
165 |
|
|
- Update to 2.7.902a |
166 |
|
|
|
167 |
|
|
* Fri Aug 21 2009 Tomas Mraz <tmraz@redhat.com> - 2.7.1-2 |
168 |
|
|
- rebuilt with new openssl |
169 |
|
|
|
170 |
|
|
* Fri Aug 7 2009 Tomas Bzatek <tbzatek@redhat.com> 2.7.1-1 |
171 |
|
|
- Update to 2.7.1 |
172 |
|
|
- Drop deprecated lzma dependency, libxz handles both formats |
173 |
|
|
|
174 |
|
|
* Mon Jul 27 2009 Tomas Bzatek <tbzatek@redhat.com> 2.7.0-3 |
175 |
|
|
- Enable XZ compression format |
176 |
|
|
|
177 |
|
|
* Fri Jul 24 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.7.0-2 |
178 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild |
179 |
|
|
|
180 |
|
|
* Tue May 12 2009 Tomas Bzatek <tbzatek@redhat.com> 2.7.0-1 |
181 |
|
|
- Update to 2.7.0 |
182 |
|
|
|
183 |
|
|
* Fri Mar 6 2009 Tomas Bzatek <tbzatek@redhat.com> 2.6.2-1 |
184 |
|
|
- Update to 2.6.2 |
185 |
|
|
|
186 |
|
|
* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.6.1-2 |
187 |
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild |
188 |
|
|
|
189 |
|
|
* Mon Feb 16 2009 Tomas Bzatek <tbzatek@redhat.com> 2.6.1-1 |
190 |
|
|
- Update to 2.6.1 |
191 |
|
|
|
192 |
|
|
* Thu Jan 8 2009 Tomas Bzatek <tbzatek@redhat.com> 2.6.0-1 |
193 |
|
|
- Update to 2.6.0 |
194 |
|
|
|
195 |
|
|
* Mon Dec 15 2008 Tomas Bzatek <tbzatek@redhat.com> 2.5.904a-1 |
196 |
|
|
- Update to 2.5.904a |
197 |
|
|
|
198 |
|
|
* Tue Dec 9 2008 Tomas Bzatek <tbzatek@redhat.com> 2.5.903a-2 |
199 |
|
|
- Add LZMA support |
200 |
|
|
|
201 |
|
|
* Mon Dec 8 2008 Tomas Bzatek <tbzatek@redhat.com> 2.5.903a-1 |
202 |
|
|
- Update to 2.5.903a |
203 |
|
|
|
204 |
|
|
* Tue Jul 22 2008 Tomas Bzatek <tbzatek@redhat.com> 2.5.5-1 |
205 |
|
|
- Update to 2.5.5 |
206 |
|
|
|
207 |
|
|
* Wed Apr 2 2008 Tomas Bzatek <tbzatek@redhat.com> 2.4.17-1 |
208 |
|
|
- Update to 2.4.17 |
209 |
|
|
|
210 |
|
|
* Wed Mar 18 2008 Tomas Bzatek <tbzatek@redhat.com> 2.4.14-1 |
211 |
|
|
- Initial packaging |