From 290362d91d840ad6feed5b59191a058f5e998d3c Mon Sep 17 00:00:00 2001 From: Eric Hameleers Date: Mon, 22 Dec 2014 14:56:40 +0100 Subject: KDE 4.6.5 for Slackware 13.37 (07jul2011) --- kde/kdelibs/doinst.sh.gz | Bin 0 -> 142 bytes kde/kdelibs/kdelibs.CVE-2011-1168.patch.gz | Bin 0 -> 400 bytes kde/kdelibs/kdelibs.SlackBuild | 106 ++++++++++++++++++++++ kde/kdelibs/kdelibs.docbook.patch.gz | Bin 0 -> 361 bytes kde/kdelibs/kdelibs.kssl.CVE-2011-3365.patch | 24 +++++ kde/kdelibs/kdesu-allow_NOPASS_in_suauth.patch.gz | Bin 0 -> 766 bytes kde/kdelibs/local.options | 2 + kde/kdelibs/slack-desc | 19 ++++ 8 files changed, 151 insertions(+) create mode 100644 kde/kdelibs/doinst.sh.gz create mode 100644 kde/kdelibs/kdelibs.CVE-2011-1168.patch.gz create mode 100755 kde/kdelibs/kdelibs.SlackBuild create mode 100644 kde/kdelibs/kdelibs.docbook.patch.gz create mode 100644 kde/kdelibs/kdelibs.kssl.CVE-2011-3365.patch create mode 100644 kde/kdelibs/kdesu-allow_NOPASS_in_suauth.patch.gz create mode 100644 kde/kdelibs/local.options create mode 100644 kde/kdelibs/slack-desc (limited to 'kde/kdelibs') diff --git a/kde/kdelibs/doinst.sh.gz b/kde/kdelibs/doinst.sh.gz new file mode 100644 index 0000000..738c276 Binary files /dev/null and b/kde/kdelibs/doinst.sh.gz differ diff --git a/kde/kdelibs/kdelibs.CVE-2011-1168.patch.gz b/kde/kdelibs/kdelibs.CVE-2011-1168.patch.gz new file mode 100644 index 0000000..285586a Binary files /dev/null and b/kde/kdelibs/kdelibs.CVE-2011-1168.patch.gz differ diff --git a/kde/kdelibs/kdelibs.SlackBuild b/kde/kdelibs/kdelibs.SlackBuild new file mode 100755 index 0000000..68a7dad --- /dev/null +++ b/kde/kdelibs/kdelibs.SlackBuild @@ -0,0 +1,106 @@ +#!/bin/sh + +# Copyright 2009, 2010, 2011 Patrick J. Volkerding, Sebeka, MN, USA +# All rights reserved. +# +# Redistribution and use of this script, with or without modification, is +# permitted provided that the following conditions are met: +# +# 1. Redistributions of this script must retain the above copyright +# notice, this list of conditions and the following disclaimer. +# +# THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED +# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF +# MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO +# EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, +# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, +# PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; +# OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, +# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR +# OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF +# ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + + +CWD=$(pwd) +TMP=${TMP:-/tmp} +PKG=$TMP/package-kdelibs + +# Set the config option variables if they are not already set: +if [ -r ../KDE.options ]; then + . ../KDE.options +fi + +# The global options may be overridden here (if needed): +if [ -r ./local.options ]; then + . ./local.options +fi + +# Avoid a version number in .la files: +if [ -d /usr/lib${LIBDIRSUFFIX}/qt ]; then + QTDIR=/usr/lib${LIBDIRSUFFIX}/qt +fi + +rm -rf $PKG +mkdir -p $PKG/usr +cd $TMP +echo "Building kdelibs-$VERSION..." +tar xvf $CWD/../src/kdelibs-$VERSION.tar.?z* || exit 1 +cd kdelibs-$VERSION + +# Slackware ships a different version of XML DTDs: +zcat $CWD/kdelibs.docbook.patch.gz | patch -p1 --verbose || exit 1 + +# Fix for CVE-2011-1168 (Konqueror XSS attack) - incorporated into KDE 4.6.2: +#zcat $CWD/kdelibs.CVE-2011-1168.patch.gz | patch -p1 --verbose || exit 1 + +# Fix for CVE-2011-3365 (QLable spoofing in Kssl), incorporated into KDE 4.7.2: +cat $CWD/kdelibs.kssl.CVE-2011-3365.patch | patch -p1 --verbose || exit 1 + +chown -R root:root . +find . \ + \( -perm 777 -o -perm 775 -o -perm 711 -o -perm 555 -o -perm 511 \) \ + -exec chmod 755 {} \; -o \ + \( -perm 666 -o -perm 664 -o -perm 600 -o -perm 444 -o -perm 440 -o -perm 400 \) \ + -exec chmod 644 {} \; + +mkdir -p build +cd build + cmake \ + $KDE_OPT_ARGS \ + -DWITH_HAL=OFF \ + -DCMAKE_C_FLAGS:STRING="$SLKCFLAGS" \ + -DCMAKE_CXX_FLAGS:STRING="$SLKCFLAGS" \ + -DCMAKE_BUILD_TYPE=Release \ + -DCMAKE_INSTALL_PREFIX=/usr \ + -DMAN_INSTALL_DIR=/usr/man \ + -DSYSCONF_INSTALL_DIR=/etc/kde \ + -DLIB_SUFFIX=${LIBDIRSUFFIX} \ + -DKDE_DISTRIBUTION_TEXT="volkerdi@slackware.com" \ + .. + make $NUMJOBS || make || exit 1 + make install DESTDIR=$PKG || exit 1 +cd - + +# Move the polkit dbus configuration files to the proper place: +mv $PKG/etc/kde/dbus-1 $PKG/etc/ + +if [ -d $PKG/usr/man ]; then + gzip -9 $PKG/usr/man/man?/* +fi + +mkdir -p $PKG/usr/doc/kdelibs-$VERSION +cp -a AUTHORS COPYING* DEBUG INSTALL README TODO \ + $PKG/usr/doc/kdelibs-$VERSION + +( cd $PKG + find . | xargs file | grep "executable" | grep ELF | cut -f 1 -d : | xargs strip --strip-unneeded 2> /dev/null || true + find . | xargs file | grep "shared object" | grep ELF | cut -f 1 -d : | xargs strip --strip-unneeded 2> /dev/null +) + +mkdir -p $PKG/install +cat $CWD/slack-desc > $PKG/install/slack-desc +zcat $CWD/doinst.sh.gz > $PKG/install/doinst.sh + +cd $PKG +/sbin/makepkg -l y -c n $TMP/kdelibs-$VERSION-$ARCH-$BUILD.txz + diff --git a/kde/kdelibs/kdelibs.docbook.patch.gz b/kde/kdelibs/kdelibs.docbook.patch.gz new file mode 100644 index 0000000..2de9a66 Binary files /dev/null and b/kde/kdelibs/kdelibs.docbook.patch.gz differ diff --git a/kde/kdelibs/kdelibs.kssl.CVE-2011-3365.patch b/kde/kdelibs/kdelibs.kssl.CVE-2011-3365.patch new file mode 100644 index 0000000..d05e44b --- /dev/null +++ b/kde/kdelibs/kdelibs.kssl.CVE-2011-3365.patch @@ -0,0 +1,24 @@ +commit 9ca2b26fc67c3f921e1943c1725fca623e395854 +Author: David Faure +Date: Thu Jun 30 23:43:45 2011 +0200 + + Security fix: don't interpret html tags + + Credits to Tim Brown for the find. + (cherry picked from commit bd70d4e589711fda9ab07738c46e37eee8376214) + +diff --git a/kio/kssl/ksslcertificatebox.cpp b/kio/kssl/ksslcertificatebox.cpp +index 4ffc613..094787a 100644 +--- a/kio/kssl/ksslcertificatebox.cpp ++++ b/kio/kssl/ksslcertificatebox.cpp +@@ -36,6 +36,10 @@ KSslCertificateBox::KSslCertificateBox(QWidget *parent) + d(new KSslCertificateBoxPrivate()) + { + d->ui.setupUi(this); ++ // No fooling us with html tags ++ Q_FOREACH(QLabel* label, qFindChildren(this)) { ++ label->setTextFormat(Qt::PlainText); ++ } + } + + diff --git a/kde/kdelibs/kdesu-allow_NOPASS_in_suauth.patch.gz b/kde/kdelibs/kdesu-allow_NOPASS_in_suauth.patch.gz new file mode 100644 index 0000000..0cf602c Binary files /dev/null and b/kde/kdelibs/kdesu-allow_NOPASS_in_suauth.patch.gz differ diff --git a/kde/kdelibs/local.options b/kde/kdelibs/local.options new file mode 100644 index 0000000..07d417a --- /dev/null +++ b/kde/kdelibs/local.options @@ -0,0 +1,2 @@ +BUILD=2 + diff --git a/kde/kdelibs/slack-desc b/kde/kdelibs/slack-desc new file mode 100644 index 0000000..a89ea3c --- /dev/null +++ b/kde/kdelibs/slack-desc @@ -0,0 +1,19 @@ +# HOW TO EDIT THIS FILE: +# The "handy ruler" below makes it easier to edit a package description. Line +# up the first '|' above the ':' following the base package name, and the '|' on +# the right side marks the last column you can put a character in. You must make +# exactly 11 lines for the formatting to be correct. It's also customary to +# leave one space after the ':'. + + |-----handy-ruler------------------------------------------------------| +kdelibs: kdelibs (KDE libraries) +kdelibs: +kdelibs: System libraries and other resources required for the KDE Platform. +kdelibs: +kdelibs: +kdelibs: +kdelibs: +kdelibs: +kdelibs: +kdelibs: +kdelibs: -- cgit v1.2.3