diff options
| author |   Eric Hameleers <alien@slackware.com> | 2014-10-24 10:33:02 +0000 |
|---|---|---|
| committer | Eric Hameleers <alien@slackware.com> | 2014-10-24 10:33:02 +0000 |
| commit | e1268d3b2ceca145f70eab86e22392612e5d42b8 (patch) | |
| tree | 9084701c424447cae28f4e9de49e1cc5a739c5cf /14.1 | |
| parent | 3a6d61058d891674024021289a2620a76075ad1a (diff) | |
| download | multilib-e1268d3b2ceca145f70eab86e22392612e5d42b8.tar.gz multilib-e1268d3b2ceca145f70eab86e22392612e5d42b8.tar.xz | |
Update the 14.1 package with a slew of CVE fixes.
Diffstat (limited to '14.1')
| -rwxr-xr-x | 14.1/glibc/glibc-multilib.SlackBuild | 18 |
1 files changed, 17 insertions, 1 deletions
diff --git a/14.1/glibc/glibc-multilib.SlackBuild b/14.1/glibc/glibc-multilib.SlackBuild index 7e9d043..bc8775e 100755 --- a/14.1/glibc/glibc-multilib.SlackBuild +++ b/14.1/glibc/glibc-multilib.SlackBuild @@ -30,7 +30,7 @@ VERSION=${VERSION:-2.17} CHECKOUT=${CHECKOUT:-""} -BUILD=${BUILD:-7alien} +BUILD=${BUILD:-8alien} ## Included in glibc now: ## glibc-libidn version @@ -214,6 +214,21 @@ apply_patches() { # Patch integer overflows in pvalloc, valloc, and # posix_memalign/memalign/aligned_alloc (CVE-2013-4332). zcat $CWD/glibc.CVE-2013-4332.diff.gz | patch -p1 --verbose || exit 1 + # Security patches: + patch -p1 --verbose < $CWD/glibc-2.17_strcoll-change.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2012-4424.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2012-4412.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2013-4237.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2013-4788.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2013-4458.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2014-4043.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2014-0475.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2014-5119.diff || exit 1 + patch -p1 --verbose < $CWD/glibc-2.17_CVE-2014-6040.diff || exit 1 + # Security hardening patch from Florian Weimer: + patch -p1 --verbose < $CWD/glibc-2.17_hardening.diff || exit 1 + # Bugfix patch for optimization in gcc-4.8+: + patch -p1 --verbose < $CWD/glibc-2.17_gcc48-unsafe-optim.diff || exit 1 if [ $BOOTSTRP -eq 1 ] ; then # Multilib - Disable check for forced unwind (Patch from eglibc) since we # do not have a multilib glibc yet to link to; @@ -372,6 +387,7 @@ sed -i "s,/etc/zoneinfo,/zoneinfo,g" Makefile make make install mkdir -p $PKG/usr/share/zoneinfo/{posix,right} +cd etc cp -a zoneinfo/* $PKG/usr/share/zoneinfo cp -a zoneinfo-posix/* $PKG/usr/share/zoneinfo/posix cp -a zoneinfo-leaps/* $PKG/usr/share/zoneinfo/right |