Author: glen Date: Wed Sep 20 23:14:11 2006 GMT Module: SPECS Tag: HEAD ---- Log message: - check-files cleanup, rel 4
---- Files affected: SPECS: unzip.spec (1.50 -> 1.51) ---- Diffs: ================================================================ Index: SPECS/unzip.spec diff -u SPECS/unzip.spec:1.50 SPECS/unzip.spec:1.51 --- SPECS/unzip.spec:1.50 Wed Sep 20 14:52:01 2006 +++ SPECS/unzip.spec Thu Sep 21 01:14:06 2006 @@ -11,7 +11,7 @@ Summary(uk): ňĎÚĐÁËĎ×Ő×ÁŢ ĆÁĘĚŚ× .zip Name: unzip Version: 5.52 -Release: 3 +Release: 4 License: distributable Group: Applications/Archiving Source0: ftp://ftp.info-zip.org/pub/infozip/src/%{name}552.tar.gz @@ -121,6 +121,7 @@ MANDIR=$RPM_BUILD_ROOT%{_mandir}/man1 bzip2 -dc %{SOURCE1} | tar xf - -C $RPM_BUILD_ROOT%{_mandir} +rm -f $RPM_BUILD_ROOT%{_mandir}/README.unzip-non-english-man-pages %clean rm -rf $RPM_BUILD_ROOT @@ -139,6 +140,9 @@ All persons listed below can be reached at <cvs_login>@pld-linux.org $Log$ +Revision 1.51 2006/09/20 23:14:06 glen +- check-files cleanup, rel 4 + Revision 1.50 2006/09/20 12:52:01 areq - enable large files support @@ -166,7 +170,6 @@ Revision 1.42 2004/06/08 08:06:04 pluto - updated to 5.51 (security release). - - fix for two directory-traversal security holes. - fix for central/local directory mismatch security hole. - fix for symlink-traversal security hole. @@ -184,10 +187,10 @@ Revision 1.38 2003/08/27 06:58:28 misi3k - rel 10 - Security fix to fix -Note: -The fix which was implemented in rel 9 may -not have protected against all methods of -exploiting this vulnerability. + Note: + The fix which was implemented in rel 9 may + not have protected against all methods of + exploiting this vulnerability. Revision 1.37 2003/07/02 22:41:16 blues - cosmetics @@ -195,14 +198,14 @@ Revision 1.36 2003/07/02 14:09:01 misi3k - rel 9 - added security patch1 (patch from RH) -CVE: CAN-2003-0282 -BUG(bugtraq): -A vulnerabilitiy in unzip version 5.50 and earlier allows attackers to -overwrite arbitrary files during archive extraction by placing invalid -(non-printable) characters between two "." characters. These non-printable -characters are filtered, resulting in a ".." sequence. The Common -Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name -CAN-2003-0282 to this issue. + CVE: CAN-2003-0282 + BUG(bugtraq): + A vulnerabilitiy in unzip version 5.50 and earlier allows attackers to + overwrite arbitrary files during archive extraction by placing invalid + (non-printable) characters between two "." characters. These non-printable + characters are filtered, resulting in a ".." sequence. The Common + Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name + CAN-2003-0282 to this issue. Revision 1.35 2003/06/02 15:48:33 ankry - added/restored non-english-man-pages URL @@ -217,7 +220,7 @@ - bump release to 8 (for allow upgrade from RH). Revision 1.31 2002/11/29 22:46:55 ankry -- massive attack: new %%doc +- massive attack: new %doc Revision 1.30 2002/10/19 12:44:54 dzimi - remove %patch1 @@ -249,7 +252,7 @@ Group field using gettext). Revision 1.23 2002/01/18 02:15:15 kloczek -perl -pi -e "s/[EMAIL PROTECTED]/[EMAIL PROTECTED]/" +- perl -pi -e "s/[EMAIL PROTECTED]/[EMAIL PROTECTED]/" Revision 1.22 2001/11/21 22:30:35 kloczek - merge translations from Kondara and Conectiva. @@ -262,13 +265,13 @@ - release 2 Revision 1.19 2001/04/30 16:05:31 kloczek -- added using %%{rpmcflags} macro. +- added using %{rpmcflags} macro. Revision 1.18 2001/01/28 11:43:47 misiek -5.42. Crypt in main tarball. debug ready. STB. +- 5.42. Crypt in main tarball. debug ready. STB. Revision 1.17 2000/06/09 07:24:01 kloczek -- added using %%{__make} macro. +- added using %{__make} macro. Revision 1.16 2000/04/05 09:06:51 zagrodzki - changed %prep (does not use .zip source anymore) @@ -283,7 +286,7 @@ - translated kloczkish into english Revision 1.13 2000/02/02 12:32:17 kravietz -repacked zcrypt28.zip to .tar.bz2 +- repacked zcrypt28.zip to .tar.bz2 Revision 1.12 1999/11/16 15:44:36 kravietz - added InfoZip/Unzip encryption @@ -293,33 +296,3 @@ Revision 1.10 1999/07/12 23:06:16 kloczek - added using CVS keywords in %changelog (for automating them). - -* Thu Feb 10 1999 Michał Kuratczyk <[EMAIL PROTECTED]> - [5.40-2] -- added Group(pl) -- added gzipping documentation -- fixed pl translation - -* Fri Dec 11 1998 Tomasz Kłoczko <[EMAIL PROTECTED]> - [5.40-1] -- removed -c %setup option, -- added gzipping man pages. - -* Tue Oct 13 1998 Marcin Korzonek <[EMAIL PROTECTED]> - [5.31-4] -- added pl translation, -- added using $RPM_OPT_FLAGS during compile, -- allow building from non root account, -- removed COPYING and INSTALL from docs. - -* Mon Apr 27 1998 Prospector System <[EMAIL PROTECTED]> -- translations modified for de, fr, tr - -* Tue Oct 21 1997 Erik Troan <[EMAIL PROTECTED]> -- builds on non i386 platforms - -* Mon Oct 20 1997 Otto Hammersmith <[EMAIL PROTECTED]> -- updated the version - -* Thu Jul 10 1997 Erik Troan <[EMAIL PROTECTED]> -- built against glibc ================================================================ ---- CVS-web: http://cvs.pld-linux.org/SPECS/unzip.spec?r1=1.50&r2=1.51&f=u _______________________________________________ pld-cvs-commit mailing list [email protected] http://lists.pld-linux.org/mailman/listinfo/pld-cvs-commit
