[Lunar-commits] <moonbase-core> bash, bash_static: security fix for CVE-2014-7169

Stefan Wold ratler at lunar-linux.org
Fri Sep 26 08:50:54 CEST 2014 

commit dc1877b2c79f18f227e89d03f541b33e46a2ca21
Author: Stefan Wold <ratler at lunar-linux.org>
Date: Fri, 26 Sep 2014 08:50:24 +0200
URL: https://github.com/lunar-linux/moonbase-core/commit/dc1877b2c79f18f227e89d03f541b33e46a2ca21

bash, bash_static: security fix for CVE-2014-7169
---
  shells/bash/DETAILS          | +4/-1     
  shells/bash/PRE_BUILD        | +4/-1     
  shells/bash_static/DETAILS   | +4/-1     
  shells/bash_static/PRE_BUILD | +4/-1     
  4 files changed, 16 insertions(+), 4 deletions(-)

--- a/shells/bash/DETAILS
+++ b/shells/bash/DETAILS
@@ -2,15 +2,18 @@
          VERSION=4.3
           SOURCE=$MODULE-$VERSION.tar.gz
          SOURCE2=bash43-patches-001-025.patch
+         SOURCE3=bash43-eol-pushback.patch
    SOURCE_URL[0]=$GNU_URL/$MODULE
    SOURCE_URL[1]=ftp://ftp.gnu.org/pub/gnu/$MODULE
    SOURCE_URL[2]=ftp://ftp.cwru.edu/pub/$MODULE
      SOURCE2_URL=$PATCH_URL
+     SOURCE3_URL=$PATCH_URL
       SOURCE_VFY=sha1:45ac3c5727e7262334f4dfadecdf601b39434e84
      SOURCE2_VFY=sha256:b44ed93696f544e01de2a427acb51130bbe389588d07908e69681f16fed0afc1
+     SOURCE3_VFY=sha256:1878fd6dbbe576dea53a28a6aae2a89d22ef016a3b7eeab4a91d9e2a0b4325b6
         WEB_SITE=http://www.gnu.org/software/bash
          ENTERED=20010922
-         UPDATED=20140924
+         UPDATED=20140926
            SHORT="A shell of the GNU operating system"
 
 cat << EOF
--- a/shells/bash/PRE_BUILD
+++ b/shells/bash/PRE_BUILD
@@ -1,2 +1,5 @@
 default_pre_build &&
-patch_it $SOURCE2 0
+patch_it $SOURCE2 0 &&
+
+# Fix for CVE-2014-7169
+patch_it $SOURCE3 0
--- a/shells/bash_static/DETAILS
+++ b/shells/bash_static/DETAILS
@@ -2,16 +2,19 @@
          VERSION=4.3
           SOURCE=bash-$VERSION.tar.gz
          SOURCE2=bash43-patches-001-025.patch
+         SOURCE3=bash43-eol-pushback.patch
 SOURCE_DIRECTORY=$BUILD_DIRECTORY/bash-$VERSION
    SOURCE_URL[0]=$GNU_URL/$MODULE
    SOURCE_URL[1]=ftp://ftp.gnu.org/pub/gnu/$MODULE
    SOURCE_URL[2]=ftp://ftp.cwru.edu/pub/$MODULE
      SOURCE2_URL=$PATCH_URL
+     SOURCE3_URL=$PATCH_URL
       SOURCE_VFY=sha1:45ac3c5727e7262334f4dfadecdf601b39434e84
      SOURCE2_VFY=sha256:b44ed93696f544e01de2a427acb51130bbe389588d07908e69681f16fed0afc1
+     SOURCE3_VFY=sha256:1878fd6dbbe576dea53a28a6aae2a89d22ef016a3b7eeab4a91d9e2a0b4325b6
         WEB_SITE=http://www.gnu.org/software/bash
          ENTERED=20020615
-         UPDATED=20140924
+         UPDATED=20140926
            SHORT="static bash build for rescue purposes"
 
 cat << EOF
--- a/shells/bash_static/PRE_BUILD
+++ b/shells/bash_static/PRE_BUILD
@@ -1,2 +1,5 @@
 default_pre_build &&
-patch_it $SOURCE2 0
+patch_it $SOURCE2 0 &&
+
+# Fix for CVE-2014-7169
+patch_it $SOURCE3 0

More information about the Lunar-commits mailing list