diff options
Diffstat (limited to 'cgit.spec')
| -rw-r--r-- | cgit.spec | 9 |
1 files changed, 8 insertions, 1 deletions
@@ -17,7 +17,7 @@ Name: cgit Version: 1.1 -Release: 10%{?dist} +Release: 11%{?dist} Summary: A fast web interface for git Group: Development/Tools @@ -28,6 +28,9 @@ Source1: https://www.kernel.org/pub/software/scm/git//git-%{gitver}.tar.x Source2: cgitrc Source3: README.SELinux +# https://git.zx2c4.com/cgit/commit/?id=53efaf30b +Patch0: 0001-clone-fix-directory-traversal.patch + # Security guys might try to repoquery for this. Provides: bundled(git) = %gitver @@ -60,6 +63,7 @@ Cgit is a fast web interface for git. It uses caching to increase performance. %prep %setup -q -a 1 +%patch0 -p1 %if %{syntax_highlight} %patch1 -p1 %endif @@ -153,6 +157,9 @@ install -d -m0755 %{buildroot}%{cachedir} %changelog +* Fri Aug 03 2018 Todd Zullinger <tmz@pobox.com> - 1.1-11 +- Fix directory traversal vulnerability + * Sun Feb 18 2018 Todd Zullinger <tmz@pobox.com> - 1.1-10 - Use https for source URLs - Remove el5 conditionals |