Resolves: CVE-2018-16842 - make the patch for CVE-2018-16842 apply properly

`git apply` fails silently unless `git init` is invoked first.
2018-11-15 15:32:09 +01:00 · 2018-11-15 15:32:09 +01:00 · 58646f29cc
commit 58646f29cc
parent a1bd4f84de
1 changed files with 5 additions and 1 deletions
--- a/curl.spec
+++ b/curl.spec
@ -1,7 +1,7 @@
 Summary: A utility for getting files from remote servers (FTP, HTTP, and others)
 Name: curl
 Version: 7.59.0
-Release: 8%{?dist}
+Release: 9%{?dist}
 License: MIT
 Source: https://curl.haxx.se/download/%{name}-%{version}.tar.xz

@ -202,6 +202,7 @@ be installed.
 %patch7 -p1
 %patch8 -p1
 %patch9 -p1
+git init
 git apply %{PATCH10}
 %patch11 -p1
 %patch12 -p1
@ -351,6 +352,9 @@ rm -f ${RPM_BUILD_ROOT}%{_libdir}/libcurl.la
 %{_libdir}/libcurl.so.4.[0-9].[0-9].minimal

 %changelog
+* Thu Nov 15 2018 Kamil Dudka <kdudka@redhat.com> - 7.59.0-9
+- make the patch for CVE-2018-16842 apply properly (CVE-2018-16842)
+
 * Thu Nov 01 2018 Kamil Dudka <kdudka@redhat.com> - 7.59.0-8
 - SASL password overflow via integer overflow (CVE-2018-16839)
 - fix use-after-free in handle close (CVE-2018-16840)