New upstream version 1.3.20.

Fixes CVE-2021-3504 missing bounds check in hivex_open.
2021-05-03 11:28:30 +01:00 · 2021-05-03 11:28:30 +01:00 · 06fcd50956
parent 706ccad716
commit 06fcd50956
3 changed files with 9 additions and 10 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1,9 +1,4 @@
 /.build-*
 /clog
 /hivex-*.tar.gz
-/hivex-1.3.14.tar.gz.sig
-/hivex-1.3.15.tar.gz.sig
-/hivex-1.3.16.tar.gz.sig
-/hivex-1.3.17.tar.gz.sig
-/hivex-1.3.18.tar.gz.sig
-/hivex-1.3.19.tar.gz.sig
+/hivex-*.tar.gz.sig
--- a/hivex.spec
+++ b/hivex.spec
@ -9,8 +9,8 @@
 %global verify_tarball_signature 1

 Name:           hivex
-Version:        1.3.19
-Release:        10%{?dist}
+Version:        1.3.20
+Release:        1%{?dist}
 Summary:        Read and write Windows Registry binary hive files

 License:        LGPLv2
@ -302,6 +302,10 @@ fi


 %changelog
+* Mon May  3 2021 Richard W.M. Jones <rjones@redhat.com> - 1.3.20-1
+- New upstream version 1.3.20.
+- Fixes CVE-2021-3504 missing bounds check in hivex_open.
+
 * Tue Mar 30 2021 Richard W.M. Jones <rjones@redhat.com> - 1.3.19-10
 - Bump and rebuild for ELN.

--- a/4
+++ b/4
@ -1,2 +1,2 @@
-SHA512 (hivex-1.3.19.tar.gz) = dc271349c6efa7b55ba144617e57fe4e7ce855ec1f4ef9f84ee86eeefd3a34cb6b26078786e1568f3008b922a31b758ff2c2734e599b67e0e210aa72e9f41177
-SHA512 (hivex-1.3.19.tar.gz.sig) = 8b9c8c9b6cef47036df70f79219ed91d592dbc8ae1de8f1378cdd0f18ab043fb2d16c6907d05240cb3d015360c721c922df198bd383e79e54b83c218c8c565fb
+SHA512 (hivex-1.3.20.tar.gz) = 366e84c2a13ff53c70036df60db6e2b469cd06e3405761df73c47978b4fa0245246a1ea912aa5852b1272221d55c6c100b40b00e4c9a6f5668d12ff7f93c787a
+SHA512 (hivex-1.3.20.tar.gz.sig) = 965d14010ac31893eb51bb095b1ef6b983750031a34117329c8d2aa20f7f54a828e45c60992b0b823bea35d20fc4cfc77e4a9d2f99965cd3a84216a8059c013d