New upstream version 1.3.20.

Fixes CVE-2021-3504 missing bounds check in hivex_open.

.gitignore

@@ -1,9 +1,4 @@
 /.build-*
 /clog
 /hivex-*.tar.gz
-/hivex-1.3.14.tar.gz.sig
-/hivex-1.3.15.tar.gz.sig
-/hivex-1.3.16.tar.gz.sig
-/hivex-1.3.17.tar.gz.sig
-/hivex-1.3.18.tar.gz.sig
-/hivex-1.3.19.tar.gz.sig
+/hivex-*.tar.gz.sig

hivex.spec

@@ -9,8 +9,8 @@
 %global verify_tarball_signature 1
 
 Name:           hivex
-Version:        1.3.19
-Release:        4%{?dist}.1
+Version:        1.3.20
+Release:        1%{?dist}
 Summary:        Read and write Windows Registry binary hive files
 
 License:        LGPLv2
@@ -62,6 +62,7 @@ BuildRequires:  libxml2-devel
 %if 0%{verify_tarball_signature}
 BuildRequires: gnupg2
 %endif
+BuildRequires: make
 
 # https://fedoraproject.org/wiki/Packaging:No_Bundled_Libraries#Packages_granted_exceptions
 Provides:      bundled(gnulib)
@@ -109,6 +110,7 @@ Requires:       pkgconfig
 for %{name}.
 
 
+%if !0%{?rhel}
 %package static
 Summary:        Statically linked library for %{name}
 Requires:       %{name} = %{version}-%{release}
@@ -117,6 +119,7 @@ Requires:       %{name} = %{version}-%{release}
 %description static
 %{name}-static contains the statically linked library
 for %{name}.
+%endif
 
 
 %if %{with ocaml}
@@ -186,6 +189,9 @@ ruby-%{name} contains Ruby bindings for %{name}.
     PYTHON=%{__python3} \
 %if !%{with ocaml}
     --disable-ocaml \
+%endif
+%if 0%{?rhel}
+    --disable-static \
 %endif
     %{nil}
 make V=1 INSTALLDIRS=vendor %{?_smp_mflags}
@@ -209,8 +215,9 @@ rm $RPM_BUILD_ROOT%{python3_sitearch}/libhivexmod.la
 
 
 %check
-# Disable some gnulib tests which fail on Arm and POWER (2020-07):
-for f in test-float test-perror2 test-strerror_r; do
+# Disable some gnulib tests which fail on Arm and POWER and S/390
+# (2020-07, 2020-12):
+for f in test-float test-perror2 test-pthread_sigmask1 test-strerror_r; do
     pushd gnulib/tests
     make $f
     rm -f $f
@@ -248,9 +255,11 @@ fi
 %{_libdir}/pkgconfig/hivex.pc
 
 
+%if !0%{?rhel}
 %files static
 %doc LICENSE
 %{_libdir}/libhivex.a
+%endif
 
 
 %if %{with ocaml}
@@ -293,6 +302,10 @@ fi
 
 
 %changelog
+* Mon May  3 2021 Richard W.M. Jones <rjones@redhat.com> - 1.3.20-1
+- New upstream version 1.3.20.
+- Fixes CVE-2021-3504 missing bounds check in hivex_open.
+
 * Wed Sep 02 2020 Richard W.M. Jones <rjones@redhat.com> - 1.3.19-4.1
 - Bump release and rebuild.
 

sources

@@ -1,2 +1,2 @@
-SHA512 (hivex-1.3.19.tar.gz) = dc271349c6efa7b55ba144617e57fe4e7ce855ec1f4ef9f84ee86eeefd3a34cb6b26078786e1568f3008b922a31b758ff2c2734e599b67e0e210aa72e9f41177
-SHA512 (hivex-1.3.19.tar.gz.sig) = 8b9c8c9b6cef47036df70f79219ed91d592dbc8ae1de8f1378cdd0f18ab043fb2d16c6907d05240cb3d015360c721c922df198bd383e79e54b83c218c8c565fb
+SHA512 (hivex-1.3.20.tar.gz) = 366e84c2a13ff53c70036df60db6e2b469cd06e3405761df73c47978b4fa0245246a1ea912aa5852b1272221d55c6c100b40b00e4c9a6f5668d12ff7f93c787a
+SHA512 (hivex-1.3.20.tar.gz.sig) = 965d14010ac31893eb51bb095b1ef6b983750031a34117329c8d2aa20f7f54a828e45c60992b0b823bea35d20fc4cfc77e4a9d2f99965cd3a84216a8059c013d