Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3

- Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load
- Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer
- Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix
This commit is contained in:
Elio Maldonado 2012-08-27 16:19:41 -07:00
parent 99a740d2ee
commit ab9d670692
3 changed files with 10 additions and 8 deletions

2
.gitignore vendored
View File

@ -5,4 +5,4 @@ blank-cert9.db
blank-key4.db blank-key4.db
PayPalEE.cert PayPalEE.cert
/nss-3.13.5-stripped.tar.bz2 /nss-3.13.5-stripped.tar.bz2
/nss-pem-20120402.tar.bz2 /nss-pem-20120811.tar.bz2

View File

@ -7,7 +7,7 @@
Summary: Network Security Services Summary: Network Security Services
Name: nss Name: nss
Version: 3.13.5 Version: 3.13.5
Release: 7%{?dist} Release: 8%{?dist}
License: MPLv1.1 or GPLv2+ or LGPLv2+ License: MPLv1.1 or GPLv2+ or LGPLv2+
URL: http://www.mozilla.org/projects/security/pki/nss/ URL: http://www.mozilla.org/projects/security/pki/nss/
Group: System Environment/Libraries Group: System Environment/Libraries
@ -52,7 +52,7 @@ Source7: blank-key4.db
Source8: system-pkcs11.txt Source8: system-pkcs11.txt
Source9: setup-nsssysinit.sh Source9: setup-nsssysinit.sh
Source10: PayPalEE.cert Source10: PayPalEE.cert
Source12: %{name}-pem-20120402.tar.bz2 Source12: %{name}-pem-20120811.tar.bz2
Patch2: add-relro-linker-option.patch Patch2: add-relro-linker-option.patch
Patch3: renegotiate-transitional.patch Patch3: renegotiate-transitional.patch
@ -69,9 +69,6 @@ Patch29: nss-ssl-cbc-random-iv-off-by-default.patch
# upstream: https://bugzilla.mozilla.org/show_bug.cgi?id=734492 # upstream: https://bugzilla.mozilla.org/show_bug.cgi?id=734492
Patch30: bz784672-protect-against-calls-before-nss_init.patch Patch30: bz784672-protect-against-calls-before-nss_init.patch
# Fix gcc 4.7 c++ issue in secmodt.h
# http://gcc.gnu.org/bugzilla/show_bug.cgi?id=50917
Patch31: nss-fix-gcc47-secmodt.patch
# upstream: https://bugzilla.mozilla.org/show_bug.cgi?id=734484 # upstream: https://bugzilla.mozilla.org/show_bug.cgi?id=734484
Patch32: Bug-800674-Unable-to-contact-LDAP-Server-during-winsync.patch Patch32: Bug-800674-Unable-to-contact-LDAP-Server-during-winsync.patch
@ -164,7 +161,6 @@ low level services.
# activate only if requested for this branch # activate only if requested for this branch
#%patch29 -p0 -b .770682 #%patch29 -p0 -b .770682
%patch30 -p0 -b .784672 %patch30 -p0 -b .784672
%patch31 -p0 -b .gcc47
%patch32 -p0 -b .800674 %patch32 -p0 -b .800674
%patch33 -p0 -b .800682 %patch33 -p0 -b .800682
%patch34 -p1 -b .772628 %patch34 -p1 -b .772628
@ -598,6 +594,12 @@ rm -rf $RPM_BUILD_ROOT/%{_includedir}/nss3/nsslowhash.h
%changelog %changelog
* Mon Aug 27 2012 Elio Maldonado <emaldona@redhat.com> - 3.13.5-8
- Rebase pem sources to fedora-hosted upstream to pick up two fixes from rhel-6.3
- Resolves: rhbz#847460 - Fix invalid read and free on invalid cert load
- Resolves: rhbz#847462 - PEM module may attempt to free uninitialized pointer
- Remove unneeded fix gcc 4.7 c++ issue in secmodt.h that actually undoes the upstream fix
* Mon Aug 13 2012 Elio Maldonado <emaldona@redhat.com> - 3.13.5-7 * Mon Aug 13 2012 Elio Maldonado <emaldona@redhat.com> - 3.13.5-7
- Fix pluggable ecc support - Fix pluggable ecc support

View File

@ -4,5 +4,5 @@ a5ae49867124ac75f029a9a33af31bad blank-cert8.db
691e663ccc07b7a1eaa6f088e03bf8e2 blank-cert9.db 691e663ccc07b7a1eaa6f088e03bf8e2 blank-cert9.db
2ec9e0606ba40fe65196545564b7cc2a blank-key4.db 2ec9e0606ba40fe65196545564b7cc2a blank-key4.db
bf47cecad861efa77d1488ad4a73cb5b PayPalEE.cert bf47cecad861efa77d1488ad4a73cb5b PayPalEE.cert
d19159b7f91b94afaf7fa78bba006c13 nss-pem-20120402.tar.bz2 2a06bf7b815d1a666cc3587b895506ce nss-pem-20120811.tar.bz2
658daa72d8a79589ba9e3712591939e9 nss-3.13.5-stripped.tar.bz2 658daa72d8a79589ba9e3712591939e9 nss-3.13.5-stripped.tar.bz2