From eee8b8ef4d2ee4cbf2d74bc7fd27c5d857e44ec5 Mon Sep 17 00:00:00 2001 From: Zach van Rijn Date: Fri, 11 Nov 2022 17:37:52 -0600 Subject: user/fastjar: add patch for CVE-2010-{0831,2322} and updater. fixes #136, #841. --- user/fastjar/APKBUILD | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) (limited to 'user/fastjar/APKBUILD') diff --git a/user/fastjar/APKBUILD b/user/fastjar/APKBUILD index 249f3a9b1..d07ee9162 100644 --- a/user/fastjar/APKBUILD +++ b/user/fastjar/APKBUILD @@ -2,7 +2,7 @@ # Maintainer: A. Wilcox pkgname=fastjar pkgver=0.98 -pkgrel=0 +pkgrel=1 pkgdesc="Java archiver tool, tuned for performance" url="https://savannah.nongnu.org/projects/fastjar/" arch="all" @@ -11,6 +11,8 @@ depends="" makedepends="zlib-dev" subpackages="$pkgname-doc" source="https://download.savannah.nongnu.org/releases/fastjar/fastjar-$pkgver.tar.gz + CVE-2010-0831,2322.patch + fix-update-mode.patch null-terminate.patch write-return.patch efficiency.patch @@ -42,6 +44,8 @@ package() { } sha512sums="c0f9fca7b58d6acd00b90a5184dbde9ba3ffc5bf4d69512743e450649a272baf1f6af98b15d79d2b53990eaf84ef402c986035e6b615a19e35ed424348143903 fastjar-0.98.tar.gz +7fcabd7a0ed23b1ce9f9a11e635ccf50f5403118cd979bdf4ff9a57358e8992cf122cedbdb5c671cb2782348457bedf589ca8aa2603267ce683c81f34f5370f5 CVE-2010-0831,2322.patch +9a9231e8b943e3602e78645cf50719d8e5ae7297981803af46e16edbed2e3c1a04273f08f445363e294373b90c13b75baefc6f5774e8c590724c5bc28354a93c fix-update-mode.patch 073c4fcc780588f146f2970f8718dbd70597ce46be8429b86d989056811bd331e209edf90e49d9ed8507e518fd7d7f57a76749f36eb308c12f9a74c7ab10beca null-terminate.patch 061c9ca0a13136b5eacef453822f71b8dc27f7501e2bbf5243785c147800f5793cffa6d1998dce0c12ce12fd892f3f0f03c06350e50621b5782dfb9a16c375ae write-return.patch -16584ebe2bc104c2489ee8ff0f0aca471dc0d95c79b199fc463d6bdd6fe99425d583948ebb7e9aab775dffbffdea3babbd824df5debdbd445f559e1334815583 efficiency.patch" +0e581282d67d6e995a87f5cbe8d92f77a36668c35bdf0a715da67b428aafbdf181a2e5b2528a6e6c2651dfd2fd1abb7dd64fa7cf290e294e114c5c49d036e860 efficiency.patch" -- cgit v1.2.3-70-g09d2