diff --git a/CVE-2019-12450.patch b/CVE-2019-12450.patch deleted file mode 100644 index 6c514e1..0000000 --- a/CVE-2019-12450.patch +++ /dev/null @@ -1,53 +0,0 @@ -From d8f8f4d637ce43f8699ba94c9b7648beda0ca174 Mon Sep 17 00:00:00 2001 -From: Ondrej Holy -Date: Thu, 23 May 2019 10:41:53 +0200 -Subject: [PATCH] gfile: Limit access to files when copying - -file_copy_fallback creates new files with default permissions and -set the correct permissions after the operation is finished. This -might cause that the files can be accessible by more users during -the operation than expected. Use G_FILE_CREATE_PRIVATE for the new -files to limit access to those files. ---- - gio/gfile.c | 11 ++++++----- - 1 file changed, 6 insertions(+), 5 deletions(-) - -diff --git a/gio/gfile.c b/gio/gfile.c -index 24b136d80..74b58047c 100644 ---- a/gio/gfile.c -+++ b/gio/gfile.c -@@ -3284,12 +3284,12 @@ file_copy_fallback (GFile *source, - out = (GOutputStream*)_g_local_file_output_stream_replace (_g_local_file_get_filename (G_LOCAL_FILE (destination)), - FALSE, NULL, - flags & G_FILE_COPY_BACKUP, -- G_FILE_CREATE_REPLACE_DESTINATION, -- info, -+ G_FILE_CREATE_REPLACE_DESTINATION | -+ G_FILE_CREATE_PRIVATE, info, - cancellable, error); - else - out = (GOutputStream*)_g_local_file_output_stream_create (_g_local_file_get_filename (G_LOCAL_FILE (destination)), -- FALSE, 0, info, -+ FALSE, G_FILE_CREATE_PRIVATE, info, - cancellable, error); - } - else if (flags & G_FILE_COPY_OVERWRITE) -@@ -3297,12 +3297,13 @@ file_copy_fallback (GFile *source, - out = (GOutputStream *)g_file_replace (destination, - NULL, - flags & G_FILE_COPY_BACKUP, -- G_FILE_CREATE_REPLACE_DESTINATION, -+ G_FILE_CREATE_REPLACE_DESTINATION | -+ G_FILE_CREATE_PRIVATE, - cancellable, error); - } - else - { -- out = (GOutputStream *)g_file_create (destination, 0, cancellable, error); -+ out = (GOutputStream *)g_file_create (destination, G_FILE_CREATE_PRIVATE, cancellable, error); - } - - if (!out) --- -2.21.0 - diff --git a/glib2.spec b/glib2.spec index b3add67..8acc8d8 100644 --- a/glib2.spec +++ b/glib2.spec @@ -1,15 +1,13 @@ %global _changelog_trimtime %(date +%s -d "1 year ago") Name: glib2 -Version: 2.61.1 -Release: 3%{?dist} +Version: 2.61.2 +Release: 1%{?dist} Summary: A library of handy utility functions License: LGPLv2+ URL: http://www.gtk.org Source0: http://download.gnome.org/sources/glib/2.61/glib-%{version}.tar.xz -# https://bugzilla.redhat.com/show_bug.cgi?id=1719142 -Patch0: CVE-2019-12450.patch BuildRequires: chrpath BuildRequires: gcc @@ -218,6 +216,9 @@ glib-compile-schemas %{_datadir}/glib-2.0/schemas &> /dev/null || : %{_datadir}/installed-tests %changelog +* Mon Aug 12 2019 Kalev Lember - 2.61.2-1 +- Update to 2.61.2 + * Thu Jul 25 2019 Fedora Release Engineering - 2.61.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_31_Mass_Rebuild diff --git a/sources b/sources index 9088753..5991a3a 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (glib-2.61.1.tar.xz) = 1b90ed0337d6c6c030f537872dc0628166fce66057b1619bd4bb16da649723f7f6676a2618b609b4bac290449adab4215320c5e273b26125de84b4681f1bf4db +SHA512 (glib-2.61.2.tar.xz) = 8ae0f6bc4cc867e9977370c7840012076908def6d752906b204fd10f29c657b2642a7a57a06d520e008d6b3858198a143763693b88ae54ee6dd90c612e4634bc