Compare commits

...

No commits in common. 'c9' and 'c8' have entirely different histories.
c9 ... c8

2
.gitignore vendored

@ -1 +1 @@
SOURCES/libmicrohttpd-0.9.72.tar.gz
SOURCES/libmicrohttpd-0.9.59.tar.gz

@ -1 +1 @@
82bbb87c1cae15a0819b1899acb02006c4d24dce SOURCES/libmicrohttpd-0.9.72.tar.gz
468bf0cf6f27bba36049533c6c7cdc958f4122cb SOURCES/libmicrohttpd-0.9.59.tar.gz

@ -1,15 +1,13 @@
diff --git a/src/microhttpd/postprocessor.c b/src/microhttpd/postprocessor.c
index 99074215..c00605c7 100644
index 8b710ea..427d4c6 100644
--- a/src/microhttpd/postprocessor.c
+++ b/src/microhttpd/postprocessor.c
@@ -83,7 +83,7 @@ MHD_create_post_processor (struct MHD_Connection *connection,
return NULL; /* failed to determine boundary */
boundary += MHD_STATICSTR_LEN_ ("boundary=");
blen = strlen (boundary);
- if ( (blen == 0) ||
+ if ( (blen < 2) ||
(blen * 2 + 2 > buffer_size) )
return NULL; /* (will be) out of memory or invalid boundary */
if ( (boundary[0] == '"') &&
--
cgit v1.2.3
@@ -310,7 +310,7 @@ MHD_create_post_processor (struct MHD_Connection *connection,
return NULL; /* failed to determine boundary */
boundary += MHD_STATICSTR_LEN_ ("boundary=");
blen = strlen (boundary);
- if ( (blen == 0) ||
+ if ( (blen < 2) ||
(blen * 2 + 2 > buffer_size) )
return NULL; /* (will be) out of memory or invalid boundary */
if ( (boundary[0] == '"') &&

@ -1,11 +1,11 @@
--- libmicrohttpd-0.9.67/src/microhttpd/daemon.c.orig 2019-10-18 08:14:27.591969227 +0200
+++ libmicrohttpd-0.9.67/src/microhttpd/daemon.c 2019-10-18 08:15:20.306963570 +0200
@@ -5779,7 +5779,7 @@
--- libmicrohttpd-0.9.53/src/microhttpd/daemon.c.orig 2017-04-12 08:31:18.243540128 +0200
+++ libmicrohttpd-0.9.53/src/microhttpd/daemon.c 2017-04-12 08:34:19.851158371 +0200
@@ -5415,7 +5415,7 @@
if (0 != (*pflags & MHD_USE_TLS))
{
gnutls_priority_init (&daemon->priority_cache,
- "NORMAL",
+ "@SYSTEM",
NULL);
}
{
gnutls_priority_init (&daemon->priority_cache,
- "NORMAL",
+ "@SYSTEM",
NULL);
}
#endif /* HTTPS_SUPPORT */

@ -1,6 +1,6 @@
Name: libmicrohttpd
Version: 0.9.72
Release: 5%{?dist}
Version: 0.9.59
Release: 3%{?dist}
Epoch: 1
Summary: Lightweight library for embedding a webserver in applications
License: LGPLv2+
@ -13,7 +13,6 @@ BuildRequires: autoconf, automake, libtool, gettext-devel
BuildRequires: texinfo
BuildRequires: gnutls-devel
BuildRequires: doxygen graphviz
BuildRequires: make
Requires(post): info
Requires(preun): info
@ -33,6 +32,7 @@ Key features that distinguish libmicrohttpd from other projects are:
%package devel
Summary: Development files for libmicrohttpd
Group: Development/Libraries
Requires: %{name} = %{epoch}:%{version}-%{release}
%description devel
@ -40,6 +40,7 @@ Development files for libmicrohttpd
%package doc
Summary: Documentation for libmicrohttpd
Group: Documentation
Requires: %{name} = %{epoch}:%{version}-%{release}
BuildArch: noarch
@ -61,7 +62,7 @@ make -C doc/doxygen full
%check
%ifnarch s390x
%make_build check
make check %{?_smp_mflags}
%endif
%install
@ -88,6 +89,9 @@ if [ $1 = 0 ] ; then
/sbin/install-info --delete %{_infodir}/libmicrohttpd-tutorial.info.gz %{_infodir}/dir || :
fi
%post -p /sbin/ldconfig
%postun -p /sbin/ldconfig
%files
%doc README
%license COPYING
@ -100,77 +104,18 @@ fi
%files doc
%{_mandir}/man3/libmicrohttpd.3.gz
%{_infodir}/libmicrohttpd.info.*
%{_infodir}/libmicrohttpd-tutorial.info.*
%{_infodir}/libmicrohttpd.info.gz
%{_infodir}/libmicrohttpd-tutorial.info.gz
%{_infodir}/libmicrohttpd_performance_data.png.gz
%doc AUTHORS README ChangeLog
%doc examples
%doc html
%changelog
* Tue Mar 28 2023 Pavel Šimovec <psimovec@redhat.com> - 1:0.9.72-5
* Thu Apr 06 2023 Pavel Šimovec <psimovec@redhat.com> - 1:0.9.59-3
- Add cve-2023-27371.patch
Related: rhbz#2174640
CVE-2023-27371
* Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 1:0.9.72-4
- Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
Related: rhbz#1991688
* Fri Apr 16 2021 Mohan Boddu <mboddu@redhat.com> - 1:0.9.72-3
- Rebuilt for RHEL 9 BETA on Apr 15th 2021. Related: rhbz#1947937
* Tue Jan 26 2021 Fedora Release Engineering <releng@fedoraproject.org> - 1:0.9.72-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_34_Mass_Rebuild
* Tue Dec 29 2020 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.72-1
- Update to 1:0.9.72
* Tue Jul 28 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:0.9.71-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Mon Jun 29 2020 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.71-1
- Update to 1:0.9.71
* Sun Feb 09 2020 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.70-1
- Update to 1:0.9.70
* Wed Jan 29 2020 Fedora Release Engineering <releng@fedoraproject.org> - 1:0.9.69-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_32_Mass_Rebuild
* Mon Dec 16 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.69-1
- Update to 1:0.9.69
* Mon Oct 28 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.68-1
- Update to 1:0.9.68
* Fri Oct 18 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.67-1
- Update to 1:0.9.67
* Sat Aug 17 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.66-1
- Update to 1:0.9.66
* Fri Jul 05 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.65-1
- Update to 1:0.9.65
* Wed Apr 24 2019 Björn Esser <besser82@fedoraproject.org> - 1:0.9.64-1
- Update to 1:0.9.64
* Wed Apr 24 2019 Björn Esser <besser82@fedoraproject.org> - 1:0.9.63-2
- Remove hardcoded gzip suffix from GNU info pages
* Mon Feb 11 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.63-1
- Update to 1:0.9.63
* Thu Jan 24 2019 Martin Gansser <martinkg@fedoraproject.org> - 1:0.9.62-1
- Update to 1:0.9.62
* Fri Dec 07 2018 Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl> - 1:0.9.61-1
- Update to latest version
- Drop obsolete scriptlets
* Fri Jul 13 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1:0.9.59-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
Related: rhbz#2174639
CVE-2023-27371
* Wed Feb 07 2018 Fedora Release Engineering <releng@fedoraproject.org> - 1:0.9.59-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild

Loading…
Cancel
Save