source: projects/specs/branches/6/r/rsync/rsync-vl.spec @ 11393

Revision 11393, 8.3 KB checked in by iwamoto, 6 years ago (diff)

rsync: fix CVE-2017-16548, CVE-2017-17433, CVE-2017-17434.

Line 
1Summary:     A program for synchronizing files over a network.
2Summary(ja): ネットワーク越しにファイルを同期させるプログラム
3Name: rsync
4Version: 3.0.8
5Release: 3%{_dist_release}
6Group: Applications/Internet
7License: GPLv3+
8URL: http://rsync.samba.org
9Source: ftp://rsync.samba.org/pub/rsync/rsync-%{version}.tar.gz
10Source1: ftp://rsync.samba.org/pub/rsync/rsync-patches-%{version}.tar.gz
11Source2: rsync.xinetd
12
13Patch0: ssh-6-option.diff
14# security fixes
15Patch1000: CVE-2014-9512-0.diff
16Patch1001: CVE-2014-9512-1.diff
17Patch1002: CVE-2014-9512-2.diff
18Patch1010: 0001-Enforce-trailing-0-when-receiving-xattr-name-values_3.0.8.patch
19Patch1011: 0002-Check-fname-in-recv_files-sooner_3.0.8.patch
20Patch1012: 0003-Sanitize-xname-in-read_ndx_and_attrs.patch
21Patch1013: 0004-Check-daemon-filter-against-fnamecmp-in-recv_files_3.0.8.patch
22
23Prefix: %{_prefix}
24BuildRoot: %{_tmppath}/%{name}-%{version}-root
25
26BuildRequires: libacl-devel libattr-devel popt-devel
27
28Vendor: Project Vine
29Distribution: Vine Linux
30
31%description
32Rsync uses a quick and reliable algorithm to very quickly bring
33remote and host files into sync.  Rsync is fast because it just
34sends the differences in the files over the network (instead of
35sending the complete files). Rsync is often used as a very powerful
36mirroring process or just as a more capable replacement for the
37rcp command.  A technical report which describes the rsync algorithm
38is included in this package.
39
40Install rsync if you need a powerful mirroring program.
41
42%description -l ja
43rsync は高速で信頼性の高いアルゴリズムを使い,遠隔ホスト上のファイルと
44高速に同期させることが出来ます.rsync が高速に動作するのは,ネットワーク
45上に流れるデータがファイルの差分だけだからです (ファイル全体をやりとり
46するのではなく).rsync は強力なミラリングツールとしても,rcp コマンドの
47代替としても使うことが出来ます.rsync のアルゴリズムに関する技術情報は
48このパッケージに同梱されています.
49
50強力なミラープログラムが必要ならば rsync をインストールして下さい.
51
52
53%prep
54%setup -q -b 1
55
56# backword compatibility fix patches
57patch -p1 -i patches/acls.diff
58patch -p1 -i patches/xattrs.diff
59
60#Enable --copy-devices parameter
61patch -p1 -i patches/copy-devices.diff
62
63%patch0 -p1
64# security fixes
65%patch1000 -p1 -b .CVE-2014-9512-0
66%patch1001 -p1 -b .CVE-2014-9512-1
67%patch1002 -p1 -b .CVE-2014-9512-2
68
69%patch1010 -p1
70%patch1011 -p1
71%patch1012 -p1
72%patch1013 -p1
73
74%build
75autoreconf
76%configure
77make %{?_smp_mflags} CCOPTFLAGS="$RPM_OPT_FLAGS"
78
79
80%install
81rm -rf $RPM_BUILD_ROOT
82
83%makeinstall
84mkdir -p $RPM_BUILD_ROOT/etc/xinetd.d
85install -m 644 %{SOURCE2} $RPM_BUILD_ROOT/etc/xinetd.d/rsync
86
87
88%clean
89rm -rf $RPM_BUILD_ROOT
90
91
92%files
93%defattr(-,root,root)
94%doc COPYING README tech_report.tex
95%doc NEWS OLDNEWS TODO
96/etc/xinetd.d/rsync
97%{_prefix}/bin/rsync
98%{_mandir}/man1/rsync.1*
99%{_mandir}/man5/rsyncd.conf.5*
100
101
102%changelog
103* Sat Jan 13 2018 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 3.0.8-3
104- add patch1010-13 for fix CVE-CVE-2017-16548,17433,17434.
105  (Thank to debian team)
106
107* Fri Jul 29 2016 Tomohiro "Tomo-p" KATO <tomop@teamgedoh.net> 3.0.8-2
108- added Patch1000-1002 to fix CVE-2014-9512.
109
110* Sun May 22 2011 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 3.0.8-1
111- new upstream release with security fixes
112- drop patch100 (is included in new release)
113
114* Sat Apr  2 2011 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 3.0.7-2
115- add Patch100 for fix CVE-2011-1097 (filelist)
116- change specfile name (-vl)
117
118* Sat Jan 2 2010 Toshiharu Kudoh <toshi.kd2@gmail.com> 3.0.7-1
119- new upstream release
120
121* Thu Oct 8 2009 Toshiharu Kudoh <toshi.kd2@gmail.com> 3.0.6-1
122- new upstream release
123- changed License tag
124- added Patch0 from Debian
125- added BuildRequires: libattr-devel popt-devel
126- added patch -p1 -i patches/copy-devices.diff in %setup
127  (to enable --copy-devices parameter)
128
129* Sun Sep 27 2009 Toshiharu Kudoh <toshi.kd2@gmail.com> 3.0.4-2
130- added BuildRequires: libacl-devel (to enable ACL)
131
132* Tue Sep 09 2008 Daisuke SUZUKI <daisuke@linux.or.jp> 3.0.4-1
133- new upstream release
134- add rsync-patches (replaces patch1,2)
135  use xattr.patch and acls.patch for backword compatibility
136
137* Sun Apr 13 2008 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 3.0.2-1
138- new upstream release
139- add patch1,2 for backward compatibility from fc
140- new versioning policy
141
142* Tue Aug 21 2007 MATSUBAYASHI Kohji <shaolin@vinelinux.org> 2.6.9-0vl2
143- add Patch10 for CVE-2007-4091
144  (rsync "f_name()" Function Directory Name Handling Off-By-One Vulnerability)
145
146* Fri Jan 10 2007 Satoshi IWAMOTO <satoshi.iwamoto@nifty.ne.jp> 2.6.9-0vl1
147- new upstream release
148- add Vendor/Distribution tag
149
150* Mon Mar 28 2005 Daisuke SUZUKI <daisuke@linux.or.jp> 2.6.4-0vl1
151- new upstream release
152
153* Sat Oct 30 2004 Daisuke SUZUKI <daisuke@linux.or.jp> 2.6.3-0vl1
154- new upstream release
155- drop obsolete patch1 which is merged in upstream.
156
157* Tue Aug 17 2004 SATO Masakiyo <info@pocomoco.net> 2.6.2-0vl2
158- added patch1 for a path-sanitizing bug
159
160* Wed May  5 2004 Daisuke SUZUKI <daisuke@linux.or.jp> 2.6.2-0vl1
161- new upstream release
162
163* Fri Apr 30 2004 Daisuke SUZUKI <daisuke@linux.or.jp> 2.6.1-0vl1
164- new upstream release
165
166* Fri Dec 05 2003 Daisuke SUZUKI <daisuke@linux.or.jp> 2.5.7-0vl1
167- new upstream release
168- security fix
169
170* Mon Apr 21 2003 IWAI Masaharu <iwai@alib.jp> 2.5.6-0vl1
171- new upstream release
172
173* Sun Sep 29 2002 Daisuke SUZUKI <daisuke@linux.or.jp> 2.5.5-0vl1
174- new upstream release
175
176* Wed Mar 13 2002 Toru Sagami <sagami@vinelinux.org> 2.5.4-0vl1
177- updated to 2.5.4, which contains additional fix for zlib double-free bug.
178
179* Tue Mar 12 2002 IWAI Masaharu <iwaim@cc.mbn.or.jp> 2.5.3-0vl1
180- upstream release
181
182* Sat Jan 26 2002 Toru Sagami <sagami@vinelinux.org> 2.5.2-0vl1
183- SECURITY FIXES:
184    * Signedness security patch from Sebastian Krahmer
185- added more docs
186
187* Sun Jan 06 2002 Toru Sagami <sagami@vinelinux.org>
188- 2.5.1-0vl1
189
190* Sun Dec  2 2001 Yoichi Imai <yoichi@silver-forest.com>
191- 2.5.0-0vl1
192- update to 2.5.0
193- edit maxdel.patch for 2.5.0
194
195* Tue Jan 09 2001 MATSUBAYASHI 'Shaolin' Kohji <shaolin@rhythmaning.org>
196- 2.4.6-2vl1
197- based on 2.4.6-2 from Rawhide
198- added Japanese summary and description
199
200* Sat Sep 30 2000 Florian La Roche <Florian.LaRoche@redhat.de>
201- add xinetd configuration
202
203* Tue Sep 26 2000 Bernhard Rosenkraenzer <bero@redhat.com>
204- 2.4.6
205
206* Mon Jul 31 2000 Bill Nottingham <notting@redhat.com>
207- update to 2.4.4 - fixes yet another problem with rsh transport
208
209* Wed Jul 12 2000 Prospector <bugzilla@redhat.com>
210- automatic rebuild
211
212* Sat Jun 10 2000 Bill Nottingham <notting@redhat.com>
213- rebuild in new build env.
214
215* Mon Apr 10 2000 Bill Nottingham <notting@redhat.com>
216- update to 2.4.3
217
218* Tue Apr  4 2000 Bill Nottingham <notting@redhat.com>
219- update to 2.4.2
220
221* Tue Mar  7 2000 Bill Nottingham <notting@redhat.com>
222- fix maxdelete behavior so it isn't sent to older servers.
223
224* Mon Jan 31 2000 Jeff Johnson <jbj@redhat.com>
225- update to 2.4.1.
226
227* Fri Dec 17 1999 Bill Nottingham <notting@redhat.com>
228- update to 2.3.2
229
230* Sat Jun 12 1999 Jeff Johnson <jbj@redhat.com>
231- add "max. delete" patch to limit damage when server is hosed.
232
233* Wed Apr 07 1999 Bill Nottingham <notting@redhat.com>
234- update to 2.3.1.
235
236* Sun Mar 21 1999 Cristian Gafton <gafton@redhat.com>
237- auto rebuild in the new build environment (release 2)
238
239* Tue Mar 16 1999 Jeff Johnson <jbj@redhat.com>
240- update to 2.3.0.
241
242* Sat Mar 13 1999 Jeff Johnson <jbj@redhat.com>
243- update to 2.3.0 beta.
244
245* Fri Dec 18 1998 Bill Nottingham <notting@redhat.com>
246- update to 2.2.1
247
248* Thu Sep 10 1998 Jeff Johnson <jbj@redhat.com>
249- updated to 2.1.1
250
251* Mon Aug 17 1998 Erik Troan <ewt@redhat.com>
252- updated to 2.1.0
253
254* Thu Aug 06 1998 Erik Troan <ewt@redhat.com>
255- buildrooted and attr-rophied
256- removed tech-report.ps; the .tex should be good enough
257
258* Mon Aug 25 1997 John A. Martin <jam@jamux.com>
259- Built 1.6.3-2 after finding no rsync-1.6.3-1.src.rpm although there
260  was an ftp://ftp.redhat.com/pub/contrib/alpha/rsync-1.6.3-1.alpha.rpm
261  showing no packager nor signature but giving
262  "Source RPM: rsync-1.6.3-1.src.rpm".
263- Changes from 1.6.2-1 packaging: added '$RPM_OPT_FLAGS' to make, strip
264  to '%build', removed '%prefix'.
265
266* Thu Apr 10 1997 Michael De La Rue <miked@ed.ac.uk>
267- rsync-1.6.2-1 packaged.  (This entry by jam to credit Michael for the
268  previous package(s).)
Note: See TracBrowser for help on using the repository browser.