[notify] krb5: security fix for 1.10.2 (bumped to release 2)

See security advisory (CVE-2012-1015): http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2012-001.txt
2012-08-01 12:51:24 +02:00 · 2012-08-01 12:51:24 +02:00 · 7d2cc5fa85
commit 7d2cc5fa85
parent 710b26e043
2 changed files with 9 additions and 3 deletions
--- a/krb5/.md5sum
+++ b/krb5/.md5sum
@ -1 +1,2 @@
+bfd5b471e30af10b9a3ce5dcb9608b84  2012-001-patch.txt
 ddacb6ad7399681ad1506f435a2683b6  krb5-1.10.2-signed.tar
--- a/krb5/Pkgfile
+++ b/krb5/Pkgfile
@ -6,8 +6,9 @@

 name=krb5
 version=1.10.2
-release=1
-source=(http://web.mit.edu/kerberos/dist/$name/${version%.*}/$name-$version-signed.tar)
+release=2
+source=(http://web.mit.edu/kerberos/dist/$name/${version%.*}/$name-$version-signed.tar \
+        http://web.mit.edu/kerberos/advisories/2012-001-patch.txt)

 build() {
 	tar -xf $SRC/$name-$version-signed.tar
@ -15,10 +16,14 @@ build() {

    	cd $name-$version/src

+        sed -e '/KRB5ROOT=/ s/\/local//' -i util/ac_check_krb5.m4
+        patch -p2 -i $SRC/2012-001-patch.txt
+
 	export CFLAGS="-I/usr/include/et"
 	./configure --prefix=/usr \
 		    --with-system-et \
-                    --with-system-ss
+                    --with-system-ss \
+                    --without-system-verto

 	make
    	make DESTDIR=$PKG install