[arch-commits] Commit in unzip/trunk (PKGBUILD)

Jonas Witschel diabonas at gemini.archlinux.org
Wed Aug 10 11:43:46 UTC 2022 

    Date: Wednesday, August 10, 2022 @ 11:43:46
  Author: diabonas
Revision: 452511

upgpkg: unzip 6.0-19: fix OOB write security issues CVE-2022-0529 and CVE-2022-0530

Modified:
  unzip/trunk/PKGBUILD

----------+
 PKGBUILD |   10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

Modified: PKGBUILD
===================================================================
--- PKGBUILD	2022-08-10 07:45:51 UTC (rev 452510)
+++ PKGBUILD	2022-08-10 11:43:46 UTC (rev 452511)
@@ -6,12 +6,13 @@
 pkgname=unzip
 pkgver=6.0
 _pkgver=${pkgver/./}
-pkgrel=18
+pkgrel=19
 pkgdesc='For extracting and viewing files in .zip archives'
 url='http://infozip.sourceforge.net/UnZip.html'
 arch=('x86_64')
 license=('custom')
 depends=('bzip2' 'bash')
+options=('debug')
 source=("https://downloads.sourceforge.net/infozip/${pkgname}${_pkgver}.tar.gz"
         'https://src.fedoraproject.org/rpms/unzip/raw/rawhide/f/unzip-6.0-exec-shield.patch'
         'https://src.fedoraproject.org/rpms/unzip/raw/rawhide/f/unzip-6.0-close.patch'
@@ -41,7 +42,8 @@
         'https://src.fedoraproject.org/rpms/unzip/raw/rawhide/f/unzip-zipbomb-part5.patch'
         'https://src.fedoraproject.org/rpms/unzip/raw/rawhide/f/unzip-zipbomb-part6.patch'
         'https://src.fedoraproject.org/rpms/unzip/raw/rawhide/f/unzip-zipbomb-switch.patch'
-        'unzip-6.0_CVE-2021-4217.patch')
+        'unzip-6.0_CVE-2021-4217.patch'
+        'https://sources.debian.org/data/main/u/unzip/6.0-27/debian/patches/28-cve-2022-0529-and-cve-2022-0530.patch')
 sha512sums=('0694e403ebc57b37218e00ec1a406cae5cc9c5b52b6798e0d4590840b6cdbf9ddc0d9471f67af783e960f8fa2e620394d51384257dca23d06bcd90224a80ce5d'
             '3c7f525687b198aaa8547a8b30e744f7f184943624279d5c70170d5b9bb3f0c0f27f3e69bc808dd0d144690107bc76a10c06e160bf99c54fd5684246208b7cff'
             '8423e32bbc1e1fe9366118bd10795bb8307f5a9a1afba1f0f62e46443d198b7f3cfcc41dedf57f31830f4c7328c9f5ae573982ca8664822b5f2a2ecdbc389df9'
@@ -71,7 +73,8 @@
             '48875d7e08d669637e26a7e800f8b2a3812d477e6f249c8d4962fdf93ba6d346f5b22b83d82cb65317b506dff84c441d42c0fe7d1c042a065619d39bdf25fdd0'
             'a788d57fe0fb9ae6106381d2a8fe566aa35bb037012139dc7c283fe5eb316056835dffa9ea9778c15a5b39e50a75329a135a0dffdfc6a53d575ef2013b1d478a'
             'd86aba51101fdbe855c35f034d33d65a79c5c707d01de4709619f5d1316185777048b72c293f9506186677bcecf54a808e106ad59bb36835ef80615641c85d63'
-            'fc1f4246b6974c3c554aed1127f512f0b2ac8fa13aff7c3b54877411e15856522e35633c45b2326d96b5094a9106d697a0883c1879af2c616d9dd51180b6887b')
+            'fc1f4246b6974c3c554aed1127f512f0b2ac8fa13aff7c3b54877411e15856522e35633c45b2326d96b5094a9106d697a0883c1879af2c616d9dd51180b6887b'
+            'bff17d21399a2189ed497602a735eab55746a17e6d414d843068c0374ae09d8d5958c00731e9f35dbfbce6ec9f802cb83d1e7436363392a36a2e34b724d0d71c')
 
 prepare() {
 	cd "${srcdir}/${pkgname}${_pkgver}"
@@ -105,6 +108,7 @@
 	patch -p1 -i ../unzip-zipbomb-part6.patch
 	patch -p1 -i ../unzip-zipbomb-switch.patch
 	patch -p1 -i ../unzip-6.0_CVE-2021-4217.patch # FS#73542
+	patch -p1 -F3 -i ../28-cve-2022-0529-and-cve-2022-0530.patch
 }
 
 build() {

More information about the arch-commits mailing list