Ignore:
Timestamp:
Nov 26, 2006, 1:13:32 PM (18 years ago)
Author:
Jim Gifford <clfs@…>
Branches:
clfs-1.2, clfs-2.1, clfs-3.0.0-systemd, clfs-3.0.0-sysvinit, master, systemd, sysvinit
Children:
3398827
Parents:
b778d70
Message:

Updated to Gzip 1.3.6

File:
1 edited

Legend:

Unmodified
Added
Removed

  • BOOK/final-system/common/gzip.xml

    rb778d70 r3cc6893  
    2626    <title>Installation of Gzip</title>
    2727
    28     <para os="p1">The following patch fixes two security vulnerabilities in Gzip:
    29     a path traversal bug when using the <option>-N</option> option
    30     (CAN-2005-1228), and a race condition in the file permission restore
    31     code (CAN-2005-0998):</para>
    32 
    33 <screen os="p2"><userinput>patch -Np1 -i ../&gzip-security_fix-patch;</userinput></screen>
    34 
    35     <para os="s1">The <command>gzexe</command> command calls <command>tail</command>
    36      with options that do not conform to newer versions of the POSIX standard,
    37      and therefore are not accepted by current versions of Coreutils. Fix this
    38      problem by issuing the following command:</para>
    39 
    40 <screen os="s2"><userinput>sed -i 's/tail +/tail -n +/' gzexe.in</userinput></screen>
    41 
    4228    <para os="a">Prepare Gzip for compilation:</para>
    4329
Note: See TracChangeset for help on using the changeset viewer.