rpms/javasqlite/F-11 javasqlite.spec,1.12,1.13
Ville Skyttä
scop at fedoraproject.org
Tue Apr 21 19:52:04 UTC 2009
- Previous message (by thread): rpms/powwow/devel .cvsignore, NONE, 1.1 Makefile, NONE, 1.1 sources, NONE, 1.1
- Next message (by thread): rpms/javasqlite/devel .cvsignore, 1.6, 1.7 javasqlite.spec, 1.12, 1.13 sources, 1.6, 1.7 javasqlite-20090409-check-features.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: scop
Update of /cvs/pkgs/rpms/javasqlite/F-11
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv8129
Modified Files:
javasqlite.spec
Log Message:
* Mon Apr 20 2009 Ville Skyttä <ville.skytta at iki.fi> - 20090409-3
- Disable extension loading due to security concerns.
Index: javasqlite.spec
===================================================================
RCS file: /cvs/pkgs/rpms/javasqlite/F-11/javasqlite.spec,v
retrieving revision 1.12
retrieving revision 1.13
diff -u -r1.12 -r1.13
--- javasqlite.spec 14 Apr 2009 11:20:27 -0000 1.12
+++ javasqlite.spec 21 Apr 2009 19:51:33 -0000 1.13
@@ -1,6 +1,6 @@
Name: javasqlite
Version: 20090409
-Release: 2%{?dist}
+Release: 3%{?dist}
Summary: SQLite Java Wrapper/JDBC Driver
Group: Development/Libraries
@@ -9,11 +9,12 @@
Source0: http://www.ch-werner.de/javasqlite/%{name}-%{version}.tar.gz
# jnipath: Fedora specific, no need to send upstream.
Patch0: %{name}-20081006-jnipath.patch
-# Sent upstream 20090412
+# Applied upstream in 20090420 release
Patch1: %{name}-20090409-check-features.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
-BuildRequires: sqlite-devel
+# >= 3.4 for zeroblob stuff in %%check's test3
+BuildRequires: sqlite-devel >= 3.4
BuildRequires: java-devel = 1:1.6.0
BuildRequires: java-devel = 1.5.0
BuildRequires: java-javadoc
@@ -47,8 +48,9 @@
%build
origpath="$PATH"
+# Note that --enable-load-extension has security concerns, it enables library
+# users to load arbitrary native code to the JVM bypassing its SecurityManager
common_flags="
- --enable-load-extension
--with-jardir=%{_libdir}/%{name}
--libdir=%{_libdir}/%{name}
"
@@ -104,6 +106,9 @@
%changelog
+* Mon Apr 20 2009 Ville Skyttä <ville.skytta at iki.fi> - 20090409-3
+- Disable extension loading due to security concerns.
+
* Tue Apr 14 2009 Ville Skyttä <ville.skytta at iki.fi> - 20090409-2
- Don't use parallel make, Java build doesn't appear parallel clean.
- Previous message (by thread): rpms/powwow/devel .cvsignore, NONE, 1.1 Makefile, NONE, 1.1 sources, NONE, 1.1
- Next message (by thread): rpms/javasqlite/devel .cvsignore, 1.6, 1.7 javasqlite.spec, 1.12, 1.13 sources, 1.6, 1.7 javasqlite-20090409-check-features.patch, 1.1, NONE
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list