rpms/roundup/devel bts518768-disable-editcsv.patch, NONE, 1.1 roundup.spec, 1.16, 1.17
Paul P Komkoff Jr
stingray at fedoraproject.org
Mon Mar 9 17:08:08 UTC 2009
- Previous message (by thread): rpms/sssd/devel import.log, NONE, 1.1 sssd.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): rpms/nautilus-gdu/devel nautilus-gdu.spec,1.5,1.6
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
Author: stingray
Update of /cvs/extras/rpms/roundup/devel
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv9082
Modified Files:
roundup.spec
Added Files:
bts518768-disable-editcsv.patch
Log Message:
Fix bz#489355
bts518768-disable-editcsv.patch:
--- NEW FILE bts518768-disable-editcsv.patch ---
--- a/roundup/cgi/actions.py
+++ b/roundup/cgi/actions.py
@@ -277,6 +277,8 @@
removed lines are retired.
"""
+ self.client.error_message.append('EditCSVAction has been disabled for security reasons')
+ return
cl = self.db.classes[self.classname]
idlessprops = cl.getprops(protected=0).keys()
idlessprops.sort()
Index: roundup.spec
===================================================================
RCS file: /cvs/extras/rpms/roundup/devel/roundup.spec,v
retrieving revision 1.16
retrieving revision 1.17
diff -u -r1.16 -r1.17
--- roundup.spec 25 Feb 2009 20:22:02 -0000 1.16
+++ roundup.spec 9 Mar 2009 17:07:38 -0000 1.17
@@ -3,7 +3,7 @@
Summary: Simple and flexible issue-tracking system
Name: roundup
Version: 1.4.6
-Release: 3%{dist}
+Release: 4%{dist}
License: MIT
Group: Applications/Engineering
Source: http://pypi.python.org/packages/source/r/%{name}/%{name}-%{version}.tar.gz
@@ -11,6 +11,7 @@
Source2: roundup
Source3: README.Fedora
Patch0: roundup-setup.patch
+Patch1: bts518768-disable-editcsv.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
BuildArch: noarch
BuildRequires: python-devel
@@ -29,6 +30,7 @@
%prep
%setup -q
%patch0 -p1
+%patch1 -p1
mv locale/ru.po locale/ru-koi8.po
iconv -f koi8-r -t utf-8 locale/ru-koi8.po | sed -e 's|Content-Type: text/plain; charset=koi8-r|Content-Type: text/plain; charset=utf-8|' > locale/ru.po
@@ -81,6 +83,9 @@
%doc README.Fedora COPYING.txt
%changelog
+* Mon Mar 9 2009 Paul P. Komkoff Jr <i at stingr.net> - 1.4.6-4
+- security bug bz#489355
+
* Wed Feb 25 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.4.6-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
- Previous message (by thread): rpms/sssd/devel import.log, NONE, 1.1 sssd.spec, NONE, 1.1 .cvsignore, 1.1, 1.2 sources, 1.1, 1.2
- Next message (by thread): rpms/nautilus-gdu/devel nautilus-gdu.spec,1.5,1.6
- Messages sorted by:
[ date ]
[ thread ]
[ subject ]
[ author ]
More information about the fedora-extras-commits
mailing list