Skip to content

Commit

Permalink
rpm: further fixes to CVE-2021-3521
Browse files Browse the repository at this point in the history
- CVE-2021-3521.patch taken from
  https://git.rockylinux.org/staging/rpms/rpm/-/blob/r9/SOURCES/rpm-4.16.1.3-validate-and-require-subkey-binding-sigs.patch

- And add rpm upstream commit
  rpm-software-management/rpm@daeddb0
  This is based on suggestion
  rpm-software-management/rpm#1795 (comment)

Change-Id: If30dfde170dcb2ee6496b632feb0597f2f7b13a1
Signed-off-by: Shreenidhi Shedi <[email protected]>
Reviewed-on: http://photon-jenkins.eng.vmware.com:8082/17875
Reviewed-by: Tapas Kundu <[email protected]>
Tested-by: Tapas Kundu <[email protected]>
  • Loading branch information
sshedi authored and tapakund committed Sep 21, 2022
1 parent 50e81da commit 9173d8c
Show file tree
Hide file tree
Showing 5 changed files with 257 additions and 532 deletions.
59 changes: 0 additions & 59 deletions SPECS/rpm/CVE-2021-3521-1.patch

This file was deleted.

52 changes: 0 additions & 52 deletions SPECS/rpm/CVE-2021-3521-2.patch

This file was deleted.

Loading

0 comments on commit 9173d8c

Please sign in to comment.