Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

patch-2.7.6-slfo.1.3.1 RPM for x86_64

From OpenSuSE Leap 16.0 for x86_64

Name: patch Distribution: SUSE Linux Framework One
Version: 2.7.6 Vendor: SUSE LLC <https://www.suse.com/>
Release: slfo.1.3.1 Build date: Tue Jul 30 14:19:54 2024
Group: Productivity/Text/Utilities Build host: reproducible
Size: 244816 Source RPM: patch-2.7.6-slfo.1.3.1.src.rpm
Packager: https://www.suse.com/
Url: http://ftp.gnu.org/gnu/patch/
Summary: GNU patch
The GNU patch program is used to apply diffs between original and
changed files (generated by the diff command) to the original files.

Provides

Requires

License

GPL-3.0-or-later

Changelog

* Tue Jul 30 2024 wolfgang.frisch@suse.com
  - CVE-2019-20633.patch: Fix double-free/OOB read in pch.c (bsc#1167721)
* Thu Feb 29 2024 dimstar@opensuse.org
  - Use %autosetup macro. Allows to eliminate the usage of deprecated
    %patchN.
* Tue May 24 2022 coolo@suse.com
  - Do not link unversioned file by URL
  - Replace group keyring not intended for release checking with
    (expired since 2018) public key of Andreas
* Tue May 10 2022 jdelvare@suse.de
  - fix-swapping-fake-lines-in-pch_swap.patch: Fix swapping fake
    lines in pch_swap. This bug was causing a double free leading to
    a crash (boo#1080985 CVE-2018-6952).
  - abort-when-cleaning-up-fails.patch: Abort when cleaning up fails.
    This bug could cause an infinite loop when a patch wouldn't
    apply, leading to a segmentation fault (boo#1111572).
  - dont-follow-symlinks-unless-asked.patch: Don't follow symlinks
    unless --follow-symlinks is given. This increases the security
    against malicious patches (boo#1142041 CVE-2019-13636).
  - pass-the-correct-stat-to-backup-files.patch: Pass the correct
    stat to backup files. This bug would occasionally cause backup
    files to be missing when all hunks failed to apply (boo#1198106).
* Wed Sep 29 2021 dimstar@opensuse.org
  - Do not query %{verbose} to add V=1 or not: verbose changed
    semantics between rpm versions and there is currently no variant
    supporting rpm < 4.17 and rpm >= 4.17.
* Wed May 09 2018 jdelvare@suse.de
  - ed-style-07-dont-leak-tmp-file.patch,
    ed-style-08-dont-leak-tmp-file-multi.patch: Fix temporary file
    leak when applying ed-style patches (bsc#1092500,
    savannah#53820).
* Wed Apr 18 2018 jdelvare@suse.de
  - Add ed as BuildRequires so ed-style patches can be checked by
    the test suite.
* Wed Apr 18 2018 jdelvare@suse.de
  Fix CVE-2018-1000156 (bsc#1088420, savannah#53566).
  - ed-style-01-missing-input-files.patch: Allow input files to be
    missing for ed-style patches.
  - ed-style-02-fix-arbitrary-command-execution.patch,
    ed-style-03-update-test-Makefile.patch: Fix arbitrary command
    execution in ed-style patches.
  - ed-style-04-invoke-ed-directly.patch: Invoke ed directly instead
    of using the shell.
  - ed-style-05-minor-cleanups.patch: Minor cleanups in do_ed_script.
  - ed-style-06-fix-test-failure.patch: Fix 'ed-style' test failure.
* Thu Mar 22 2018 jdelvare@suse.de
  - Move COPYING from %doc to %license.
* Wed Mar 21 2018 jdelvare@suse.de
  - Add AUTHORS and COPYING to %doc.
  - fix-segfault-mangled-rename.patch: Fix segfault with mangled
    rename patch (bsc#1080951, CVE-2018-6951, savannah#53132).
* Wed Feb 07 2018 astieger@suse.com
  - patch 2.7.6:
    * Files specified on the command line are no longer verified to
      be inside the current working directory, so commands like
      "patch -i foo.diff ../foo" will work again
    * Fixes CVE-2016-10713 (Out-of-bounds access within
      pch_write_line() in pch.c could possibly lead to DoS via a
      crafted input file; bsc#1080918)
    * Various fixes
* Sat Mar 07 2015 jdelvare@suse.de
  - patch 2.7.5
    Fixes a functional regression introduced by the previous update.
    + Patching through symbolic links works again, as long as the
      target is within the working tree.
* Mon Feb 16 2015 jdelvare@suse.de
  - patch 2.7.4
    Fixes a functional regression introduced by the previous security
    fix. The security fix would forbid legitimate use cases of
    relative symbolic links.
    [boo#918058]
    + Allow arbitrary symlink targets again.
    + Do not change permissions if there isn't an explicit mode
      change.
    + Fix indentation heuristic for context diffs.
  - Please also note that the previous update fixed security bugs
    boo#915328 and boo#915329 even though it did not say so.
* Fri Jan 23 2015 andreas.stieger@gmx.de
  - patch 2.7.3
    Contains a security fix for a directory traversal flaw when
    handling git-style patches. This could allow an attacker to
    overwrite arbitrary files by applying a specially crafted patch.
    [boo#913678] [CVE-2015-1196]
    + With git-style patches, symlinks that point outside the working
      directory will no longer be created (CVE-2015-1196).
    + When a file isn't being deleted because the file contents don't
      match the patch, the resulting message is now "Not deleting
      file ... as content differs from patch" instead of "File ...
      is not empty after patch; not deleting".
    + Function names in hunks (from diff -p) are now preserved in
      reject files
      This change was previously added as a patch. [boo#904519]
  - Version 2.7.2 differed from the above only slightly.
  - packaging changes:
    + Verify source signatures
    + Removed patches now upstream:
    * error-report-crash.patch
    * reject-print-function-01-drop-useless-test.patch
    * reject-print-function-02-handle-unified-format.patch
    + run spec-cleaner
* Mon Nov 10 2014 jdelvare@suse.de
  - reject-print-function-01-drop-useless-test.patch: Drop useless
    test in another_hunk().
  - reject-print-function-02-handle-unified-format.patch: Preserve C
    function name in unified rejects (bnc#904519).
* Tue May 20 2014 schwab@suse.de
  - error-report-crash.patch: fix crash after reporting error during option
    parsing
* Thu Dec 06 2012 jdelvare@suse.de
  - Back to bz2 archive format as old products lack xz.
* Thu Dec 06 2012 jdelvare@suse.de
  - Version 2.7.1
    + Patch no longer gets a failed assertion for certain mangled
      patches.
    + Ignore destination file names that are absolute or that contain
      a component of "..", except when working in the root directory.
      This addresses CVE-2010-4651.
    + Support for most features of the "diff --git" format, including
      renames and copies, permission changes, and symlink diffs.
      Binary diffs are not supported yet; patch will complain and
      skip them.
    + Support for double-quoted filenames: when a filename starts
      with a double quote, it is interpreted as a C string literal.
      The escape sequences \\, \", \a, \b, \f, \n, \r, \t, \v, and
      \ooo (a three-digit octal number between 0 and 255) are
      recognized.
    + Refuse to apply a normal patch to a symlink. (Previous versions
      of patch were replacing the symlink with a regular file.)
    + New --follow-symlinks option to allow to treat symlinks as
      files: this was patch's behavior before version 2.7.
    + When trying to modify a read-only file, warn about the
      potential problem by default. The --read-only command line
      option allows to change this behavior.
    + Files to be deleted are deleted once the entire input has been
      processed, not immediately. This fixes a bug with numbered
      backup files.
    + When a timestamp specifies a time zone, honor that instead of
      assuming the local time zone (--set-date) or Universal
      Coordinated Time (--set-utc).
    + Support for nanosecond precision timestamps.
    + Many bug fixes.
    + Clarify the message printed when a patch is expected to empty
      out and delete a file, but the file does not become empty.
    + Various improvements to messages when applying a patch to a
      file of different type (regular file vs. symlink), when there
      are line ending differences (LF vs. CRLF), and when in
    - -dry-run mode.
    + Ignore when extended attributes cannot be preserved because
      they are unsupported or because permission to set them is
      denied.
  - patch-revert-e0f70752.patch: Dropped, original bug fixed
    upstream.
  - patch-stdio.in.patch: Dropped, merged upstream.
* Tue Jul 17 2012 aj@suse.de
  - patch-stdio.in.patch:
    Fix build with missing gets declaration (glibc 2.16)
* Fri Apr 06 2012 jdelvare@suse.de
  - patch-revert-e0f70752.patch: Revert broken upstream commit
    (bnc#755136).
* Wed Apr 04 2012 jdelvare@suse.de
  - Version 2.6.1.136
* Wed Oct 05 2011 uli@suse.com
  - cross-build fix: use %configure macro
* Mon Apr 04 2011 jdelvare@suse.de
  - Version 2.6.1.116:
    + Patch now ignores destination file names that are absolute or
      that contain a component of ".." (CVE-2010-4651, bnc#662957).
  - Drop unified-reject-files-compat.diff. Compatibility has been
    provided for the past 18 months, hopefully nobody is relying on
    it any longer.
* Fri Jul 02 2010 jengelh@medozas.de
  - Use %_smp_mflags
* Tue May 04 2010 agruen@suse.de
  - Version 2.6.1.81:
    + Fix backup file detection for deleted files
    + Allow to create and delete empty files
    + Stick to the best name in the reversed-patch check
    + Various portability improvements
* Sun May 02 2010 agruen@suse.de
  - Fix the linker library order.
* Sun May 02 2010 agruen@suse.de
  - Be more verbose when %verbose is defined.
* Sun May 02 2010 agruen@suse.de
  - Version 2.6.1.64:
    + Support for most features of the "diff --git" format: renames
      and copies, permission changes, symlink diffs.  (Binary diffs
      are not supported yet; patch will complain and skip them.)
    + Support for double-quoted filenames: when a filename in a
      context diff starts with a double quote, it is interpreted as
      a C string literal.  The escape sequences \\, \", \a, \b, \f, \n,
      \r, \t, \v, and \ooo (a three-digit octal number between 0 and
      255) are recognized.
    + Refuse to patch read-only files by default, or at least warn
      when patching such files with --force or --batch.
    + Refuse to apply a normal patch to a symlink.  (Previous
      versions of patch were wrongly replacing the symlink with a
      regular file.)
    + When a timestamp specifies a time zone, honor that instead of
      assuming the local time zone (--set-date) or Universal
      Coordinated Time (--set-utc).
    + Support for nanosecond precision timestamps.
    + Many portability and bug fixes.
* Sun Jan 31 2010 agruen@suse.de
  - Version 2.6.1.9:
    + Skip another ed-dependent test when ed isn't installed.
    + More portability fixes.
* Wed Dec 30 2009 agruen@suse.de
  - Version 2.6.1:
    + Support for diff3(1) style merges which show the old, original,
      and new lines of a conflict has been added (--merge=diff3).
      The default still is the merge(1) format (--merge or
    - -merge=merge).
    + Bug and portability fixes.
    Sun Dec  6 17:32:57 CET 2009 - jengelh
  - enable parallel building
* Fri Nov 13 2009 agruen@suse.de
  - Version 2.6.
* Mon Sep 07 2009 agruen@suse.de
  - Version 2.5.9.122:
    + Try to preserve the owning group of patched files.
  - Add --unified-reject-files backwards-compatibility patch to
    older SUSE versions of patch.
* Mon Jul 20 2009 agruen@suse.de
  - Version 2.5.9.120:
    + When copying files, use full_write() from gnulib instead of
      write().
    + The -m option hasn't been officially allocated yet.  Use only
      the long form for now (--merge).
* Fri Jun 19 2009 agruen@suse.de
  - Version 2.5.9.118:
    + Change the default value of PATCH_GET to 0.
    + When merging, make sure that hunks will not end up "out of order"
    + When the file to patch is specified on the command line,
      apply all patches to that file
    + Some portability fixes/improvements
    + Don't fail when removing nonexistent files in move_file
* Wed Apr 08 2009 agruen@suse.de
  - Version 2.5.9.109:
    + Preserve timestamps in reject files.
    + Add support for sending output to standard output.
    + Allow special characters in filenames read interactively.
    + Don't forget to NUL terminate ptimestr in fetchname().
* Tue Apr 07 2009 agruen@suse.de
  - Version 2.5.9.104: timestamp parsing fix, 64-bit fix.
* Mon Apr 06 2009 agruen@suse.de
  - Version 2.5.9.97: Another bugfix.
* Mon Apr 06 2009 agruen@suse.de
  - Version 2.5.9.95: Gnulib update, bug fixes.
* Fri Apr 03 2009 agruen@suse.de
  - Update to version patch-2.5.9.77: updated manpage and NEWS, no
    strict depenency on ed in the test suite anymore, and slightly
    improved handling of asymmetric hunks.
* Thu Apr 02 2009 agruen@suse.de
  - Update to version patch-2.5.9.69 which has all our patches
    merged in one form or anther, along with many other fixes and
    improvements (see NEWS).
* Tue Feb 24 2009 agruen@suse.de
  - Include patch headers in reject files so that they form proper
    patches themselves.
  - Rewrite the unified reject files patch; this is much cleaner
    now.
  - Add an improved strategy for locating merges.
* Tue Feb 03 2009 agruen@suse.de
  - Implement diff3-style merges (including several fixes and
    improvements).
* Wed Apr 23 2008 agruen@suse.de
  - remember-backup-files.diff: Fix bug when a file is touched by
    the same patch more than twice. Move the test cases from the
    patch header into separate files.
  - patch-2.5.9-cat_if_device.diff: No need to remember the device
    we write to as a backup file.
* Fri Nov 02 2007 agruen@suse.de
  - Patch fails to apply hunks with asymmetric context correctly.
* Wed Jan 25 2006 mls@suse.de
  - converted neededforbuild to BuildRequires
* Thu Jan 12 2006 agruen@suse.de
  - remember-backup-files.diff: Fix case where a patch modifies a
    read-only file more than once while --backup is used (test case
    in the patch header).
* Thu Aug 18 2005 mmj@suse.de
  - --reject-unified is called --unified-reject-files [#105151]
* Wed Jun 29 2005 mmj@suse.de
  - Don't compile with -f-signed-char [#93883]
  - Don't strip explicitly
* Tue Jan 04 2005 mmj@suse.de
  - Add patch to make patch able to write reject files to devices,
    named pipes and sockets [#45794]
* Sun Jan 25 2004 agruen@suse.de
  - Add --reject-unified option to produce unified reject files:
    Before, unified reject files were produced if the patch itself
    was unified; this could sometimes have been annoying.
  - If a patch with C function names (diff -p) has rejects, include
    the function names in the reject files.
* Sun Jan 11 2004 adrian@suse.de
  - add %defattr
* Tue Oct 07 2003 agruen@suse.de
  - remember-backup-files: Also include the file timestamps in the
    hash table for non-POSIX-compliant systems that don't guarantee
    that i_dev + i_ino uniquely identifies a file.
  - #32031: Create --global-reject-file even if --dry-run is
    specified. Add a missing '\n'.
* Wed Jul 16 2003 agruen@suse.de
  - Replace trailing-cr-fix.diff with official upstream version that
    fixes this bug differently.
* Mon Jun 30 2003 agruen@suse.de
  - trailing-cr-fix.diff: Fix a bug in carriage return detection
    (DOS files) in the unified diff path.
  - Disable patch that adds comments to C preprocessor style
    merges, as specified by POSIX.1-2001.
* Wed Jun 25 2003 agruen@suse.de
  - Fix bug introduced on June 5 that broke remember-backup-files.
* Tue Jun 24 2003 agruen@suse.de
  - smart-reject-file-format.diff: Work around a special case in
    which patches are not terminated with a '^' in the internal
    representation. The resulting error message was "internal error
    in abort_hunk".
* Thu Jun 05 2003 agruen@suse.de
  - Temporary reject file logic: Ooops, now must only close the
    temporary reject file after processing all patches, instead of
    after each patch.
* Wed Jun 04 2003 agruen@suse.de
  - Upgrade to 2.5.9: Several fixes, obsoletes
    rename-same-file.patch.
  - Fix and adapt global-reject-file patch:
    + The global reject file included corrupted headers for each
      rejected hunk, instead of one header for each file with
      rejects.
    + Rename --global-reject to --global-reject-file.
    + Simplify temporary reject file logic.
    + Adapt to unified-reject-files patch (which has different
      headers).
    + Add entry in man page.
  - Fix a bug in smart-reject-file-format: Files that are created
    are identified by `-0,0'; before the patch was generating
    `-1,0' in reject files.
  - Switch remember-backup-files.diff over to use gnulib's hash
    tables instead of glibc's binary trees, requested from upstream
    to ensure greater portability.
  - Add /* SYM */ comment to #endif lines for patch -D SYM, too.
* Wed Apr 09 2003 agruen@suse.de
  - Fix another bug with hard links and backup file generation.
  - Fix backup file generation if the same file appears in the
    patch more than once.
* Wed Mar 26 2003 mmj@suse.de
  - Update to 2.5.8:
    + Bugfixes
    + patch -D now outputs preprocessor lines without comments, as
      required by POSIX 1003.1-2001
    + File names in context patches may now contain spaces, so long
      as the context patch headers use a tab to separate the file name
      from the time stamp
    + Perforce is now supported
    + Patch lines beginning with "#" are comments and are ignored
* Wed Jan 15 2003 agruen@suse.de
  - Fix a bug with hardlinks (see rename-same-file.patch)
* Tue Sep 17 2002 ro@suse.de
  - removed bogus self-provides
* Wed Feb 06 2002 coolo@suse.de
  - called suse_update_config
* Mon Jun 25 2001 uli@suse.de
  - added patch adding "--global-reject" option by ak@suse.de
  - bzipped tarball
* Tue Mar 06 2001 bk@suse.de
  - update to 2.5.4, added 2 patches from PLD and use buildroot
* Wed Nov 08 2000 uli@suse.de
  - now builds with -D_GNU_SOURCE, should avoid miscompilation that
    breaks LFS support
  - added fix for offset output by Alessandro Rubini
  - added fix and enhancement for --ifdef by Pete Buechler
* Sun Feb 27 2000 @suse.de
  - added missing CFLAGS quotes.
* Sun Feb 27 2000 bk@suse.de
  - added PPC fixes by Uli back again (-fsigned-char, CPPFLAGS)
* Fri Feb 25 2000 schwab@suse.de
  - Specfile cleanup, get rid of Makefile.Linux
  - /usr/man -> /usr/share/man
  - Add group tag.
* Mon Sep 13 1999 bs@suse.de
  - ran old prepare_spec on spec file to switch to new prepare_spec.
* Wed Aug 18 1999 uli@suse.de
  - fixed for PPC (-fsigned-char, CPPFLAGS)
* Tue Mar 16 1999 ro@suse.de
  - update to 2.5.3 using diff from jurix
* Wed Jan 13 1999 bs@suse.de
  - applied patch from Egbert Eich (problems with non existing files fixed)
* Wed Nov 04 1998 ro@suse.de
  - use libc's basename() for glibc

Files

/usr/bin/patch
/usr/share/doc/packages/patch
/usr/share/doc/packages/patch/AUTHORS
/usr/share/doc/packages/patch/NEWS
/usr/share/doc/packages/patch/README
/usr/share/licenses/patch
/usr/share/licenses/patch/COPYING
/usr/share/man/man1/patch.1.gz


Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 12 00:02:43 2024