fix CVE-2022-32207 better
(cherry picked from commit 1d4b768036f90c0e55a8fed83e11720f9a4d08df)
This commit is contained in:
eaglegai
openeuler-sync-bot
parent
dd9d9500a5
commit
5cad30e263
@ -140,7 +140,7 @@ new file mode 100644
|
||||
index 0000000..92dc31d
|
||||
--- /dev/null
|
||||
+++ b/lib/fopen.c
|
||||
@@ -0,0 +1,106 @@
|
||||
@@ -0,0 +1,105 @@
|
||||
+/***************************************************************************
|
||||
+ * _ _ ____ _
|
||||
+ * Project ___| | | | _ \| |
|
||||
@ -165,8 +165,7 @@ index 0000000..92dc31d
|
||||
+
|
||||
+#include "curl_setup.h"
|
||||
+
|
||||
+#if !defined(CURL_DISABLE_COOKIES) && !defined(CURL_DISABLE_ALTSVC) && \
|
||||
+ !defined(CURL_DISABLE_HSTS)
|
||||
+#if !defined(CURL_DISABLE_COOKIES) || defined(USE_ALTSVC)
|
||||
+
|
||||
+#ifdef HAVE_FCNTL_H
|
||||
+#include <fcntl.h>
|
||||
|
||||
@ -6,7 +6,7 @@
|
||||
|
||||
Name: curl
|
||||
Version: 7.71.1
|
||||
Release: 15
|
||||
Release: 16
|
||||
Summary: Curl is used in command lines or scripts to transfer data
|
||||
License: MIT
|
||||
URL: https://curl.haxx.se/
|
||||
@ -187,6 +187,12 @@ rm -rf ${RPM_BUILD_ROOT}%{_libdir}/libcurl.la
|
||||
%{_mandir}/man3/*
|
||||
|
||||
%changelog
|
||||
* Tue Jul 05 2022 gaihuiying <eaglegai@163.com> - 7.71.1-16
|
||||
- Type:cves
|
||||
- CVE:CVE-2022-32207
|
||||
- SUG:NA
|
||||
- DESC:fix CVE-2022-32207 better
|
||||
|
||||
* Wed Jun 29 2022 gaihuiying <eaglegai@163.com> - 7.71.1-15
|
||||
- Type:cves
|
||||
- CVE:CVE-2022-32205 CVE-2022-32206 CVE-2022-32207 CVE-2022-32208
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user