[AUTOPATCHER-EXTENDED] Upgrade libvpx to 1.13.1 to fix CVE-2023-5217 (#6347)
* Upgrade libvpx to 1.13.1 to fix CVE-2023-5217 * add %check section --------- Co-authored-by: Mandeep Plaha <mandeepplaha@microsoft.com>
This commit is contained in:
CBL-Mariner-Bot
GitHub
Родитель
f1f41ff261
Коммит
457f4d0412
|
|
@ -1,7 +1,7 @@
|
|||
{
|
||||
"Signatures": {
|
||||
"libvpx-1.8.2.tar.gz": "8735d9fcd1a781ae6917f28f239a8aa358ce4864ba113ea18af4bb2dc8b474ac",
|
||||
"libvpx.ver": "784ac8eec65da1de51a59c0b7ee0e33a7d1887318c831f5ee970b71144951865",
|
||||
"vpx_config.h": "96ad7a0b3eb887e18d7046d855fdbf9c7c401e8c28ca4dab656e623806fb89de"
|
||||
}
|
||||
"Signatures": {
|
||||
"libvpx.ver": "784ac8eec65da1de51a59c0b7ee0e33a7d1887318c831f5ee970b71144951865",
|
||||
"vpx_config.h": "96ad7a0b3eb887e18d7046d855fdbf9c7c401e8c28ca4dab656e623806fb89de",
|
||||
"libvpx-1.13.1.tar.gz": "00dae80465567272abd077f59355f95ac91d7809a2d3006f9ace2637dd429d14"
|
||||
}
|
||||
}
|
||||
|
|
@ -1,14 +1,14 @@
|
|||
Vendor: Microsoft Corporation
|
||||
Distribution: Mariner
|
||||
%global somajor 6
|
||||
%global somajor 8
|
||||
%global sominor 0
|
||||
%global sotiny 0
|
||||
%global soversion %{somajor}.%{sominor}.%{sotiny}
|
||||
|
||||
Name: libvpx
|
||||
Summary: VP8/VP9 Video Codec SDK
|
||||
Version: 1.8.2
|
||||
Release: 4%{?dist}
|
||||
Version: 1.13.1
|
||||
Release: 1%{?dist}
|
||||
License: BSD
|
||||
Source0: https://github.com/webmproject/libvpx/archive/v%{version}.tar.gz#/%{name}-%{version}.tar.gz
|
||||
Source1: vpx_config.h
|
||||
|
|
@ -212,6 +212,11 @@ rm -rf %{buildroot}%{_prefix}/src
|
|||
|
||||
%ldconfig_scriptlets
|
||||
|
||||
%check
|
||||
# This symbolic linking is needed for the tests to execute successfully.
|
||||
ln -sf %{buildroot}%{_libdir}/libvpx.so.%{somajor} /usr/lib/libvpx.so.%{somajor}
|
||||
make test
|
||||
|
||||
%files
|
||||
%license LICENSE
|
||||
%doc AUTHORS CHANGELOG README
|
||||
|
|
@ -232,6 +237,10 @@ rm -rf %{buildroot}%{_prefix}/src
|
|||
%{_bindir}/*
|
||||
|
||||
%changelog
|
||||
* Wed Oct 04 2023 CBL-Mariner Servicing Account <cblmargh@microsoft.com> - 1.13.1-1
|
||||
- Auto-upgrade to 1.13.1 - to fix CVE.
|
||||
- Add %check section.
|
||||
|
||||
* Mon Apr 25 2022 Pawel Winogrodzki <pawelwi@microsoft.com> - 1.8.2-4
|
||||
- Updating source URLs.
|
||||
- License verified.
|
||||
|
|
|
|||
|
|
@ -11481,8 +11481,8 @@
|
|||
"type": "other",
|
||||
"other": {
|
||||
"name": "libvpx",
|
||||
"version": "1.8.2",
|
||||
"downloadUrl": "https://github.com/webmproject/libvpx/archive/v1.8.2.tar.gz"
|
||||
"version": "1.13.1",
|
||||
"downloadUrl": "https://github.com/webmproject/libvpx/archive/v1.13.1.tar.gz"
|
||||
}
|
||||
}
|
||||
},
|
||||
|
|
@ -30857,4 +30857,4 @@
|
|||
}
|
||||
],
|
||||
"Version": 1
|
||||
}
|
||||
}
|
||||
Загрузка…
Ссылка в новой задаче