NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
4b0050f750
kumquat-buildroot/package/heirloom-mailx/heirloom-mailx.mk
Thomas Petazzoni 829610c701 package/heirloom-mailx: ignore CVE-2004-2771 
The CVE-2004-2771 is already fixed by the Debian patch
0014-globname-Invoke-wordexp-with-WRDE_NOCMD.patch. The Debian patch
description is:

Subject: [PATCH 4/4] globname: Invoke wordexp with WRDE_NOCMD (CVE-2004-2771)

See also https://marc.info/?l=oss-security&m=141875285203183&w=2 for
more details.

Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
Signed-off-by: Arnout Vandecappelle <arnout@mind.be>
2023-08-30 22:12:02 +02:00

53 lines
1.7 KiB
Makefile
Raw Blame History

################################################################################
#
# heirloom-mailx
#
################################################################################
HEIRLOOM_MAILX_VERSION = 12.5
HEIRLOOM_MAILX_SOURCE = heirloom-mailx_$(HEIRLOOM_MAILX_VERSION).orig.tar.gz
HEIRLOOM_MAILX_SITE = http://snapshot.debian.org/archive/debian/20150815T155609Z/pool/main/h/heirloom-mailx
HEIRLOOM_MAILX_PATCH = heirloom-mailx_$(HEIRLOOM_MAILX_VERSION)-5.debian.tar.xz
HEIRLOOM_MAILX_LICENSE = BSD-4-Clause, Bellcore (base64), OpenVision (imap_gssapi), RSA Data Security (md5), Network Working Group (hmac), MPL-1.1 (nss)
HEIRLOOM_MAILX_LICENSE_FILES = COPYING
HEIRLOOM_MAILX_CPE_ID_VENDOR = heirloom
HEIRLOOM_MAILX_CPE_ID_PRODUCT = mailx
# 0011-outof-Introduce-expandaddr-flag.patch in the Debian patches
HEIRLOOM_MAILX_IGNORE_CVES += CVE-2014-7844
# 0014-globname-Invoke-wordexp-with-WRDE_NOCMD.patch in the Debian patches
HEIRLOOM_MAILX_IGNORE_CVES += CVE-2004-2771
ifeq ($(BR2_PACKAGE_OPENSSL),y)
HEIRLOOM_MAILX_DEPENDENCIES += openssl
endif
define HEIRLOOM_MAILX_CONFIGURE_CMDS
(cd $(@D); $(TARGET_CONFIGURE_OPTS) $(SHELL) ./makeconfig)
endef
HEIRLOOM_MAILX_CFLAGS = $(TARGET_CFLAGS)
# -fPIC is needed to build with NIOS2 toolchains.
HEIRLOOM_MAILX_CFLAGS += -fPIC
ifeq ($(BR2_TOOLCHAIN_HAS_GCC_BUG_101916),y)
HEIRLOOM_MAILX_CFLAGS += -O0
endif
define HEIRLOOM_MAILX_BUILD_CMDS
$(TARGET_CONFIGURE_OPTS) $(MAKE) \
CFLAGS="$(HEIRLOOM_MAILX_CFLAGS)" \
-C $(@D)
endef
define HEIRLOOM_MAILX_INSTALL_TARGET_CMDS
$(TARGET_CONFIGURE_OPTS) $(MAKE) -C $(@D) \
PREFIX=/usr \
UCBINSTALL=$(INSTALL) \
STRIP=/bin/true \
DESTDIR=$(TARGET_DIR) \
install
endef
$(eval $(generic-package))
Reference in New Issue View Git Blame Copy Permalink