Upgrade to 0.28.2 for fix CVE-2024-25112 and CVE-2024-24826

2024-02-17 17:34:17 +08:00 · 2024-02-17 17:34:17 +08:00 · ad2894d1f5
commit ad2894d1f5
parent a32e67625e
2 changed files with 7 additions and 4 deletions
--- a/exiv2-0.28.2.tar.gz
+++ b/exiv2-0.28.2.tar.gz
--- a/exiv2.spec
+++ b/exiv2.spec
@ -1,10 +1,10 @@
 Name:    exiv2
-Version: 0.28.1
+Version: 0.28.2
 Release: 1
 Summary: Exif, IPTC and XMP metadata and the ICC Profile
 License: GPLv2+
 URL:     http://www.exiv2.org/
-Source0: https://github.com/Exiv2/exiv2/archive/refs/tags/%{name}-%{version}.tar.gz
+Source0: https://github.com/Exiv2/exiv2/archive/v%{version}/%{name}-%{version}.tar.gz

 Provides: exiv2-libs = %{version}-%{release} 
 Obsoletes: exiv2-libs < %{version}-%{release} 
@ -43,7 +43,7 @@ make doc
 %install
 %make_install
 %find_lang exiv2 --with-man
-chrpath -d %{buildroot}%{_libdir}/libexiv2.so.0.28.1
+chrpath -d %{buildroot}%{_libdir}/libexiv2.so.0.28.2
 chrpath -d %{buildroot}%{_bindir}/%{name}


@ -66,7 +66,7 @@ test -x %{buildroot}%{_libdir}/libexiv2.so
 %{_libdir}/pkgconfig/exiv2.pc
 %{_libdir}/libexiv2.so
 %{_includedir}/exiv2/
-%{_datadir}/cmake/exiv2/
+%{_libdir}/cmake/exiv2/

 %files help
 %defattr(-,root,root)
@ -74,6 +74,9 @@ test -x %{buildroot}%{_libdir}/libexiv2.so
 %{_pkgdocdir}/

 %changelog
+* Sat Feb 17 2024 yaoxin <yao_xin001@hoperun.com> - 0.28.2-1
+- Upgrade to 0.28.2 for fix CVE-2024-25112 and CVE-2024-24826
+
 * Thu Nov 09 2023 yaoxin <yao_xin001@hoperun.com> - 0.28.1-1
 - Upgrade to 0.28.1 for fix CVE-2023-44398