diff --git a/debian/changelog b/debian/changelog index d2b284b8..4ce65c65 100644 --- a/debian/changelog +++ b/debian/changelog @@ -2,13 +2,13 @@ llvm-toolchain-3.4 (1:3.4.2-1) unstable; urgency=medium * New upstream release * Add build conflict on libllvm-3.5-ocaml-dev - * Remove the override of dh_shlibdeps * Also disable lldb tests under armel (like armhf). Timeout * Update of the repack script * Use llvm-3.4-dev.links.in to manage the symlinks * Fix the soname of liblldb.so to see it treated as a real library (Closes: #750868) * Switch to the default gcc/g++ compiler. Currently 4.9 (Closes: #751322) + * Fixes CVE-2014-2893 (Closes: #744817) -- Sylvestre Ledru Fri, 06 Jun 2014 15:55:57 +0200 diff --git a/debian/patches/CVE-2014-2893.diff b/debian/patches/CVE-2014-2893.diff new file mode 100644 index 00000000..986e4f33 --- /dev/null +++ b/debian/patches/CVE-2014-2893.diff @@ -0,0 +1,16 @@ +Index: llvm-toolchain-3.3-3.3/clang/tools/scan-build/scan-build +=================================================================== +--- llvm-toolchain-3.3-3.3.orig/clang/tools/scan-build/scan-build ++++ llvm-toolchain-3.3-3.3/clang/tools/scan-build/scan-build +@@ -195,6 +195,11 @@ sub GetHTMLRunDir { + else { + $NewDir = "$Dir/$DateString-$RunNumber"; + } ++ ++ if (-d $NewDir) { ++ DieDiag("Directory '$NewDir' already existing"); ++ } ++ + system 'mkdir','-p',$NewDir; + return $NewDir; + } diff --git a/debian/patches/series b/debian/patches/series index 25e74957..de5b00cc 100644 --- a/debian/patches/series +++ b/debian/patches/series @@ -39,3 +39,4 @@ fix-llvm-config-obj-src-root.patch scan-build-fix-clang-detection.diff compiler-rt-path.diff lldb-soname.diff +CVE-2014-2893.diff diff --git a/debian/rules b/debian/rules index 99823386..87ef5509 100755 --- a/debian/rules +++ b/debian/rules @@ -304,6 +304,11 @@ override_dh_auto_install: # Managed in lldb-X.Y.links.in rm -f $(CURDIR)/$(TARGET_BUILD)/Release/lib/python*/site-packages/lldb/_lldb.so + +override_dh_shlibdeps: + LD_LIBRARY_PATH=$$LD_LIBRARY_PATH:$(CURDIR)/debian/tmp/usr/lib/llvm-$(LLVM_VERSION)/lib/ dh_shlibdeps + + override_dh_install: dh_install --fail-missing