- updated to 3.6.3

- fixes CVE-2013-0240 and CVE-2013-1799
- added patch to fix build with -Werror=format-security

diff --git a/format-security.patch b/format-security.patch
new file mode 100644 (file)
index 0000000..ce304bd
--- /dev/null
+++ b/format-security.patch
@@ -0,0 +1,10 @@
+diff -uNr gnome-online-accounts-3.6.3/src/goabackend/goautils.c gnome-online-accounts-3.6.3.new/src/goabackend/goautils.c
+--- gnome-online-accounts-3.6.3/src/goabackend/goautils.c      2013-03-04 14:17:27.000000000 +0100
++++ gnome-online-accounts-3.6.3.new/src/goabackend/goautils.c  2013-03-11 15:32:31.980162936 +0100
+@@ -480,5 +480,5 @@
+       break;
+     }
+ 
+-  g_set_error (err, GOA_ERROR, GOA_ERROR_SSL, error_msg);
++  g_set_error (err, GOA_ERROR, GOA_ERROR_SSL, "%s", error_msg);
+ }

diff --git a/gnome-online-accounts.spec b/gnome-online-accounts.spec
index fc507f4073dd97427455b1bcd5c9bec47600c197..cc669671ebb59e2ec8c49f2e445ec711737fca1b 100644 (file)
--- a/gnome-online-accounts.spec
+++ b/gnome-online-accounts.spec
@@ -5,12 +5,13 @@
 Summary:       Provide online accounts information
 Summary(pl.UTF-8):     Dostarczanie informacji o kontach w serwisach sieciowych
 Name:          gnome-online-accounts
-Version:       3.6.2
+Version:       3.6.3
 Release:       1
 License:       LGPL v2+
 Group:         Libraries
 Source0:       http://ftp.gnome.org/pub/GNOME/sources/gnome-online-accounts/3.6/%{name}-%{version}.tar.xz
-# Source0-md5: 178faf9ed1a57c306612d61423b9874e
+# Source0-md5: 7ab4e7b22a629a32bf794f9c2e52e66d
+Patch0:                format-security.patch
 URL:           http://www.gnome.org/
 BuildRequires: autoconf >= 2.50
 BuildRequires: automake >= 1:1.9
@@ -87,6 +88,7 @@ Dokumentacja API GOA.
 
 %prep
 %setup -q
+%patch0 -p1
 
 %build
 %{__gnome_doc_prepare}