From c3bf16f884b8c5518a47dd95922bb4fc0bfc9d4b Mon Sep 17 00:00:00 2001 From: Gustavo Zacarias Date: Wed, 8 Oct 2014 10:19:46 -0300 Subject: [PATCH] zsh: security bump to version 5.0.7 Fixes shellshock-alike exploits. Install binary to /bin as all shells should be and add hash file. [Peter: drop /bin/sh handling as we're going to handle it globally] Signed-off-by: Gustavo Zacarias Signed-off-by: Peter Korsgaard --- package/zsh/Config.in | 2 +- package/zsh/zsh.hash | 2 ++ package/zsh/zsh.mk | 13 ++++++++++--- 3 files changed, 13 insertions(+), 4 deletions(-) create mode 100644 package/zsh/zsh.hash diff --git a/package/zsh/Config.in b/package/zsh/Config.in index 6853249b98..261df42678 100644 --- a/package/zsh/Config.in +++ b/package/zsh/Config.in @@ -8,4 +8,4 @@ config BR2_PACKAGE_ZSH ksh, and tcsh were incorporated into zsh; many original features were added. - http://zsh.sourceforge.net/ + http://www.zsh.org/ diff --git a/package/zsh/zsh.hash b/package/zsh/zsh.hash new file mode 100644 index 0000000000..358033f582 --- /dev/null +++ b/package/zsh/zsh.hash @@ -0,0 +1,2 @@ +# From http://www.zsh.org/pub/MD5SUM +md5 76726ff50309e628de670476e0508b3a zsh-5.0.7.tar.gz diff --git a/package/zsh/zsh.mk b/package/zsh/zsh.mk index f4daeeb391..ffc567dc64 100644 --- a/package/zsh/zsh.mk +++ b/package/zsh/zsh.mk @@ -4,10 +4,17 @@ # ################################################################################ -ZSH_VERSION = 5.0.6 -ZSH_SITE = http://downloads.sourceforge.net/project/zsh/zsh/$(ZSH_VERSION) +ZSH_VERSION = 5.0.7 +ZSH_SITE = http://www.zsh.org/pub +ZSH_DEPENDENCIES = ncurses +ZSH_CONF_OPTS = --bindir=/bin ZSH_LICENSE = MIT-like ZSH_LICENSE_FILES = LICENCE -ZSH_DEPENDENCIES = ncurses + +# Remove versioned zsh-x.y.z binary taking up space +define ZSH_TARGET_INSTALL_FIXUPS + rm -f $(TARGET_DIR)/bin/zsh-$(ZSH_VERSION) +endef +ZSH_POST_INSTALL_TARGET_HOOKS += ZSH_TARGET_INSTALL_FIXUPS $(eval $(autotools-package))