X-Git-Url: https://review.fuel-infra.org/gitweb?a=blobdiff_plain;f=fedora-fix-CVE-2010-0396-01.patch;fp=fedora-fix-CVE-2010-0396-01.patch;h=c862e054f21fddd85750e4de1b15172d40e33706;hb=7873dbf84dcb4924fa288ea1a5756cf9962bdb65;hp=0000000000000000000000000000000000000000;hpb=e67ebab51c40c917c67af3cc22e50b8645ead389;p=packages%2Fcentos6%2Fdpkg.git

diff --git a/fedora-fix-CVE-2010-0396-01.patch b/fedora-fix-CVE-2010-0396-01.patch
new file mode 100644
index 0000000..c862e05
--- /dev/null
+++ b/fedora-fix-CVE-2010-0396-01.patch
@@ -0,0 +1,11 @@
+diff --git a/scripts/Dpkg/Source/Package/V3/quilt.pm b/scripts/Dpkg/Source/Package/V3/quilt.pm
+--- a/scripts/Dpkg/Source/Package/V3/quilt.pm
++++ b/scripts/Dpkg/Source/Package/V3/quilt.pm
+@@ -123,6 +123,7 @@ sub read_patch_list {
+             }
+         }
+         next if $opts{"skip_auto"} and $_ eq $auto_patch;
++        error(_g("%s contains an insecure path: %s"), $file, $_) if m{(^|/)\.\./};
+         push @patches, $_;
+     }
+     close(SERIES);