[CVE-2022-23308] Use-after-free of ID and IDREF attributes

[platform/upstream/gettext.git] / packaging / gettext.spec

diff --git a/packaging/gettext.spec b/packaging/gettext.spec
index aadc2f5..d7f0e51 100644 (file)
--- a/packaging/gettext.spec
+++ b/packaging/gettext.spec
@@ -17,6 +17,7 @@ Group:          Development/Tools
 Source:         ftp://ftp.gnu.org/gnu/gettext/%{name}-%{version}.tar.gz
 Source2:        msghack.py
 Source3:        Add_pie_compile_option.patch
+Source4:        CVE-2022-23308.patch
 Source1001:     gettext.manifest
 
 BuildRequires:  bison
@@ -73,6 +74,7 @@ This package contains libraries used internationalization support.
 %prep
 %setup -q
 %{__patch} -p1 < %{SOURCE3}  
+%{__patch} -p1 < %{SOURCE4}  
 
 %build
 export CFLAGS+=" -fPIC"