security update for gypsy (CVE-2011-0523, CVE-2011-0524)
The following changes have been made:
- Add gypsy-CVE-2011-0523.patch: add config file to restrict the
files that can be read. Fix CVE-2011-0523 and bnc#666839.
- Add gypsy-CVE-2011-0524.patch: use snprintf() to avoid buffer
overflows. Fix CVE-2011-0524 and bnc#666839.
- Add gnome-common BuildRequires and call to gnome-autogen.sh for
gypsy-CVE-2011-0523.patch, since it touches the build system.
-
Submitted by
Vincent Untz (vuntz)
