|
 |
edb763 |
%{?scl:%scl_package jackson-databind}
|
|
|
edb763 |
%{!?scl:%global pkg_name %{name}}
|
|
|
edb763 |
|
|
|
edb763 |
Name: %{?scl_prefix}jackson-databind
|
|
|
edb763 |
Version: 2.7.6
|
|
|
bf6241 |
Release: 2.9%{?dist}
|
|
|
edb763 |
Summary: General data-binding package for Jackson (2.x)
|
|
|
edb763 |
License: ASL 2.0 and LGPLv2+
|
|
|
edb763 |
URL: http://wiki.fasterxml.com/JacksonHome
|
|
|
edb763 |
Source0: https://github.com/FasterXML/jackson-databind/archive/%{pkg_name}-%{version}.tar.gz
|
|
|
f79a0c |
Patch0: CVE-2017-7525.patch
|
|
|
f79a0c |
Patch1: CVE-2017-15095.patch
|
|
|
f79a0c |
Patch2: CVE-2017-17485-1.patch
|
|
|
f79a0c |
Patch3: CVE-2017-17485-2.patch
|
|
|
198d59 |
Patch4: CVE-2018-11307.patch
|
|
|
198d59 |
Patch5: CVE-2018-12022.patch
|
|
|
198d59 |
Patch6: CVE-2018-12023.patch
|
|
|
198d59 |
Patch7: CVE-2018-14718.patch
|
|
|
198d59 |
Patch8: CVE-2018-14719.patch
|
|
|
198d59 |
Patch9: CVE-2018-14720.patch
|
|
|
198d59 |
Patch10: CVE-2018-14721.patch
|
|
|
198d59 |
Patch11: CVE-2018-19360.patch
|
|
|
198d59 |
Patch12: CVE-2018-19361.patch
|
|
|
198d59 |
Patch13: CVE-2018-19362.patch
|
|
|
f4ade6 |
Patch14: CVE-2019-12384.patch
|
|
|
1775a0 |
Patch15: CVE-2019-14379.patch
|
|
|
e5a8af |
Patch16: CVE-2019-17531.patch
|
|
|
bf6241 |
Patch17: CVE-2020_10969-11113-10968-11111-11112.patch
|
|
|
edb763 |
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}maven-local
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(com.fasterxml.jackson:jackson-parent:pom:)
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(com.fasterxml.jackson.core:jackson-annotations) >= 2.4.1
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(com.fasterxml.jackson.core:jackson-core) >= 2.4.1
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(com.google.guava:guava)
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(com.google.code.maven-replacer-plugin:replacer)
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(org.powermock:powermock-api-mockito)
|
|
|
edb763 |
BuildRequires: %{?scl_prefix}mvn(org.powermock:powermock-module-junit4)
|
|
|
edb763 |
|
|
|
edb763 |
BuildArch: noarch
|
|
|
edb763 |
|
|
|
edb763 |
%description
|
|
|
edb763 |
General data-binding functionality for Jackson:
|
|
|
edb763 |
works on core streaming API.
|
|
|
edb763 |
|
|
|
edb763 |
%package javadoc
|
|
|
edb763 |
Summary: Javadoc for %{pkg_name}
|
|
|
edb763 |
|
|
|
edb763 |
%description javadoc
|
|
|
edb763 |
This package contains javadoc for %{pkg_name}.
|
|
|
edb763 |
|
|
|
edb763 |
%prep
|
|
|
edb763 |
%setup -q -n %{pkg_name}-%{pkg_name}-%{version}
|
|
|
f79a0c |
%patch0 -p1
|
|
|
f79a0c |
%patch1
|
|
|
f79a0c |
%patch2 -p1
|
|
|
f79a0c |
%patch3 -p1
|
|
|
198d59 |
%patch4 -p1
|
|
|
198d59 |
%patch5 -p1
|
|
|
198d59 |
%patch6 -p1
|
|
|
198d59 |
%patch7 -p1
|
|
|
198d59 |
%patch8 -p1
|
|
|
198d59 |
%patch9 -p1
|
|
|
198d59 |
%patch10 -p1
|
|
|
198d59 |
%patch11 -p1
|
|
|
198d59 |
%patch12 -p1
|
|
|
198d59 |
%patch13 -p1
|
|
|
f4ade6 |
%patch14 -p1
|
|
|
1775a0 |
%patch15 -p1
|
|
|
e5a8af |
%patch16 -p1
|
|
|
bf6241 |
%patch17 -p1
|
|
|
edb763 |
|
|
|
edb763 |
cp -p src/main/resources/META-INF/LICENSE .
|
|
|
edb763 |
cp -p src/main/resources/META-INF/NOTICE .
|
|
|
edb763 |
sed -i 's/\r//' LICENSE NOTICE
|
|
|
edb763 |
|
|
|
edb763 |
# unavailable test deps
|
|
|
edb763 |
%pom_remove_dep javax.measure:jsr-275
|
|
|
edb763 |
rm src/test/java/com/fasterxml/jackson/databind/introspect/NoClassDefFoundWorkaroundTest.java
|
|
|
edb763 |
%pom_xpath_remove pom:classpathDependencyExcludes
|
|
|
edb763 |
|
|
|
edb763 |
%pom_xpath_inject "pom:plugin[pom:artifactId='maven-javadoc-plugin']/pom:configuration" "<additionalparam>-Xdoclint:none</additionalparam>"
|
|
|
edb763 |
%pom_xpath_remove pom:failOnError
|
|
|
edb763 |
|
|
|
edb763 |
# org.powermock.reflect.exceptions.FieldNotFoundException: Field 'fTestClass' was not found in class org.junit.internal.runners.MethodValidator.
|
|
|
edb763 |
rm src/test/java/com/fasterxml/jackson/databind/type/TestTypeFactoryWithClassLoader.java
|
|
|
edb763 |
|
|
|
edb763 |
# Off test that require connection with the web
|
|
|
edb763 |
rm src/test/java/com/fasterxml/jackson/databind/ser/TestJdkTypes.java \
|
|
|
edb763 |
src/test/java/com/fasterxml/jackson/databind/deser/TestJdkTypes.java \
|
|
|
edb763 |
src/test/java/com/fasterxml/jackson/databind/TestJDKSerialization.java
|
|
|
edb763 |
|
|
|
edb763 |
%mvn_file : %{pkg_name}
|
|
|
edb763 |
|
|
|
edb763 |
%build
|
|
|
edb763 |
|
|
|
edb763 |
%mvn_build -- -Dmaven.test.failure.ignore=true
|
|
|
edb763 |
|
|
|
edb763 |
%install
|
|
|
edb763 |
%mvn_install
|
|
|
edb763 |
|
|
|
edb763 |
%files -f .mfiles
|
|
|
edb763 |
%doc README.md release-notes/*
|
|
|
edb763 |
%license LICENSE NOTICE
|
|
|
edb763 |
|
|
|
edb763 |
%files javadoc -f .mfiles-javadoc
|
|
|
edb763 |
%license LICENSE NOTICE
|
|
|
edb763 |
|
|
|
edb763 |
%changelog
|
|
|
bf6241 |
* Tue Apr 14 2020 Marian Koncek <mkoncek@redhat.com> - 2.7.6-2.9
|
|
|
bf6241 |
- Fix security vulnerabilities
|
|
|
bf6241 |
- Resolves: CVE-2020-10969, CVE-2020-11113, CVE-2020-10968, CVE-2020-11111,
|
|
|
bf6241 |
CVE-2020-11112
|
|
|
bf6241 |
|
|
|
e5a8af |
* Wed Dec 04 2019 Marian Koncek <mkoncek@redhat.com> - 2.7.6-2.8
|
|
|
e5a8af |
- Fix CVE-2019-17531
|
|
|
e5a8af |
|
|
|
1775a0 |
* Thu Sep 05 2019 Marian Koncek <mkoncek@redhat.com> - 2.7.6-2.7
|
|
|
1775a0 |
- Fix CVE-2019-14379
|
|
|
1775a0 |
|
|
|
f4ade6 |
* Wed Jul 10 2019 Joe Orton <jorton@redhat.com> - 2.7.6-2.6
|
|
|
f4ade6 |
- fix CVE-2019-12384
|
|
|
f4ade6 |
|
|
|
198d59 |
* Tue Apr 02 2019 Mikolaj Izdebski <mizdebsk@redhat.com> - 2.7.6-2.5
|
|
|
198d59 |
- Fix various security flaws
|
|
|
198d59 |
- Resolves: CVE-2018-11307, CVE-2018-12022, CVE-2018-12023,
|
|
|
198d59 |
CVE-2018-14718, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721,
|
|
|
198d59 |
CVE-2018-19360, CVE-2018-19361, CVE-2018-19362
|
|
|
198d59 |
|
|
|
f79a0c |
* Wed Jan 31 2018 Mikolaj Izdebski <mizdebsk@redhat.com> - 2.7.6-2.4
|
|
|
f79a0c |
- Fix deserialization vulnerability
|
|
|
f79a0c |
- Resolves: CVE-2017-17485
|
|
|
f79a0c |
|
|
|
f79a0c |
* Tue Dec 19 2017 Mikolaj Izdebski <mizdebsk@redhat.com> - 2.7.6-2.3
|
|
|
f79a0c |
- Fix deserialization vulnerability
|
|
|
f79a0c |
- Resolves: CVE-2017-7525, CVE-2017-15095
|
|
|
f79a0c |
|
|
|
edb763 |
* Thu Jun 22 2017 Michael Simacek <msimacek@redhat.com> - 2.7.6-2.2
|
|
|
edb763 |
- Mass rebuild 2017-06-22
|
|
|
edb763 |
|
|
|
edb763 |
* Wed Jun 21 2017 Java Maintainers <java-maint@redhat.com> - 2.7.6-2.1
|
|
|
edb763 |
- Automated package import and SCL-ization
|
|
|
edb763 |
|
|
|
edb763 |
* Fri Feb 10 2017 Fedora Release Engineering <releng@fedoraproject.org> - 2.7.6-2
|
|
|
edb763 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild
|
|
|
edb763 |
|
|
|
edb763 |
* Mon Aug 22 2016 gil cattaneo <puntogil@libero.it> 2.7.6-1
|
|
|
edb763 |
- update to 2.7.6
|
|
|
edb763 |
|
|
|
edb763 |
* Fri Jun 24 2016 gil cattaneo <puntogil@libero.it> 2.6.7-1
|
|
|
edb763 |
- update to 2.6.7
|
|
|
edb763 |
|
|
|
edb763 |
* Thu May 26 2016 gil cattaneo <puntogil@libero.it> 2.6.6-1
|
|
|
edb763 |
- update to 2.6.6
|
|
|
edb763 |
|
|
|
edb763 |
* Thu Feb 04 2016 Fedora Release Engineering <releng@fedoraproject.org> - 2.6.3-2
|
|
|
edb763 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild
|
|
|
edb763 |
|
|
|
edb763 |
* Sun Oct 25 2015 gil cattaneo <puntogil@libero.it> 2.6.3-1
|
|
|
edb763 |
- update to 2.6.3
|
|
|
edb763 |
|
|
|
edb763 |
* Mon Sep 28 2015 gil cattaneo <puntogil@libero.it> 2.6.2-1
|
|
|
edb763 |
- update to 2.6.2
|
|
|
edb763 |
|
|
|
edb763 |
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5.0-2
|
|
|
edb763 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
|
|
|
edb763 |
|
|
|
edb763 |
* Sat Jan 31 2015 gil cattaneo <puntogil@libero.it> 2.5.0-1
|
|
|
edb763 |
- update to 2.5.0
|
|
|
edb763 |
|
|
|
edb763 |
* Sat Sep 20 2014 gil cattaneo <puntogil@libero.it> 2.4.2-1
|
|
|
edb763 |
- update to 2.4.2
|
|
|
edb763 |
|
|
|
edb763 |
* Wed Jul 23 2014 gil cattaneo <puntogil@libero.it> 2.4.1.3-1
|
|
|
edb763 |
- update to 2.4.1.3
|
|
|
edb763 |
|
|
|
edb763 |
* Thu Jul 03 2014 gil cattaneo <puntogil@libero.it> 2.4.1.1-1
|
|
|
edb763 |
- update to 2.4.1.1
|
|
|
edb763 |
|
|
|
edb763 |
* Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.2.2-5
|
|
|
edb763 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
|
|
|
edb763 |
|
|
|
edb763 |
* Fri Mar 28 2014 Michael Simacek <msimacek@redhat.com> - 2.2.2-4
|
|
|
edb763 |
- Use Requires: java-headless rebuild (#1067528)
|
|
|
edb763 |
|
|
|
edb763 |
* Sat Aug 03 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.2.2-3
|
|
|
edb763 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
|
|
|
edb763 |
|
|
|
edb763 |
* Mon Jul 22 2013 gil cattaneo <puntogil@libero.it> 2.2.2-2
|
|
|
edb763 |
- review fixes
|
|
|
edb763 |
|
|
|
edb763 |
* Tue Jul 16 2013 gil cattaneo <puntogil@libero.it> 2.2.2-1
|
|
|
edb763 |
- 2.2.2
|
|
|
edb763 |
- renamed jackson-databind
|
|
|
edb763 |
|
|
|
edb763 |
* Tue May 07 2013 gil cattaneo <puntogil@libero.it> 2.2.1-1
|
|
|
edb763 |
- 2.2.1
|
|
|
edb763 |
|
|
|
edb763 |
* Wed Oct 24 2012 gil cattaneo <puntogil@libero.it> 2.1.0-1
|
|
|
edb763 |
- update to 2.1.0
|
|
|
edb763 |
- renamed jackson2-databind
|
|
|
edb763 |
|
|
|
edb763 |
* Thu Sep 13 2012 gil cattaneo <puntogil@libero.it> 2.0.6-1
|
|
|
edb763 |
- initial rpm
|