| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| installplatform-verbose.patch | Verbose installplatform Just make installplatform to ease debugging problems with creatin platform files. | Michal Čihař <nijel@debian.org> | no | |||
| rpmdb-in-home.patch | Move default rpmdb path to user homeBug-Debian; https://bug.debian.org/551669 We don't want to use system database, because we don't want users to install rpm packages on Debian. [benh: Use bash for the expansion, as dash will never look up in the passwd file] |
Michal Čihař <nijel@debian.org> | no | debian | ||
| debian-disable-rpm.patch | RPM is not default package manager on Debian In Debian, rpm should be used to install packages, but rather as a tool to work with rpm packages or as a helper in alien. Because of this we protect complain, when user tries to install a package. This warning can be hidden by --force-debian. |
Michal Čihař <nijel@debian.org> | yes | |||
| fix-directories.patch | Fix installation directories - Do not install rpm to /bin/. - Setup default directories so that source RPMs rebuilt on Debian get the right directories and also that builds occur in /usr/src/rpm - Fix statedir and init.d patch |
Michal Čihař <nijel@debian.org> | no | |||
| tempfile.patch | Use the Debian standard (and safe) mechanism of generating temporary files | Unknown | no | |||
| autogen-cleanup.patch | Delete some crap after running autogen. | Michal Čihař <nijel@debian.org> | no | |||
| lua-libname.patch | In Debian, lua library is called lua5.2. | Michal Čihař <nijel@debian.org> | yes | |||
| rpm-4.10.90-rpmlib-filesystem-check.patch | Add Fedora compatible rpm builtin provides | not-needed | vendor, http://pkgs.fedoraproject.org/cgit/rpm.git/plain/rpm-4.10.90-rpmlib-filesystem-check.patch | |||
| 0012-pythondistdeps.py-Use-python3-in-shebang.patch | pythondistdeps.py: Use python3 in shebang | Boyuan Yang <byang@debian.org> | no | 2020-02-28 | ||
| debugedit-trunk.diff | Update debugedit from the rpm trunk git diff 6811aa3803e30fdfe4c106657956bdde251eaeab f29c43728c492b1dbfe50136d33bf12f3704d8a0 |
no | ||||
| gcc-dwarf5.diff | dwarf5 updates from https://code.wildebeest.org/git/user/mjw/rpm/log/?h=gcc-dwarf5 git diff 4345ee06f44f56db6963fc621e1f0bc2d8d21435 bf532fc5f0a88ad1553a8005224a835f6c11f9fd diff --git a/tools/debugedit.c b/tools/debugedit.c index e9d8f3ae7..d6a0058e9 100644 |
no | ||||
| CVE-2021-3421-CVE-2021-20271.patch | Be much more careful about copying data from the signature header Only look for known tags, and ensure correct type and size where known before copying over. Bump the old arbitrary 16k count limit to 16M limit though, it's not inconceivable that a package could have that many files. While at it, ensure none of these tags exist in the main header, which would confuse us greatly. . This is optimized for backporting ease, upstream can remove redundancies and further improve checking later. . Reported and initial patches by Demi Marie Obenour. . Fixes: RhBug:1935049, RhBug:1933867, RhBug:1935035, RhBug:1934125, ... . Fixes: CVE-2021-3421, CVE-2021-20271 . NOTE (Debian): the upstream patch was modified to remove the references to RPMSIGTAG_VERITYSIGNATURES and RPMSIGTAG_VERITYSIGNATUREALGO, which were introduced in upstream changes later than our version. . This Debian patch combines the upstream patch with two follow-up commits: https://github.com/rpm-software-management/rpm/commit/f7b97593af5cf818a5c6c5b9bc55bba6d08c9cb0#diff-5436e6bf58cd803d29ac1261bfb06f30192193674d8b1493a33b34dcce0514a8 https://github.com/rpm-software-management/rpm/commit/e2f1f1931c5ccf3ecbe4e1e12cacb1e17a277776#diff-5436e6bf58cd803d29ac1261bfb06f30192193674d8b1493a33b34dcce0514a8 ...with the last one fixing a problem with too-strict restrictions in the original change. |
Panu Matilainen <pmatilai@redhat.com> | no | debian | upstream; https://github.com/rpm-software-management/rpm/commit/d6a86b5e69e46cc283b1e06c92343319beb42e21 | 2021-06-29 |
| CVE-2021-20266.patch | hdrblobInit() needs bounds checks too Users can pass untrusted data to hdrblobInit() and it must be robust against this. |
Demi Marie Obenour <athena@invisiblethingslab.com> | no | debian | upstream; https://github.com/rpm-software-management/rpm/commit/8f4b3c3cab8922a2022b9e47c71f1ecf906077ef | 2021-06-27 |
| hide-symbols.patch | Do not make the xlateTags symbol public. | Peter Pentchev <roam@ringlet.net> | yes | 2021-06-30 |