From f085a6cb191f3379b99c7225132c0b38b516f295 Mon Sep 17 00:00:00 2001
From: Packit Service <user-cont-team+packit-service@redhat.com>
Date: Dec 09 2020 23:55:37 +0000
Subject: Add spec-file for the distribution


---

diff --git a/SPECS/oniguruma.spec b/SPECS/oniguruma.spec
index 9a77f9c..7d4c4a7 100644
--- a/SPECS/oniguruma.spec
+++ b/SPECS/oniguruma.spec
@@ -1,12 +1,15 @@
 Name:		oniguruma
 Version:	6.8.2
-Release:	1%{?dist}
+Release:	2%{?dist}
 Summary:	Regular expressions library
 
 Group:		System Environment/Libraries
 License:	BSD
 URL:		https://github.com/kkos/oniguruma/
 Source0:	https://github.com/kkos/oniguruma/releases/download/v%{version}/onig-%{version}.tar.gz
+# Backport https://src.fedoraproject.org/rpms/oniguruma/blob/f29/f/0100-Apply-CVE-2019-13325-fix-to-6.9.1.patch
+# (upstream: https://github.com/kkos/oniguruma/commit/c509265c5f6ae7264f7b8a8aae1cfa5fc59d108c)
+Patch100:	oniguruma-6.8.2-CVE-2019-13225-fix.patch
 
 %description
 Oniguruma is a regular expressions library.
@@ -42,6 +45,8 @@ for f in \
 done
 %endif
 
+%patch100 -p1 -b .CVE-2019-13225
+
 %build
 %configure \
     --disable-silent-rules \
@@ -97,6 +102,10 @@ find $RPM_BUILD_ROOT -name '*.la' \
 %{_libdir}/pkgconfig/%{name}.pc	
 
 %changelog
+* Fri Jun 26 2020 Jiri Kucera <jkucera@redhat.com> - 6.8.2-2
+- Fix CVE-2019-13225
+  Resolves: #1771052
+
 * Mon Apr 23 2018 Mamoru TASAKA <mtasaka@fedoraproject.org> - 6.8.2-1
 - 6.8.2