Summary: A utility for unpacking zip files.
Name: unzip
Version: 5.51
Release: 2
License: IBM_ILA
URL: http://www.ctan.org/tex-archive/tools/zip/info-zip/UnZip.html
Group: Applications/Archiving
Source: http://ftp.info-zip.org/pub/infozip/src/unzip551.tar.gz
Source1: IBM_ILA
Patch0: %{name}-%{version}-CVE-2014-9636.patch
Prefix: %{_prefix}
BuildRoot: /var/tmp/unzip-root
%define DEFCC cc

%description
The unzip utility is used to list, test, or extract files from a zip archive.
Zip archives are commonly found on MS-DOS systems.  The zip utility, included
in the zip package, creates zip archives.  Zip and unzip are both compatible
with archives created by PKWARE(R)'s PKZIP for MS-DOS, but the programs'
options and default behaviors do differ in some respects.

This images include a fix for denial of service (out-of-bounds read or write and crash)
via an extra field with an uncompressed size smaller than the compressed field size in
a zip archive that advertises STORED method compression (CVE-2014-9636).

%prep
%setup -q 

# Add license info
cat $RPM_SOURCE_DIR/IBM_ILA > LICENSE.new
cat LICENSE >> LICENSE.new
mv LICENSE.new LICENSE
%patch0 -p0 -b .CVE-2014-9636

%build
# Use the default compiler for this platform - gcc otherwise
if [[ -z "$CC" ]]
then
    if test "X`type %{DEFCC} 2>/dev/null`" != 'X'; then
       export CC=%{DEFCC}
    else 
       export CC=gcc
    fi
fi
if test "X$CC" != "Xgcc"
then
       export RPM_OPT_FLAGS=`echo $RPM_OPT_FLAGS | sed 's:-fsigned-char::'`
       export CFLAGS="$RPM_OPT_FLAGS"
fi

LOCAL_UNZIP="-D_LARGE_FILES" make -f unix/Makefile CC=$CC aix

%install
rm -rf $RPM_BUILD_ROOT

make prefix=$RPM_BUILD_ROOT%{_prefix} install

strip $RPM_BUILD_ROOT%{prefix}/bin/* || :

(cd $RPM_BUILD_ROOT
 mkdir -p usr/bin
 cd usr/bin
 ln -sf ../..%{_prefix}/bin/* .
 cd -
)

%clean
rm -rf $RPM_BUILD_ROOT

%files
%defattr(-,root,root)
%doc README BUGS COPYING.OLD LICENSE INSTALL ToDo WHERE
%{_prefix}/bin/funzip
%{_prefix}/bin/unzip
%{_prefix}/bin/unzipsfx
%{_prefix}/bin/zipgrep
%{_prefix}/bin/zipinfo
/usr/bin/funzip
/usr/bin/unzip
/usr/bin/unzipsfx
/usr/bin/zipgrep
/usr/bin/zipinfo
%{_prefix}/man/man1/*

%changelog
* Thu Apr 23 2015 Sangamesh Mallayya <smallayy@in.ibm.com> 5.51-2
- Add CVE-2014-9636 fix.

* Mon May 24 2004 Philip K. Warren <pkw@us.ibm.com> 5.51-1
- Update to latest 5.51 release, which fixes several directory traversal
  vulnerabilities.

* Tue Apr 13 2004 David Clissold <cliss@austin.ibm.com> 5.50-1
- Update to version 5.50.

* Fri Nov 22 2002 David Clissold <cliss@austin.ibm.com>
- Add IBM ILA license.

* Fri May 18 2001 Marc Stephenson <marc@austin.ibm.com>
- Version 5.42
- Build with large files enabled

* Thu Mar 22 2001 David Clissold <cliss@austin.ibm.com>
- Change to use cc as default compiler if available (over gcc)

* Fri Oct 27 2000 pkgmgr <pkgmgr@austin.ibm.com>
- Modify for AIX Freeware distribution

* Thu Feb  3 2000 Bill Nottingham <notting@redhat.com>
- handle compressed man pages

* Fri Jul 30 1999 Bill Nottingham <notting@redhat.com>
- update to 5.40

* Sun Mar 21 1999 Cristian Gafton <gafton@redhat.com> 
- auto rebuild in the new build environment (release 5)

* Thu Dec 17 1998 Michael Maher <mike@redhat.com>
- built for 6.0

* Tue Aug 11 1998 Jeff Johnson <jbj@redhat.com>
- build root

* Mon Apr 27 1998 Prospector System <bugs@redhat.com>
- translations modified for de, fr, tr

* Tue Oct 21 1997 Erik Troan <ewt@redhat.com>
- builds on non i386 platforms

* Mon Oct 20 1997 Otto Hammersmith <otto@redhat.com>
- updated the version

* Thu Jul 10 1997 Erik Troan <ewt@redhat.com>
- built against glibc