From b7b91802a7d16cd9a435bcede5f31d2e3ccee653 Mon Sep 17 00:00:00 2001
From: Karen Arutyunov <karen@codesynthesis.com>
Date: Tue, 7 Apr 2020 21:21:28 +0300
Subject: Release version 65.1.0+3

Fix the Debian-reported security issue CVE-2020-10531
---
 libicuuc/README-DEV | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'libicuuc/README-DEV')

diff --git a/libicuuc/README-DEV b/libicuuc/README-DEV
index b52452a..daebd4e 100644
--- a/libicuuc/README-DEV
+++ b/libicuuc/README-DEV
@@ -13,6 +13,13 @@ so we patch it:
 $ cp libicu/uc/ucasemap.cpp libicu
 $ patch -p0 <libicu/ucasemap.cpp.patch
 
+Also we fix a security issue CVE-2020-10531 reported by Debian using the
+upstream's fix (commit b7d08bc04a4296982fcef8b6b8a354a9e4e7afca) as a base
+(dropping the test changes):
+
+$ cp libicu/uc/unistr.cpp libicu
+$ patch -p0 <libicu/unistr.cpp.patch
+
 Copy the required upstream auto-generated libicudata source files into
 libicu/data/, replacing '65' with a major version. Here we assume that the
 upstream package is built on the ASCII-based platform with the little-endian
-- 
cgit v1.1