zlib: bump version to 1.2.13 to correctly handle CRC inputs (#5408)

The releases of zlib < 1.2.13 are not sensitive to incorrect CRC
inputs with bits set above the low 32. Bump version to 1.2.13 to
fix this issue.

Reference: madler/zlib#613
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>

SPECS/zlib/zlib.signatures.json

@@ -1,5 +1,5 @@
 {
  "Signatures": {
-  "zlib-1.2.12.tar.xz": "7db46b8d7726232a621befaab4a1c870f00a90805511c0e0090441dac57def18"
+  "zlib-1.2.13.tar.xz": "d14c38e313afc35a9a8760dadf26042f51ea0f5d154b0630a31da0540107fb98"
  }
 }

SPECS/zlib/zlib.spec

@@ -1,15 +1,13 @@
 Summary:        Compression and decompression routines
 Name:           zlib
-Version:        1.2.12
-Release:        2%{?dist}
+Version:        1.2.13
+Release:        1%{?dist}
 URL:            https://www.zlib.net/
 License:        zlib
 Group:          Applications/System
 Vendor:         Microsoft Corporation
 Distribution:   Mariner
 Source0:        https://www.zlib.net/%{name}-%{version}.tar.xz
-Patch0:         CVE-2022-37434.patch
-Patch1:         Fix-extra-field-processing-bug-that-dereferences-NULL.patch
 %description
 Compression and decompression routines
 %package    devel
@@ -51,8 +49,12 @@ make  %{?_smp_mflags} check
 %{_mandir}/man3/zlib.3.gz
 
 %changelog
+* Thu Apr 27 2023 Muhammad Falak <mwani@microsoft.com> - 1.2.13-1
+- Upgrade version to address java exception
+- Drop un-needed patches
+
 * Tue Aug 16 2022 Muhammad Falak <mwani@microsoft.com> - 1.2.12-2
-- Introduce patches from upstrea to address CVE-2022-37434
+- Introduce patches from upstream to address CVE-2022-37434
 
 * Tue Apr 12 2022 Nicolas Guibourge <nicolasg@microsoft.com> - 1.2.12-1
 - Upgrade to 1.12.2 to fix CVE-2018-25032

cgmanifest.json

@@ -30400,8 +30400,8 @@
         "type": "other",
         "other": {
           "name": "zlib",
-          "version": "1.2.12",
-          "downloadUrl": "https://www.zlib.net/zlib-1.2.12.tar.xz"
+          "version": "1.2.13",
+          "downloadUrl": "https://www.zlib.net/zlib-1.2.13.tar.xz"
         }
       }
     },
@@ -30447,4 +30447,4 @@
     }
   ],
   "Version": 1
-}
+}

toolkit/resources/manifests/package/pkggen_core_aarch64.txt

@@ -7,8 +7,8 @@ glibc-iconv-2.35-3.cm2.aarch64.rpm
 glibc-lang-2.35-3.cm2.aarch64.rpm
 glibc-nscd-2.35-3.cm2.aarch64.rpm
 glibc-tools-2.35-3.cm2.aarch64.rpm
-zlib-1.2.12-2.cm2.aarch64.rpm
-zlib-devel-1.2.12-2.cm2.aarch64.rpm
+zlib-1.2.13-1.cm2.aarch64.rpm
+zlib-devel-1.2.13-1.cm2.aarch64.rpm
 file-5.40-2.cm2.aarch64.rpm
 file-devel-5.40-2.cm2.aarch64.rpm
 file-libs-5.40-2.cm2.aarch64.rpm

toolkit/resources/manifests/package/pkggen_core_x86_64.txt

@@ -7,8 +7,8 @@ glibc-iconv-2.35-3.cm2.x86_64.rpm
 glibc-lang-2.35-3.cm2.x86_64.rpm
 glibc-nscd-2.35-3.cm2.x86_64.rpm
 glibc-tools-2.35-3.cm2.x86_64.rpm
-zlib-1.2.12-2.cm2.x86_64.rpm
-zlib-devel-1.2.12-2.cm2.x86_64.rpm
+zlib-1.2.13-1.cm2.x86_64.rpm
+zlib-devel-1.2.13-1.cm2.x86_64.rpm
 file-5.40-2.cm2.x86_64.rpm
 file-devel-5.40-2.cm2.x86_64.rpm
 file-libs-5.40-2.cm2.x86_64.rpm

toolkit/resources/manifests/package/toolchain_aarch64.txt

@@ -582,9 +582,9 @@ xz-lang-5.2.5-1.cm2.aarch64.rpm
 xz-libs-5.2.5-1.cm2.aarch64.rpm
 zip-3.0-5.cm2.aarch64.rpm
 zip-debuginfo-3.0-5.cm2.aarch64.rpm
-zlib-1.2.12-2.cm2.aarch64.rpm
-zlib-debuginfo-1.2.12-2.cm2.aarch64.rpm
-zlib-devel-1.2.12-2.cm2.aarch64.rpm
+zlib-1.2.13-1.cm2.aarch64.rpm
+zlib-debuginfo-1.2.13-1.cm2.aarch64.rpm
+zlib-devel-1.2.13-1.cm2.aarch64.rpm
 zstd-1.5.0-1.cm2.aarch64.rpm
 zstd-debuginfo-1.5.0-1.cm2.aarch64.rpm
 zstd-devel-1.5.0-1.cm2.aarch64.rpm

toolkit/resources/manifests/package/toolchain_x86_64.txt

@@ -582,9 +582,9 @@ xz-lang-5.2.5-1.cm2.x86_64.rpm
 xz-libs-5.2.5-1.cm2.x86_64.rpm
 zip-3.0-5.cm2.x86_64.rpm
 zip-debuginfo-3.0-5.cm2.x86_64.rpm
-zlib-1.2.12-2.cm2.x86_64.rpm
-zlib-debuginfo-1.2.12-2.cm2.x86_64.rpm
-zlib-devel-1.2.12-2.cm2.x86_64.rpm
+zlib-1.2.13-1.cm2.x86_64.rpm
+zlib-debuginfo-1.2.13-1.cm2.x86_64.rpm
+zlib-devel-1.2.13-1.cm2.x86_64.rpm
 zstd-1.5.0-1.cm2.x86_64.rpm
 zstd-debuginfo-1.5.0-1.cm2.x86_64.rpm
 zstd-devel-1.5.0-1.cm2.x86_64.rpm