Hello community, here is the log from the commit of package konversation for openSUSE:Factory checked in at 2014-11-07 09:05:04 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/konversation (Old) and /work/SRC/openSUSE:Factory/.konversation.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "konversation" Changes: -------- --- /work/SRC/openSUSE:Factory/konversation/konversation.changes 2014-03-15 17:36:47.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.konversation.new/konversation.changes 2014-11-07 09:05:06.000000000 +0100 @@ -1,0 +2,34 @@ +Tue Nov 4 16:38:29 UTC 2014 - hrvoje.senjan@gmail.com + +- Update to 1.5.1 + * Konversation 1.5.1 is a maintenance release containing only bug + fixes. The included changes address several minor behavioral + defects and a low-risk DoS security defect in the Blowfish + ECB support. The KDE Platform version dependency has increased + to v4.9.0 to gain access to newer Qt socket transport + security flags. + * Fixed a bug causing wildcards in command alias replacement + patterns not to be expanded. + * Fixed a bug causing auto-joining of channels not starting + in # or & to sometimes fail because the auto-join command + was generated before we got the CHANTYPES pronouncement + by the server. + * Added a size sanity check for incoming Blowfish ECB blocks. + The blind assumption of incoming blocks being the expected + 12 bytes could lead to a crash or up to 11 byte information + leak due to an out-of-bounds read. CVE-2014-8483. + * Enabling SSL/TLS support for connections will now advertise + the protocols Qt considers secure by default, instead of + being hardcoded to TLSv1. + * Fixed the bundled 'sysinfo' script not coping with empty + lines in /etc/os-release. + * Made disk space info in the bundled 'sysinfo' script more + robust by forcing the C locale for 'df'. + * Added an audio player type hint for Cantata to the bundled + 'media' script. + * Fixed some minor comparison logic errors turned up by + static analysis. + * Konversation now depends on KDE Platform v4.9.0 or higher. +- Bump libkde4-devel BuildRequires to 4.9.0 + +------------------------------------------------------------------- Old: ---- konversation-1.5.tar.xz New: ---- konversation-1.5.1.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ konversation.spec ++++++ --- /var/tmp/diff_new_pack.5U3jAY/_old 2014-11-07 09:05:08.000000000 +0100 +++ /var/tmp/diff_new_pack.5U3jAY/_new 2014-11-07 09:05:08.000000000 +0100 @@ -17,16 +17,16 @@ Name: konversation -Version: 1.5 +Version: 1.5.1 Release: 0 -%define tar_version 1.5 +%define tar_version 1.5.1 Summary: A User-Friendly IRC Client for KDE License: GPL-2.0+ Group: Productivity/Networking/IRC Url: http://konversation.kde.org/ -Source0: http://download.kde.org/stable/%{name}/%{tar_version}/src/%{name}-%{tar_version}.tar.xz +Source: http://download.kde.org/stable/%{name}/%{tar_version}/src/%{name}-%{tar_version}.tar.xz BuildRoot: %{_tmppath}/%{name}-%{version}-build -BuildRequires: libkde4-devel >= 4.7.0 +BuildRequires: libkde4-devel >= 4.9.0 BuildRequires: libkdepimlibs4-devel BuildRequires: libqca2-devel BuildRequires: xz ++++++ konversation-1.5.tar.xz -> konversation-1.5.1.tar.xz ++++++ ++++ 203680 lines of diff (skipped) -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org
participants (1)
-
root@hilbert.suse.de