OBS 2.10.2 released =================== This release is fixing in first place a XSS vulnerability, tracked in CVE-2020-5267. Updaters from OBS 2.10.1 release can just ugrade the packages and restart all services. Updaters from former releases should read the README.UPDATERS file. OBS update are available from the following projects: https://build.opensuse.org/project/show/OBS:Server:2.10 The appliance can be downloaded from http://openbuildservice.org/download Details from ReleaseNotes file ============================== Features ======== Backend: * Support for zstd compressed Arch Linux packages Bugfixes ======== Frontend: * Security update for gem rails (CVE-2020-5267) Backend: * support container architecture armv6 and armv7 variants * speed up nativeonly handling in dispatcher * fix package lock check on wipe * follow upstream container registry rename of "token" to "access_token" * KiwiProduct: take all src rpms if we want one binary * fix file descriptor leak leading to bs_dodup crashes * support xz compressed Packages files in bs_dodup -- Eduardo Navarro <enavarro@suse.com> Open Build Service Frontend Developer SUSE Software Solutions Germany GmbH Maxfeldstr. 5 90409 Nürnberg Germany (HRB 36809, AG Nürnberg) Geschäftsführer: Felix Imendörffer -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org