October 2022 - openSUSE Commits - openSUSE Mailing Lists

commit libmad for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package libmad for openSUSE:Factory checked in at 2022-10-22 14:13:01 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libmad (Old) and /work/SRC/openSUSE:Factory/.libmad.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "libmad" Sat Oct 22 14:13:01 2022 rev:6 rq:1030136 version:0.15.1b Changes: -------- --- /work/SRC/openSUSE:Factory/libmad/libmad.changes 2022-10-12 18:25:09.417734244 +0200 +++ /work/SRC/openSUSE:Factory/.libmad.new.2275/libmad.changes 2022-10-22 14:13:33.388804748 +0200 @@ -1,0 +2,5 @@ +Thu Oct 20 09:13:05 UTC 2022 - Adam Majer <adam.majer(a)suse.de> + +- length-check.patch: incorporate previous frame_length.diff checks + +------------------------------------------------------------------- @@ -5 +10 @@ - bsc#1036968 (CVE-2017-8373) + bsc#1036968, bsc#1036969 (CVE-2017-8373, CVE-2017-8372) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ length-check.patch ++++++ --- /var/tmp/diff_new_pack.K3B8o5/_old 2022-10-22 14:13:33.968806123 +0200 +++ /var/tmp/diff_new_pack.K3B8o5/_new 2022-10-22 14:13:33.972806132 +0200 @@ -132,7 +132,7 @@ header->crc_check = mad_bit_crc(stream->ptr, 4 * (bound * nch + (32 - bound)), header->crc_check); -@@ -133,6 +150,11 @@ int mad_layer_I(struct mad_stream *strea +@@ -133,7 +150,17 @@ int mad_layer_I(struct mad_stream *strea for (sb = 0; sb < bound; ++sb) { for (ch = 0; ch < nch; ++ch) { @@ -142,9 +142,15 @@ + return -1; + } nb = mad_bit_read(&stream->ptr, 4); ++ if (mad_bit_nextbyte(&stream->ptr) > stream->next_frame) { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++} if (nb == 15) { -@@ -145,6 +167,11 @@ int mad_layer_I(struct mad_stream *strea + stream->error = MAD_ERROR_BADBITALLOC; +@@ -145,7 +172,17 @@ int mad_layer_I(struct mad_stream *strea } for (sb = bound; sb < 32; ++sb) { @@ -154,9 +160,15 @@ + return -1; + } nb = mad_bit_read(&stream->ptr, 4); ++ if (mad_bit_nextbyte(&stream->ptr) > stream->next_frame) { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++ } if (nb == 15) { -@@ -161,6 +188,11 @@ int mad_layer_I(struct mad_stream *strea + stream->error = MAD_ERROR_BADBITALLOC; +@@ -161,7 +198,17 @@ int mad_layer_I(struct mad_stream *strea for (sb = 0; sb < 32; ++sb) { for (ch = 0; ch < nch; ++ch) { if (allocation[ch][sb]) { @@ -166,9 +178,15 @@ + return -1; + } scalefactor[ch][sb] = mad_bit_read(&stream->ptr, 6); ++ if (mad_bit_nextbyte(&stream->ptr) > stream->next_frame) { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++ } # if defined(OPT_STRICT) -@@ -185,8 +217,10 @@ int mad_layer_I(struct mad_stream *strea + /* +@@ -185,8 +232,15 @@ int mad_layer_I(struct mad_stream *strea for (ch = 0; ch < nch; ++ch) { nb = allocation[ch][sb]; frame->sbsample[ch][s][sb] = nb ? @@ -177,15 +195,20 @@ sf_table[scalefactor[ch][sb]]) : 0; + if (stream->error != 0) + return -1; ++ if (mad_bit_nextbyte(&stream->ptr) > stream->next_frame) { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++ } } } -@@ -194,7 +228,14 @@ int mad_layer_I(struct mad_stream *strea +@@ -194,7 +248,14 @@ int mad_layer_I(struct mad_stream *strea if ((nb = allocation[0][sb])) { mad_fixed_t sample; - sample = I_sample(&stream->ptr, nb); -+ if (mad_bit_length(&stream->ptr, &frameend_ptr) < nb) { ++ if (mad_bit_length(&stream->ptr, &frameend_ptr) < nb || mad_bit_nextbyte(&stream->ptr) > stream->next_frame) { + stream->error = MAD_ERROR_LOSTSYNC; + stream->sync = 0; + return -1; @@ -196,7 +219,7 @@ for (ch = 0; ch < nch; ++ch) { frame->sbsample[ch][s][sb] = -@@ -280,13 +321,21 @@ struct quantclass { +@@ -280,13 +341,21 @@ struct quantclass { static void II_samples(struct mad_bitptr *ptr, struct quantclass const *quantclass, @@ -219,7 +242,7 @@ /* degrouping */ c = mad_bit_read(ptr, quantclass->bits); nlevels = quantclass->nlevels; -@@ -299,8 +348,14 @@ void II_samples(struct mad_bitptr *ptr, +@@ -299,8 +368,14 @@ void II_samples(struct mad_bitptr *ptr, else { nb = quantclass->bits; @@ -235,7 +258,7 @@ } for (s = 0; s < 3; ++s) { -@@ -336,6 +391,9 @@ int mad_layer_II(struct mad_stream *stre +@@ -336,6 +411,9 @@ int mad_layer_II(struct mad_stream *stre unsigned char const *offsets; unsigned char allocation[2][32], scfsi[2][32], scalefactor[2][32][3]; mad_fixed_t samples[3]; @@ -245,7 +268,7 @@ nch = MAD_NCHANNELS(header); -@@ -402,13 +460,24 @@ int mad_layer_II(struct mad_stream *stre +@@ -402,13 +480,24 @@ int mad_layer_II(struct mad_stream *stre for (sb = 0; sb < bound; ++sb) { nbal = bitalloc_table[offsets[sb]].nbal; @@ -271,7 +294,7 @@ allocation[0][sb] = allocation[1][sb] = mad_bit_read(&stream->ptr, nbal); } -@@ -417,8 +486,14 @@ int mad_layer_II(struct mad_stream *stre +@@ -417,8 +506,14 @@ int mad_layer_II(struct mad_stream *stre for (sb = 0; sb < sblimit; ++sb) { for (ch = 0; ch < nch; ++ch) { @@ -287,7 +310,7 @@ } } -@@ -441,6 +516,11 @@ int mad_layer_II(struct mad_stream *stre +@@ -441,6 +536,11 @@ int mad_layer_II(struct mad_stream *stre for (sb = 0; sb < sblimit; ++sb) { for (ch = 0; ch < nch; ++ch) { if (allocation[ch][sb]) { @@ -299,7 +322,7 @@ scalefactor[ch][sb][0] = mad_bit_read(&stream->ptr, 6); switch (scfsi[ch][sb]) { -@@ -451,11 +531,21 @@ int mad_layer_II(struct mad_stream *stre +@@ -451,11 +551,21 @@ int mad_layer_II(struct mad_stream *stre break; case 0: @@ -321,23 +344,37 @@ scalefactor[ch][sb][2] = mad_bit_read(&stream->ptr, 6); } -@@ -487,7 +577,9 @@ int mad_layer_II(struct mad_stream *stre +@@ -487,7 +597,17 @@ int mad_layer_II(struct mad_stream *stre if ((index = allocation[ch][sb])) { index = offset_table[bitalloc_table[offsets[sb]].offset][index - 1]; - II_samples(&stream->ptr, &qc_table[index], samples); ++ if (mad_bit_nextbyte(&stream->ptr) > stream->next_frame) ++ { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++ } ++ ++ + II_samples(&stream->ptr, &qc_table[index], samples, stream); + if (stream->error != 0) + return -1; for (s = 0; s < 3; ++s) { frame->sbsample[ch][3 * gr + s][sb] = -@@ -505,7 +597,9 @@ int mad_layer_II(struct mad_stream *stre +@@ -505,7 +625,15 @@ int mad_layer_II(struct mad_stream *stre if ((index = allocation[0][sb])) { index = offset_table[bitalloc_table[offsets[sb]].offset][index - 1]; - II_samples(&stream->ptr, &qc_table[index], samples); + II_samples(&stream->ptr, &qc_table[index], samples, stream); ++ if (mad_bit_nextbyte(&stream->ptr) > stream->next_frame) ++ { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++ } + if (stream->error != 0) + return -1; @@ -711,6 +748,15 @@ # if 0 && defined(DEBUG) if (bits_left < 0) fprintf(stderr, "read %d bits too many\n", -bits_left); +@@ -1577,7 +1640,7 @@ void III_imdct_l(mad_fixed_t const [18], + # else + # if 1 + static +-void fastsdct(mad_fixed_t const x[9], mad_fixed_t y[18]) ++void fastsdct(mad_fixed_t const x[9], mad_fixed_t y[17]) + { + mad_fixed_t a0, a1, a2, a3, a4, a5, a6, a7, a8, a9, a10, a11, a12; + mad_fixed_t a13, a14, a15, a16, a17, a18, a19, a20, a21, a22, a23, a24, a25; @@ -2348,10 +2411,11 @@ void III_freqinver(mad_fixed_t sample[18 */ static @@ -752,15 +798,15 @@ + return error; + + bits_left -= part2_length; - -- error = III_huffdecode(ptr, xr[ch], channel, sfbwidth[ch], part2_length); ++ + if (part2_length > channel->part2_3_length) + return MAD_ERROR_BADPART3LEN; + + part3_length = channel->part2_3_length - part2_length; + if (part3_length > bits_left) + return MAD_ERROR_BADPART3LEN; -+ + +- error = III_huffdecode(ptr, xr[ch], channel, sfbwidth[ch], part2_length); + error = III_huffdecode(ptr, xr[ch], channel, sfbwidth[ch], part3_length); if (error) return error; @@ -806,7 +852,19 @@ } mad_bit_finish(&peek); -@@ -2653,7 +2733,7 @@ int mad_layer_III(struct mad_stream *str +@@ -2608,6 +2688,11 @@ int mad_layer_III(struct mad_stream *str + next_md_begin = 0; + + md_len = si.main_data_begin + frame_space - next_md_begin; ++ if (md_len + MAD_BUFFER_GUARD > MAD_BUFFER_MDLEN) { ++ stream->error = MAD_ERROR_LOSTSYNC; ++ stream->sync = 0; ++ return -1; ++ } + + frame_used = 0; + +@@ -2645,7 +2730,7 @@ int mad_layer_III(struct mad_stream *str /* decode main_data */ if (result == 0) {

1 0

commit keylime for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package keylime for openSUSE:Factory checked in at 2022-10-22 14:13:00 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/keylime (Old) and /work/SRC/openSUSE:Factory/.keylime.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "keylime" Sat Oct 22 14:13:00 2022 rev:25 rq:1030126 version:6.5.1 Changes: -------- --- /work/SRC/openSUSE:Factory/keylime/keylime.changes 2022-10-12 18:24:44.641672345 +0200 +++ /work/SRC/openSUSE:Factory/.keylime.new.2275/keylime.changes 2022-10-22 14:13:31.928801288 +0200 @@ -1,0 +2,5 @@ +Thu Oct 13 09:15:04 UTC 2022 - Alberto Planas Dominguez <aplanas(a)suse.com> + +- Update requirement name to python-lark + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ keylime.spec ++++++ --- /var/tmp/diff_new_pack.5aEWLQ/_old 2022-10-22 14:13:32.804803364 +0200 +++ /var/tmp/diff_new_pack.5aEWLQ/_new 2022-10-22 14:13:32.808803374 +0200 @@ -56,7 +56,7 @@ Requires: python-alembic Requires: python-cryptography Requires: python-gpg -Requires: python-lark-parser +Requires: python-lark Requires: python-psutil Requires: python-pyzmq Requires: python-requests

1 0

commit MozillaThunderbird for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package MozillaThunderbird for openSUSE:Factory checked in at 2022-10-22 14:12:48 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/MozillaThunderbird (Old) and /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "MozillaThunderbird" Sat Oct 22 14:12:48 2022 rev:294 rq:1030125 version:102.4.0 Changes: -------- --- /work/SRC/openSUSE:Factory/MozillaThunderbird/MozillaThunderbird.changes 2022-10-13 15:40:08.734495342 +0200 +++ /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2275/MozillaThunderbird.changes 2022-10-22 14:13:22.652779305 +0200 @@ -1,0 +2,6 @@ +Fri Oct 14 19:54:03 UTC 2022 - Wolfgang Rosenauer <wr(a)rosenauer.org> + +- Mozilla Thunderbird 102.4.0 + https://www.thunderbird.net/en-US/thunderbird/102.4.0/releasenotes + +------------------------------------------------------------------- Old: ---- l10n-102.3.3.tar.xz thunderbird-102.3.3.source.tar.xz thunderbird-102.3.3.source.tar.xz.asc New: ---- l10n-102.4.0.tar.xz thunderbird-102.4.0.source.tar.xz thunderbird-102.4.0.source.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ MozillaThunderbird.spec ++++++ --- /var/tmp/diff_new_pack.y5ZDwj/_old 2022-10-22 14:13:31.380799989 +0200 +++ /var/tmp/diff_new_pack.y5ZDwj/_new 2022-10-22 14:13:31.384799999 +0200 @@ -29,8 +29,8 @@ # major 69 # mainver %major.99 %define major 102 -%define mainver %major.3.3 -%define orig_version 102.3.3 +%define mainver %major.4.0 +%define orig_version 102.4.0 %define orig_suffix %{nil} %define update_channel release %define source_prefix thunderbird-%{orig_version} ++++++ l10n-102.3.3.tar.xz -> l10n-102.4.0.tar.xz ++++++ ++++++ tar_stamps ++++++ --- /var/tmp/diff_new_pack.y5ZDwj/_old 2022-10-22 14:13:31.632800587 +0200 +++ /var/tmp/diff_new_pack.y5ZDwj/_new 2022-10-22 14:13:31.636800596 +0200 @@ -1,11 +1,11 @@ PRODUCT="thunderbird" CHANNEL="esr102" -VERSION="102.3.3" +VERSION="102.4.0" VERSION_SUFFIX="" -PREV_VERSION="102.3.2" +PREV_VERSION="102.3.3" PREV_VERSION_SUFFIX="" #SKIP_LOCALES="" # Uncomment to skip l10n and compare-locales-generation RELEASE_REPO="https://hg.mozilla.org/releases/comm-esr102" -RELEASE_TAG="afeec21c1fcc27ba58f98f629e85609a728f79e6" -RELEASE_TIMESTAMP="20221010194951" +RELEASE_TAG="c064680366a130c4c02ba9b85ef324f0f075c47b" +RELEASE_TIMESTAMP="20221014171633" ++++++ thunderbird-102.3.3.source.tar.xz -> thunderbird-102.4.0.source.tar.xz ++++++ /work/SRC/openSUSE:Factory/MozillaThunderbird/thunderbird-102.3.3.source.tar.xz /work/SRC/openSUSE:Factory/.MozillaThunderbird.new.2275/thunderbird-102.4.0.source.tar.xz differ: char 15, line 1

1 0

commit imake for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package imake for openSUSE:Factory checked in at 2022-10-22 14:12:47 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/imake (Old) and /work/SRC/openSUSE:Factory/.imake.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "imake" Sat Oct 22 14:12:47 2022 rev:11 rq:1030122 version:1.0.9 Changes: -------- --- /work/SRC/openSUSE:Factory/imake/imake.changes 2021-05-20 19:23:25.130353600 +0200 +++ /work/SRC/openSUSE:Factory/.imake.new.2275/imake.changes 2022-10-22 14:13:21.736777134 +0200 @@ -1,0 +2,16 @@ +Thu Oct 20 08:39:39 UTC 2022 - Stefan Dirsch <sndirsch(a)suse.com> + +- Update to version 1.0.9 + * gitlab CI: add a basic build test + * Fix spelling/wording issues + * Use AC_CONFIG_FILES to replace the deprecated AC_OUTPUT with parameters + * Fix -Wsign-compare warnings + * Fix -Wshadow warnings + * Make Emalloc() argument a size_t to match malloc() + * Simplify HAVE_MKSTEMP block + * unifdef SIGNALRETURNSINT + * Add .git-blame-ignore-revs to hide whitespace commits from git blame + * autogen.sh: use quoted string variables + * autogen.sh: use exec instead of waiting for configure to finish + +------------------------------------------------------------------- Old: ---- imake-1.0.8.tar.bz2 New: ---- imake-1.0.9.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ imake.spec ++++++ --- /var/tmp/diff_new_pack.v4NKiB/_old 2022-10-22 14:13:22.268778395 +0200 +++ /var/tmp/diff_new_pack.v4NKiB/_new 2022-10-22 14:13:22.272778405 +0200 @@ -1,7 +1,7 @@ # # spec file for package imake # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,13 +17,13 @@ Name: imake -Version: 1.0.8 +Version: 1.0.9 Release: 0 Summary: C preprocessor interface to the make utility License: MIT Group: Development/Tools/Building URL: https://xorg.freedesktop.org/ -Source0: https://xorg.freedesktop.org/releases/individual/util/%{name}-%{version}.ta… +Source0: https://xorg.freedesktop.org/releases/individual/util/%{name}-%{version}.ta… BuildRequires: gcc-c++ BuildRequires: pkgconfig BuildRequires: pkgconfig(xorg-macros) >= 1.8

1 0

commit python-argon2-cffi-bindings for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-argon2-cffi-bindings for openSUSE:Factory checked in at 2022-10-22 14:12:46 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-argon2-cffi-bindings (Old) and /work/SRC/openSUSE:Factory/.python-argon2-cffi-bindings.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "python-argon2-cffi-bindings" Sat Oct 22 14:12:46 2022 rev:2 rq:1030109 version:21.2.0 Changes: -------- --- /work/SRC/openSUSE:Factory/python-argon2-cffi-bindings/python-argon2-cffi-bindings.changes 2022-05-09 18:44:21.176225030 +0200 +++ /work/SRC/openSUSE:Factory/.python-argon2-cffi-bindings.new.2275/python-argon2-cffi-bindings.changes 2022-10-22 14:13:20.996775381 +0200 @@ -1,0 +2,6 @@ +Thu Oct 20 07:32:50 UTC 2022 - Daniel Garcia <daniel.garcia(a)suse.com> + +- Remove not needed dep python-six +- Use a more specific python_sitelib in %files + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-argon2-cffi-bindings.spec ++++++ --- /var/tmp/diff_new_pack.Qs3GuU/_old 2022-10-22 14:13:21.532776651 +0200 +++ /var/tmp/diff_new_pack.Qs3GuU/_new 2022-10-22 14:13:21.540776670 +0200 @@ -32,13 +32,11 @@ BuildRequires: %{python_module pytest} BuildRequires: %{python_module setuptools >= 45} BuildRequires: %{python_module setuptools_scm} -BuildRequires: %{python_module six} BuildRequires: fdupes BuildRequires: pkgconfig BuildRequires: python-rpm-macros BuildRequires: pkgconfig(libargon2) Requires: python-cffi >= 1.0.1 -Requires: python-six Provides: python-argon2_cffi_bindings Obsoletes: python-argon2_cffi_bindings %python_subpackages @@ -64,6 +62,7 @@ %files %{python_files} %doc README.md CHANGELOG.md %license LICENSE -%{python_sitearch}/* +%{python_sitearch}/_argon2_cffi_bindings +%{python_sitearch}/argon2_cffi_bindings-%{version}*-info %changelog

1 0

commit nginx for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package nginx for openSUSE:Factory checked in at 2022-10-22 14:12:45 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/nginx (Old) and /work/SRC/openSUSE:Factory/.nginx.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "nginx" Sat Oct 22 14:12:45 2022 rev:77 rq:1030027 version:1.23.2 Changes: -------- --- /work/SRC/openSUSE:Factory/nginx/nginx.changes 2022-07-22 19:20:13.220556948 +0200 +++ /work/SRC/openSUSE:Factory/.nginx.new.2275/nginx.changes 2022-10-22 14:13:19.832772622 +0200 @@ -1,0 +2,24 @@ +Wed Oct 19 14:06:29 UTC 2022 - Michael Str��der <michael(a)stroeder.com> + +- Updated to 1.23.2 + * Security: processing of a specially crafted mp4 file by the + ngx_http_mp4_module might cause a worker process crash, worker + process memory disclosure, or might have potential other impact + (CVE-2022-41741, CVE-2022-41742). + * Feature: the "$proxy_protocol_tlv_..." variables. + * Feature: TLS session tickets encryption keys are now automatically + rotated when using shared memory in the "ssl_session_cache" + directive. + * Change: the logging level of the "bad record type" SSL errors has + been lowered from "crit" to "info". + * Change: now when using shared memory in the "ssl_session_cache" + directive the "could not allocate new session" errors are logged at + the "warn" level instead of "alert" and not more often than once per second. + * Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x. + * Bugfix: in logging of the PROXY protocol errors. + * Workaround: shared memory from the "ssl_session_cache" directive was + spent on sessions using TLS session tickets when using TLSv1.3 with OpenSSL. + * Workaround: timeout specified with the "ssl_session_timeout" + directive did not work when using TLSv1.3 with OpenSSL or BoringSSL. + +------------------------------------------------------------------- Old: ---- nginx-1.23.1.tar.gz nginx-1.23.1.tar.gz.asc New: ---- nginx-1.23.2.tar.gz nginx-1.23.2.tar.gz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ nginx.spec ++++++ --- /var/tmp/diff_new_pack.0U3AN5/_old 2022-10-22 14:13:20.456774101 +0200 +++ /var/tmp/diff_new_pack.0U3AN5/_new 2022-10-22 14:13:20.468774129 +0200 @@ -23,7 +23,7 @@ %bcond_with ngx_google_perftools # Name: nginx -Version: 1.23.1 +Version: 1.23.2 Release: 0 Summary: A HTTP server and IMAP/POP3 proxy server License: BSD-2-Clause ++++++ nginx-1.23.1.tar.gz -> nginx-1.23.2.tar.gz ++++++ ++++ 1698 lines of diff (skipped)

1 0

commit sdparm for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package sdparm for openSUSE:Factory checked in at 2022-10-22 14:12:43 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/sdparm (Old) and /work/SRC/openSUSE:Factory/.sdparm.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "sdparm" Sat Oct 22 14:12:43 2022 rev:24 rq:1030023 version:1.12 Changes: -------- --- /work/SRC/openSUSE:Factory/sdparm/sdparm.changes 2021-07-02 13:26:33.177186150 +0200 +++ /work/SRC/openSUSE:Factory/.sdparm.new.2275/sdparm.changes 2022-10-22 14:13:19.056770783 +0200 @@ -1,0 +2,5 @@ +Mon Sep 5 15:07:15 UTC 2022 - Ludwig Nussel <lnussel(a)suse.de> + +- Use /usr/sbin (boo#1191094) + +------------------------------------------------------------------- ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ sdparm.spec ++++++ --- /var/tmp/diff_new_pack.AJnezP/_old 2022-10-22 14:13:19.596772063 +0200 +++ /var/tmp/diff_new_pack.AJnezP/_new 2022-10-22 14:13:19.604772082 +0200 @@ -1,7 +1,7 @@ # # spec file for package sdparm # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -46,18 +46,18 @@ %build # None of these is performance-critical, so use -Os rather than -O2: CFLAGS=$(echo "%optflags" | sed 's/\-O2/-Os/') -%configure +%configure --bindir=%{_sbindir} %make_build %install -%make_install bindir="/sbin" +%make_install %files %license BSD_LICENSE %doc README ChangeLog -/sbin/sas_disk_blink -/sbin/scsi_ch_swp -/sbin/sdparm +%{_sbindir}/sas_disk_blink +%{_sbindir}/scsi_ch_swp +%{_sbindir}/sdparm %_mandir/man8/*.8%{?ext_man} %changelog

1 0

commit systemd for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package systemd for openSUSE:Factory checked in at 2022-10-22 14:12:42 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/systemd (Old) and /work/SRC/openSUSE:Factory/.systemd.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "systemd" Sat Oct 22 14:12:42 2022 rev:366 rq:1030349 version:251.6 Changes: -------- --- /work/SRC/openSUSE:Factory/systemd/systemd.changes 2022-10-08 01:22:42.197882638 +0200 +++ /work/SRC/openSUSE:Factory/.systemd.new.2275/systemd.changes 2022-10-22 14:13:17.100766148 +0200 @@ -1,0 +2,31 @@ +Fri Oct 21 09:07:05 UTC 2022 - Franck Bui <fbui(a)suse.com> + +- Import commit f78bba8d037cc26c09bbdd167625b2d7fe1f5a30 (merge of v251.6) + + Beside the merge of v251.6, it also includes the following backport: + + - 07aaa898bd pstore: do not try to load all known pstore modules + + For a complete list of changes, visit: + https://github.com/openSUSE/systemd/compare/07aa29e3942fb46b0aed5405c88e8d3… + + +------------------------------------------------------------------- +Wed Oct 19 07:23:51 UTC 2022 - Franck Bui <fbui(a)suse.com> + +- Don't create /var/lib/systemd/random-seed in %post (bsc#1181458) + + To make sure that the same seed is not replicated when installing from a + 'golden' image. + + For regular installations the random seed file is initialized by the installer + itself (bsc#1174964). Even if it didn't, the random seed file would be created + on first boot anyway. + +------------------------------------------------------------------- +Wed Oct 12 18:35:47 UTC 2022 - Dirk M��ller <dmueller(a)suse.com> + +- Avoid expanding of macro in comment which leads to an error on installation + (workaround for bsc#1203847) + +------------------------------------------------------------------- Old: ---- systemd-v251.5+suse.31.g07aa29e394.tar.xz New: ---- systemd-v251.6+suse.34.gf78bba8d03.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ systemd.spec ++++++ --- /var/tmp/diff_new_pack.eSeq7I/_old 2022-10-22 14:13:18.152768641 +0200 +++ /var/tmp/diff_new_pack.eSeq7I/_new 2022-10-22 14:13:18.160768660 +0200 @@ -19,7 +19,7 @@ %global flavor @BUILD_FLAVOR@%{nil} %define min_kernel_version 4.5 -%define archive_version +suse.31.g07aa29e394 +%define archive_version +suse.34.gf78bba8d03 %define _testsuitedir /usr/lib/systemd/tests %define xinitconfdir %{?_distconfdir}%{!?_distconfdir:%{_sysconfdir}}/X11/xinit @@ -72,7 +72,7 @@ Name: systemd%{?mini} URL: http://www.freedesktop.org/wiki/Software/systemd -Version: 251.5 +Version: 251.6 Release: 0 Summary: A System and Session Manager License: LGPL-2.1-or-later @@ -987,9 +987,6 @@ %sysusers_create systemd-journal.conf %sysusers_create systemd-timesync.conf -[ -e %{_localstatedir}/lib/random-seed ] && mv %{_localstatedir}/lib/random-seed %{_localstatedir}/lib/systemd/ || : -/usr/lib/systemd/systemd-random-seed save || : - systemctl daemon-reexec || : # Reexecute user manager instances (if any). It is asynchronous but it @@ -1062,7 +1059,7 @@ %{_prefix}/lib/systemd/scripts/migrate-sysconfig-i18n.sh || : %postun -# daemon-reload is implied by %%systemd_postun_with_restart +# daemon-reload is implied by systemd_postun_with_restart %systemd_postun_with_restart systemd-journald.service %systemd_postun_with_restart systemd-timesyncd.service # Avoid restarting logind until fixed upstream (issue #1163) ++++++ systemd-v251.5+suse.31.g07aa29e394.tar.xz -> systemd-v251.6+suse.34.gf78bba8d03.tar.xz ++++++ /work/SRC/openSUSE:Factory/systemd/systemd-v251.5+suse.31.g07aa29e394.tar.xz /work/SRC/openSUSE:Factory/.systemd.new.2275/systemd-v251.6+suse.34.gf78bba8d03.tar.xz differ: char 27, line 1

1 0

commit Mesa for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package Mesa for openSUSE:Factory checked in at 2022-10-22 14:12:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/Mesa (Old) and /work/SRC/openSUSE:Factory/.Mesa.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "Mesa" Sat Oct 22 14:12:40 2022 rev:455 rq:1030385 version:unknown Changes: -------- --- /work/SRC/openSUSE:Factory/Mesa/Mesa.changes 2022-10-13 15:39:59.814475410 +0200 +++ /work/SRC/openSUSE:Factory/.Mesa.new.2275/Mesa.changes 2022-10-22 14:13:15.116761446 +0200 @@ -1,0 +2,18 @@ +Fri Oct 21 09:41:37 UTC 2022 - Fabian Vogt <fvogt(a)suse.com> + +- Add patch to fix LLVM optimization to avoid failure on armv7 + (https://gitlab.freedesktop.org/mesa/mesa/-/merge_requests/19217, + boo#1204267): + * u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch + +------------------------------------------------------------------- +Thu Oct 20 08:46:59 UTC 2022 - Stefan Dirsch <sndirsch(a)suse.com> + +- update to 22.2.2 + * This is the second bug fix release, back on the regular + schedule. There's a lot here: nir, panfrost, gallium video, + freedreno, nouveau, turnip, r300, gallium core, r600, virgl, + core vulkan, anv, clover, d3d12, utils, radv, and plenty of + zink. + +------------------------------------------------------------------- Old: ---- mesa-22.2.1.tar.xz mesa-22.2.1.tar.xz.sig New: ---- mesa-22.2.2.tar.xz mesa-22.2.2.tar.xz.sig u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ Mesa.spec ++++++ --- /var/tmp/diff_new_pack.dUS90h/_old 2022-10-22 14:13:16.432764565 +0200 +++ /var/tmp/diff_new_pack.dUS90h/_new 2022-10-22 14:13:16.440764584 +0200 @@ -42,7 +42,7 @@ %define glamor 1 %define _name_archive mesa -%define _version 22.2.1 +%define _version 22.2.2 %define with_opencl 0 %define with_vulkan 0 %define with_llvm 0 @@ -119,7 +119,7 @@ %endif Name: Mesa%{psuffix} -Version: 22.2.1 +Version: 22.2.2 Release: 0 Summary: System for rendering 3-D graphics License: MIT @@ -139,6 +139,7 @@ Patch58: u_dep_xcb.patch Patch100: U_fix-mpeg1_2-decode-mesa-20.2.patch Patch200: u_fix-build-on-ppc64le.patch +Patch201: u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch Patch300: n_buildfix-21.3.0.patch Patch400: n_no-sse2-on-ix86-except-for-intel-drivers.patch Patch500: n_stop-iris-flicker.patch @@ -760,6 +761,7 @@ %patch58 -p1 %patch100 -p1 %patch200 -p1 +%patch201 -p1 %patch300 -p1 %ifarch %{ix86} %patch400 -p1 ++++++ mesa-22.2.1.tar.xz -> mesa-22.2.2.tar.xz ++++++ /work/SRC/openSUSE:Factory/Mesa/mesa-22.2.1.tar.xz /work/SRC/openSUSE:Factory/.Mesa.new.2275/mesa-22.2.2.tar.xz differ: char 26, line 1 ++++++ u_0001-gallivm-Fix-LLVM-optimization-with-the-new-pass-mana.patch ++++++ From 7d6df34deeed5a42163f9b548945e4d785ba48cf Mon Sep 17 00:00:00 2001 From: Fabian Vogt <fvogt(a)suse.de> Date: Fri, 21 Oct 2022 11:20:31 +0200 Subject: [PATCH] gallivm: Fix LLVM optimization with the new pass manager The previous list of passes contained several errors: "constprop" does not exist anymore and a trailing ',' is not allowed. This made LLVMRunPasses fail, but the error is silently ignored. Thus none of the listed passes ran at all. https://reviews.llvm.org/D85159 suggests "InstSimplify really should be used anywhere ConstProp is being used" so replace constprop with instsimplify and remove the trailing comma. By enabling pass logging with LLVMPassBuilderOptionsSetDebugLogging(opts, true), the difference is visible. Before: Running pass: AlwaysInlinerPass on [module] Running analysis: InnerAnalysisManagerProxy<llvm::FunctionAnalysisManager, llvm::Module> on [module] Running analysis: ProfileSummaryAnalysis on [module] Running pass: CoroConditionalWrapper on [module] Running pass: AnnotationRemarksPass on fs_variant_partial (1162 instructions) Running analysis: TargetLibraryAnalysis on fs_variant_partial Running pass: AnnotationRemarksPass on fs_variant_whole (1110 instructions) Running analysis: TargetLibraryAnalysis on fs_variant_whole After: Running pass: AlwaysInlinerPass on [module] Running analysis: InnerAnalysisManagerProxy<llvm::FunctionAnalysisManager, llvm::Module> on [module] Running analysis: ProfileSummaryAnalysis on [module] Running pass: CoroConditionalWrapper on [module] Running pass: AnnotationRemarksPass on fs_variant_partial (1162 instructions) Running analysis: TargetLibraryAnalysis on fs_variant_partial Running pass: AnnotationRemarksPass on fs_variant_whole (1110 instructions) Running analysis: TargetLibraryAnalysis on fs_variant_whole Running analysis: InnerAnalysisManagerProxy<llvm::FunctionAnalysisManager, llvm::Module> on [module] Running pass: SROAPass on fs_variant_partial (1162 instructions) Running analysis: DominatorTreeAnalysis on fs_variant_partial Running analysis: AssumptionAnalysis on fs_variant_partial Running analysis: TargetIRAnalysis on fs_variant_partial Running pass: EarlyCSEPass on fs_variant_partial (1111 instructions) Running analysis: TargetLibraryAnalysis on fs_variant_partial Running pass: SimplifyCFGPass on fs_variant_partial (961 instructions) Running pass: ReassociatePass on fs_variant_partial (961 instructions) Running pass: PromotePass on fs_variant_partial (897 instructions) Running pass: InstCombinePass on fs_variant_partial (897 instructions) Running analysis: OptimizationRemarkEmitterAnalysis on fs_variant_partial Running analysis: AAManager on fs_variant_partial Running analysis: BasicAA on fs_variant_partial Running analysis: ScopedNoAliasAA on fs_variant_partial Running analysis: TypeBasedAA on fs_variant_partial Running analysis: OuterAnalysisManagerProxy<llvm::ModuleAnalysisManager, llvm::Function> on fs_variant_partial Running pass: SROAPass on fs_variant_whole (1110 instructions) Running analysis: DominatorTreeAnalysis on fs_variant_whole Running analysis: AssumptionAnalysis on fs_variant_whole Running analysis: TargetIRAnalysis on fs_variant_whole Running pass: EarlyCSEPass on fs_variant_whole (1059 instructions) Running analysis: TargetLibraryAnalysis on fs_variant_whole Running pass: SimplifyCFGPass on fs_variant_whole (912 instructions) Running pass: ReassociatePass on fs_variant_whole (912 instructions) Running pass: PromotePass on fs_variant_whole (844 instructions) Running pass: InstCombinePass on fs_variant_whole (844 instructions) Running analysis: OptimizationRemarkEmitterAnalysis on fs_variant_whole Running analysis: AAManager on fs_variant_whole Running analysis: BasicAA on fs_variant_whole Running analysis: ScopedNoAliasAA on fs_variant_whole Running analysis: TypeBasedAA on fs_variant_whole Running analysis: OuterAnalysisManagerProxy<llvm::ModuleAnalysisManager, llvm::Function> on fs_variant_whole Fixes: 2037c34f245 ("gallivm: move to new pass manager to handle coroutines change.") --- src/gallium/auxiliary/gallivm/lp_bld_init.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/gallium/auxiliary/gallivm/lp_bld_init.c b/src/gallium/auxiliary/gallivm/lp_bld_init.c index f77aac75b76..cc410cc1928 100644 --- a/src/gallium/auxiliary/gallivm/lp_bld_init.c +++ b/src/gallium/auxiliary/gallivm/lp_bld_init.c @@ -601,7 +601,7 @@ gallivm_compile_module(struct gallivm_state *gallivm) LLVMRunPasses(gallivm->module, passes, LLVMGetExecutionEngineTargetMachine(gallivm->engine), opts); if (!(gallivm_perf & GALLIVM_PERF_NO_OPT)) - strcpy(passes, "sroa,early-cse,simplifycfg,reassociate,mem2reg,constprop,instcombine,"); + strcpy(passes, "sroa,early-cse,simplifycfg,reassociate,mem2reg,instsimplify,instcombine"); else strcpy(passes, "mem2reg"); -- 2.38.0

1 0

commit telnet for openSUSE:Factory
by Source-Sync 22 Oct '22

22 Oct '22

Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package telnet for openSUSE:Factory checked in at 2022-10-22 14:12:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/telnet (Old) and /work/SRC/openSUSE:Factory/.telnet.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "telnet" Sat Oct 22 14:12:39 2022 rev:33 rq:1030433 version:1.2 Changes: -------- --- /work/SRC/openSUSE:Factory/telnet/telnet.changes 2021-12-18 20:29:23.930214315 +0100 +++ /work/SRC/openSUSE:Factory/.telnet.new.2275/telnet.changes 2022-10-22 14:13:13.632757929 +0200 @@ -1,0 +2,7 @@ +Fri Oct 21 14:47:08 UTC 2022 - Danilo Spinella <danilo.spinella(a)suse.com> + +- Fix CVE-2022-39028, NULL pointer dereference in telnetd + (CVE-2022-39028, bsc#1203759) + CVE-2022-39028.patch + +------------------------------------------------------------------- New: ---- CVE-2022-39028.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ telnet.spec ++++++ --- /var/tmp/diff_new_pack.f4526y/_old 2022-10-22 14:13:14.476759929 +0200 +++ /var/tmp/diff_new_pack.f4526y/_new 2022-10-22 14:13:14.480759939 +0200 @@ -1,7 +1,7 @@ # # spec file for package telnet # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -34,6 +34,9 @@ Patch4: telnet-bsd-1.2-hostalias.patch #PATCH-FIX-UPSTREAM bnc#898481 kstreitova(a)suse.com -- fix the infinite loop consumes an entire CPU Patch5: telnet-bsd-1.2-fix-infinite-loop.patch +# PATCH-FIX-SECURITY bsc#1203759 danilo.spinella(a)suse.com CVE-2022-39028 +# NULL pointer dereference in telnetd +Patch6: CVE-2022-39028.patch BuildRequires: ncurses-devel BuildRequires: systemd-rpm-macros Provides: nkitb:%{_bindir}/telnet @@ -68,6 +71,7 @@ %patch3 %patch4 -p1 %patch5 -p1 +%patch6 -p1 %build export CFLAGS="%{optflags} -fpie $(ncurses6-config --cflags)" ++++++ CVE-2022-39028.patch ++++++ Description: Fix remote DoS vulnerability in inetutils-telnetd This is caused by a crash by a NULL pointer dereference when sending the byte sequences ��0xff 0xf7�� or ��0xff 0xf8��. Authors: Pierre Kim (original patch), Alexandre Torres (original patch), Erik Auerswald <auerswal(a)unix-ag.uni-kl.de> (adapted patch), Reviewed-by: Erik Auerswald <auerswal(a)unix-ag.uni-kl.de> Origin: upstream Ref: https://pierrekim.github.io/blog/2022-08-24-2-byte-dos-freebsd-netbsd-telne… Forwarded: https://lists.gnu.org/archive/html/bug-inetutils/2022-08/msg00002.html Last-Update: 2022-08-28 diff --git a/telnetd/state.c b/telnetd/state.c index ffc6cbaf..c2d760f8 100644 --- a/telnetd/state.c +++ b/telnetd/state.c @@ -185,16 +185,22 @@ telrcv (void) case EC: case EL: { - cc_t ch; + cc_t ch = (cc_t) (_POSIX_VDISABLE); DIAG(TD_OPTIONS, printoption("td: recv IAC", c)); ptyflush(); /* half-hearted */ init_termbuf(); if (c == EC) - ch = *slctab[SLC_EC].sptr; + { + if (slctab[SLC_EC].sptr) + ch = *slctab[SLC_EC].sptr; + } else - ch = *slctab[SLC_EL].sptr; + { + if (slctab[SLC_EL].sptr) + ch = *slctab[SLC_EL].sptr; + } if (ch != (cc_t)(_POSIX_VDISABLE)) *pfrontp++ = (unsigned char)ch; break;

1 0