commit couchdb.2720 for openSUSE:12.3:Update
![](https://seccdn.libravatar.org/avatar/e2145bc5cf53dda95c308a3c75e8fef3.jpg?s=120&d=mm&r=g)
Hello community,
here is the log from the commit of package couchdb.2720 for openSUSE:12.3:Update checked in at 2014-04-15 11:12:04
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:12.3:Update/couchdb.2720 (Old)
and /work/SRC/openSUSE:12.3:Update/.couchdb.2720.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "couchdb.2720"
Changes:
--------
New Changes file:
--- /dev/null 2014-02-13 01:09:38.344032506 +0100
+++ /work/SRC/openSUSE:12.3:Update/.couchdb.2720.new/couchdb.changes 2014-04-15 11:12:05.000000000 +0200
@@ -0,0 +1,367 @@
+-------------------------------------------------------------------
+Fri Apr 4 12:52:41 UTC 2014 - nkrinner@suse.com
+
+- Bug 871111 - VUL-1: CVE-2014-2668: couchdb: remote denial of service via /_uuids
+ Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a denial of
+ service (CPU and memory consumption) via the count parameter to /_uuids.
+ Fix from upstream added as bnc-871111-remote-dos-via_uuids.patch
+
+-------------------------------------------------------------------
+Wed Jan 9 16:11:08 CET 2013 - sbrabec@suse.cz
+
+- Fix path to nologin in useradd (bnc#796242).
+
+-------------------------------------------------------------------
+Fri Jan 4 16:15:39 UTC 2013 - vjt@openssl.it
+
+- Fix a futon bug when saving view code of design documents that
+ do not define the "language" property. The CouchDB server treats
+ them as "javascript" views, so the same behavior has been added
+ to the futon.
+
+-------------------------------------------------------------------
+Fri Dec 7 15:21:11 UTC 2012 - rhafer@suse.com
+
+- Fixed LSB headers in init script to make inserv happy. CouchDB
+ cannot start in runlevel 2 as it requires $network.
+
+-------------------------------------------------------------------
+Thu Nov 22 00:40:42 GMT 2012 - aspiers@suse.com
+
+- Use "su" instead of "sudo" in init script, else couchdb inside
+ screen session dies when screen terminates.
+
+-------------------------------------------------------------------
+Mon Nov 19 13:38:34 UTC 2012 - vjt@openssl.it
+
+- Re-introduce js-devel BuildRequire for openSUSE-12.2
+
+-------------------------------------------------------------------
+Thu Nov 8 18:02:16 UTC 2012 - vjt@openssl.it
+
+- Replace js-devel BuildRequire with mozilla-xulrunner192-devel
+ (already in openSUSE)
+- Remove BuildRequire curl-devel as it is not needed anymore
+ http://www.apache.org/dist/couchdb/notes/1.2.0/apache-couchdb-1.2.0.html
+
+-------------------------------------------------------------------
+Mon Jul 30 14:32:12 UTC 2012 - saschpe@suse.de
+
+- BuildRequire js-devel (already in openSUSE) instead of libjs-devel
+ (only in server:database)
+
+-------------------------------------------------------------------
+Tue Jul 24 11:17:02 UTC 2012 - saschpe@suse.de
+
+- Set login shell of user couchdb to /bin/false
+- Create /var/run/couchdb in %post and %ghost it (tmpfs)
+
+-------------------------------------------------------------------
+Fri Jul 13 14:56:07 UTC 2012 - jatan@suse.de
+
+- Add init and sysconfig scripts from IBS Devel:Cloud, so that CouchDB
+ actually starts when installed
+
+-------------------------------------------------------------------
+Thu Jul 12 16:14:55 UTC 2012 - dmacvicar@suse.de
+
+- remove all xulrunner support
+ without the rpath patch was already not working
+- add --enable-js-trunk to build with newer libjs
+
+-------------------------------------------------------------------
+Fri Jun 15 04:07:03 UTC 2012 - factory-maintainer@kulow.org
+
+- fix requires for factory
+
+-------------------------------------------------------------------
+Wed Jun 13 15:53:51 UTC 2012 - coolo@suse.com
+
+- update to 1.2.0, plenty of changes - see
+ http://www.apache.org/dist/couchdb/notes/1.2.0/apache-couchdb-1.2.0.html
+
+-------------------------------------------------------------------
+Thu Dec 15 10:52:45 UTC 2011 - coolo@suse.com
+
+- apache pulled 1.1.0, so update to 1.1.1
+ - Support SpiderMonkey 1.8.5
+ - Add configurable maximum to the number of bytes returned by _log.
+ - Allow CommonJS modules to be an empty string.
+ - Bump minimum Erlang version to R13B02.
+ - Do not run deleted validate_doc_update functions.
+ - ETags for views include current sequence if include_docs=true.
+ - Fix bug where duplicates can appear in _changes feed.
+ - Fix bug where update handlers break after conflict resolution.
+ - Fix bug with _replicator where include "filter" could crash couch.
+ - Fix crashes when compacting large views.
+ - Fix file descriptor leak in _log
+ - Fix missing revisions in _changes?style=all_docs.
+ - Improve handling of compaction at max_dbs_open limit.
+ - JSONP responses now send "text/javascript" for Content-Type.
+ - Link to ICU 4.2 on Windows.
+ - Permit forward slashes in path to update functions.
+ - Reap couchjs processes that hit reduce_overflow error.
+ - Status code can be specified in update handlers.
+ - Support provides() in show functions.
+ - _view_cleanup when ddoc has no views now removes all index files.
+ - max_replication_retry_count now supports "infinity".
+ - Fix replication crash when source database has a document with empty ID.
+ - Fix deadlock when assigning couchjs processes to serve requests.
+ - Fixes to the document multipart PUT API.
+ - Fixes regarding file descriptor leaks for databases with views.
+
+-------------------------------------------------------------------
+Thu Dec 8 12:51:05 UTC 2011 - dmacvicar@suse.de
+
+- create /var/run/couchdb explicitly in the init script
+ (needed with /var/run as tmpfs)
+
+-------------------------------------------------------------------
+Thu Dec 1 11:20:40 UTC 2011 - coolo@suse.com
+
+- add libtool as buildrequire to avoid implicit dependency
+
+-------------------------------------------------------------------
+Fri Sep 30 00:10:35 UTC 2011 - saschpe@suse.de
+
+- Set license to Apache-2.0 (SPDX style)
+- Removed outdated %clean section
+- Use %_smp_mflags instead of %jobs macro
+- Use %make_install instead of %makeinstall
+
+-------------------------------------------------------------------
+Mon Jun 6 16:44:37 UTC 2011 - mrueckert@suse.de
+
+- update to version 1.1.0
+ - Native SSL support.
+ - Added support for HTTP range requests for attachments.
+ - Added built-in filters for _changes: _doc_ids and _design.
+ - Added configuration option for TCP_NODELAY aka “Nagle”.
+ - Allow wildcards in vhosts definitions.
+ - More granular ETag support for views.
+ - More flexible URL rewriter.
+ - Added OS Process module to manage daemons outside of CouchDB.
+ - Added HTTP Proxy handler for more scalable externals.
+ - Added _replicator database to manage replications.
+ - Multiple micro-optimizations when reading data.
+ - Added CommonJS support to map functions.
+ - Added stale=update_after query option that triggers a view
+ update after returning a stale=ok response.
+ - More explicit error messages when it’s not possible to access a
+ file due to lack of permissions.
+ - Added a “change password”-feature to Futon.
+
+-------------------------------------------------------------------
+Thu Mar 31 16:15:21 UTC 2011 - roosmaa@gmail.com
+
+- update to version 1.0.2
+ * Make test suite work with Safari and Chrome.
+ * Fixed animated progress spinner.
+ * Fix raw view document link due to overzealous URI encoding.
+ * Spell javascript correctly in loadScript(uri).
+ * Fix leaking file handles after compacting databases and views.
+ * Fix databases forgetting their validation function after
+ compaction.
+ * Fix occasional timeout errors after successfully compacting
+ large databases.
+ * Fix ocassional error when writing to a database that has just
+ been compacted.
+ * Fix occasional timeout errors on systems with slow or heavily
+ loaded IO.
+ * Fix for OOME when compactions include documents with many
+ conflicts.
+ * Fix for missing attachment compression when MIME types
+ included parameters.
+ * Preserve purge metadata during compaction to avoid spurious
+ view rebuilds.
+ * Fix spurious conflicts introduced when uploading an attachment
+ after a doc has been in a conflict.
+ See COUCHDB-902 for details.
+ * Fix for frequently edited documents in multi-master deployments
+ being duplicated in changes and _alldocs. See COUCHDDB-968 for
+ details on how to repair.
+ * Significantly higher read and write throughput against database
+ and view index files.
+ * Reduce lengthy stack traces.
+ * Allow logging of native types.
+ * Allow reduce=false parameter in map-only views.
+ * Fix parsing of Accept headers.
+ * Fix for multipart GET APIs when an attachment was created
+ during a local-local replication. See COUCHDB-1022 for details.
+ * Updated ibrowse library to 2.1.2 fixing numerous replication
+ issues.
+ * Make sure that the replicator respects HTTP settings defined
+ in the config.
+ * Fix error when the ibrowse connection closes unexpectedly.
+ * Fix authenticated replication (with HTTP basic auth) of design
+ documents with attachments.
++++ 170 more lines (skipped)
++++ between /dev/null
++++ and /work/SRC/openSUSE:12.3:Update/.couchdb.2720.new/couchdb.changes
New:
----
apache-couchdb-1.2.0.tar.gz
bnc-871111-remote-dos-via_uuids.patch
couchdb-futon-default-view-language.patch
couchdb.changes
couchdb.init
couchdb.spec
couchdb.sysconfig
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ couchdb.spec ++++++
#
# spec file for package couchdb
#
# Copyright (c) 2014 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
# upon. The license for this file, and modifications and additions to the
# file, is the same license as for the pristine package itself (unless the
# license for the pristine package is not an Open Source License, in which
# case the license is the MIT License). An "Open Source License" is a
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
# Please submit bugfixes or comments via http://bugs.opensuse.org/
#
#
%define couchdb_user couchdb
%define couchdb_group couchdb
%define couchdb_home %{_localstatedir}/lib/couchdb
Name: couchdb
Version: 1.2.0
Release: 0
Summary: A document database server, accessible via a RESTful JSON API
License: Apache-2.0
Group: Productivity/File utilities
Url: http://couchdb.apache.org/
Source0: http://www.apache.org/dist/%{name}/releases/%{version}/apache-couchdb-%{version}.tar.gz
Source1: %{name}.init
Source2: %{name}.sysconfig
Patch0: couchdb-futon-default-view-language.patch
Patch1: bnc-871111-remote-dos-via_uuids.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
BuildRequires: automake
BuildRequires: erlang
BuildRequires: gcc-c++
BuildRequires: help2man
BuildRequires: libicu-devel
BuildRequires: libtool
%if 0%{?suse_version} < 1200
BuildRequires: mozilla-xulrunner192-devel
%else
BuildRequires: js-devel
%endif
BuildRequires: pkgconfig
Requires: erlang
Requires: logrotate
Requires(post): aaa_base
Requires(preun):aaa_base
# Users and groups
Requires(pre): pwdutils
PreReq: %insserv_prereq %fillup_prereq
%description
Apache CouchDB is a distributed, fault-tolerant and schema-free
document-oriented database accessible via a RESTful HTTP/JSON API.
Among other features, it provides robust, incremental replication
with bi-directional conflict detection and resolution, and is
queryable and indexable using a table-oriented view engine with
JavaScript acting as the default view definition language.
%prep
%setup -q -n apache-couchdb-%{version}
%patch0
%patch1 -p1
%build
autoreconf -fi
# Versions of SpiderMonkey after the js185-1.0.0 release remove the optional
# enforcement of preventing anonymous functions in a statement context. This
# will most likely break your existing JavaScript code as well as render all
# example code invalid.
# If you wish to ignore this error pass --enable-js-trunk to ./configure.
#
# We need to define the use of gnu99 standard. It seems expected in the code, but not passed.
export CFLAGS="%{optflags} -std=gnu99"
%configure --enable-js-trunk
make %{?_smp_mflags}
%install
%makeinstall
## Install couchdb initscript
install -D -m 0755 %{SOURCE1} %{buildroot}%{_initddir}/%{name}
install -d %{buildroot}%{_sbindir}
ln -s %{_initddir}/couchdb %{buildroot}%{_sbindir}/rccouchdb
# Sysconfig template
mkdir -p %{buildroot}%{_var}/adm/fillup-templates/
install -p -D -m 644 %{SOURCE2} %{buildroot}%{_var}/adm/fillup-templates/sysconfig.couchdb
# Create needed directories
install -d %{buildroot}%{_localstatedir}/{log,lib}/couchdb
install -d %{buildroot}%{_sysconfdir}/couchdb/{default.d,local.d}
# Remove unecessary files
rm %{buildroot}%{_sysconfdir}/rc.d/couchdb
rm -rf %{buildroot}%{_datadir}/doc/couchdb
# clean-up .la archives
find %{buildroot} -name '*.la' -delete -print
%pre
getent group %{couchdb_group} >/dev/null || groupadd -r %{couchdb_group} || :
if getent passwd %{couchdb_user} >/dev/null ; then
# There was a bad login shell up to openSUSE 12.2 (bnc#796242), SLE11SP2 used /bin/bash. Fix it.
usermod -s /usr/sbin/nologin %{couchdb_user} || :
else
useradd -r -g %{couchdb_group} -d %{couchdb_home} -s /usr/sbin/nologin \
-c "Couchdb Database Server" %{couchdb_user} || :
fi
%post
%{fillup_and_insserv couchdb}
mkdir -p %{_localstatedir}/run/couchdb
%postun
%restart_on_update couchdb
%insserv_cleanup
%preun
%stop_on_removal couchdb
%files
%defattr(-,root,root,-)
%doc AUTHORS BUGS CHANGES LICENSE NEWS NOTICE README THANKS
%dir %{_sysconfdir}/couchdb
%dir %{_sysconfdir}/couchdb/local.d
%dir %{_sysconfdir}/couchdb/default.d
%config(noreplace) %attr(0644, %{couchdb_user}, root) %{_sysconfdir}/couchdb/default.ini
%config(noreplace) %attr(0644, %{couchdb_user}, root) %{_sysconfdir}/couchdb/local.ini
%config(noreplace) %{_sysconfdir}/default/couchdb
%config(noreplace) %{_sysconfdir}/logrotate.d/couchdb
%{_initddir}/couchdb
%{_var}/adm/fillup-templates/sysconfig.couchdb
%{_sbindir}/rccouchdb
%{_bindir}/*
%{_libdir}/couchdb
%{_datadir}/couchdb
%{_mandir}/man1/*
%dir %attr(0755, %{couchdb_user}, root) %{_localstatedir}/log/couchdb
%ghost %dir %attr(0755, %{couchdb_user}, root) %{_localstatedir}/run/couchdb
%dir %attr(0755, %{couchdb_user}, root) %{_localstatedir}/lib/couchdb
%changelog
++++++ bnc-871111-remote-dos-via_uuids.patch ++++++
From: Robert Newson
participants (1)
-
root@hilbert.suse.de