Hello community, here is the log from the commit of package uwsgi for openSUSE:Factory checked in at 2018-03-01 12:07:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/uwsgi (Old) and /work/SRC/openSUSE:Factory/.uwsgi.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "uwsgi" Thu Mar 1 12:07:39 2018 rev:25 rq:580881 version:2.0.16 Changes: -------- --- /work/SRC/openSUSE:Factory/uwsgi/uwsgi.changes 2017-12-14 10:55:54.096195926 +0100 +++ /work/SRC/openSUSE:Factory/.uwsgi.new/uwsgi.changes 2018-03-01 12:07:40.206396934 +0100 @@ -1,0 +2,45 @@ +Tue Feb 27 11:53:27 UTC 2018 - bjorn.lie@gmail.com + +- Update License tag to SPDX 3 version: + Apache-2.0 AND GPL-2.0-only WITH GCC-exception-2.0. + +------------------------------------------------------------------- +Sun Feb 18 18:51:03 UTC 2018 - michael@stroeder.com + +- removed obsolete reproducible.patch +- Update to 2.0.16: + * [CVE-2018-6758] Stack-based buffer overflow in + core/utils.c:uwsgi_expand_path() + * Backported early_post_jail plugin hook (Bjørnar Ness) + * Fixed ipv6 suupport for http-socket (James Brown) + * Enable execinfo on DragonFly BSD (Aaron LI) + * Fix inet_ntop buffer size (Orivej Desh) + * Add worker running time metrics (Serge/yasek) + * Backported safe-pidfile, safe-pidfile2 (Nate Coraor) + * Stop using libxml2 by default on osx + * Fixed uwsgi_kvlist_parse signature + * Backport http range fixes from master (Curtis Maloney, Sokolov Yura) + * relicensed mod_proxy_uwsgi to Apache 2.0 + * logging: Add ${millis} support to json encode + * plugins/router_xmldir: fixup invalid locale check (Riccardo Magliocchetti) + * Add ssl-verify-depth flag to set the max Client CA chain length (Paul Tagliamonte) + * Allow to override build date (Bernhard M. Wiedemann) + * Python 3 plugin: improved thread names handling (Jyrki Muukkonen, Mark Meyer) + * Added uwsgi_resolve_ip for redis host (ahmbas) + * plugins/gevent: Fix signal handlers (Maslov Alexander) + * Write x509 DER to the uwsgi buffer (Paul Tagliamonte) + * plugin/http: Fix compilation (Melvyn Sopacua) + * Fixed emperor throttling system (Jeremy Hiatt) + * Fix application loading without Plack after excluding “.” from @INC in new Perl versions (Anton Petrusevich) + * Fix MULE MSG QUEUE IS FULL message hint (Eugene Tataurov) + * Build System: support k_minor has a _xxx suffix (TOGO Li) + * Fixed drop-after-* options (Robert DeRose) + * Add mule_send_msg success indicator (Josh Tiras) + * Properly check item size in uwsgi_queue_push (Josh Tiras) + * FastRouter / HTTP Router can now have a ‘fallback’ key configured + * HTTP Router now supports post-buffer, just like FastRouter + * Fix handling of env in embedded dict in Python plugin (could cause segfaults in single thread mode) + * Add support for Brotli (.br) with –static-gzip + * Back-ported HTTP/1.1 support (–http11-socket) from 2.1 + +------------------------------------------------------------------- Old: ---- reproducible.patch uwsgi-2.0.15.tar.gz New: ---- uwsgi-2.0.16.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ uwsgi.spec ++++++ --- /var/tmp/diff_new_pack.NUciP0/_old 2018-03-01 12:07:41.234360034 +0100 +++ /var/tmp/diff_new_pack.NUciP0/_new 2018-03-01 12:07:41.238359891 +0100 @@ -1,7 +1,7 @@ # # spec file for package uwsgi # -# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,10 +17,10 @@ Name: uwsgi -Version: 2.0.15 +Version: 2.0.16 Release: 0 Summary: Application Container Server for Networked/Clustered Web Applications -License: GPL-2.0-with-GCC-exception +License: Apache-2.0 AND GPL-2.0-only WITH GCC-exception-2.0 Group: Productivity/Networking/Web/Servers Url: https://uwsgi-docs.readthedocs.io/en/latest/ Source: http://projects.unbit.it/downloads/uwsgi-%{version}.tar.gz @@ -40,8 +40,6 @@ Patch2: uwsgi-1.9.13-objc_gc-no-fobjc-gc.patch # PATCH-FIX-OPENSUSE uwsgi-1.9.11-systemd_logger-old_systemd.patch - Older systemd in 12.2 does not implicity include syslog.h Patch3: uwsgi-1.9.11-systemd_logger-old_systemd.patch -# PATCH-FIX-UPSTREAM reproducible.patch https://github.com/unbit/uwsgi/pull/1561 -Patch4: reproducible.patch %define apache_branch %(rpm -q --qf %%{version} apache2 | grep -E -o "2\\.[0-9]+") %if "%{apache_branch}" == "2.4" %define apxs %{_bindir}/apxs2 @@ -435,7 +433,6 @@ %patch1 -p1 %patch2 -p1 %patch3 -p1 -%patch4 -p1 # Generate a config that builds all plugins except for examples and stuff we # can't satisfy the requirements for or are just broken excluded_plugins="" ++++++ uwsgi-2.0.15.tar.gz -> uwsgi-2.0.16.tar.gz ++++++ ++++ 1851 lines of diff (skipped)