Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package 389-ds for openSUSE:Factory checked in at 2025-03-27 22:31:37 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/389-ds (Old) and /work/SRC/openSUSE:Factory/.389-ds.new.2696 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "389-ds" Thu Mar 27 22:31:37 2025 rev:81 rq:1256369 version:3.1.2~git55.7fbd4526 Changes: -------- --- /work/SRC/openSUSE:Factory/389-ds/389-ds.changes 2025-02-19 16:00:02.659820454 +0100 +++ /work/SRC/openSUSE:Factory/.389-ds.new.2696/389-ds.changes 2025-03-27 22:31:40.767061792 +0100 @@ -1,0 +2,37 @@ +Thu Mar 27 01:33:33 UTC 2025 - [email protected] + +- bsc#1239722 - CVE-2025-2487 - 389-ds: null pointer dereference leads to denial of service +- Update to version 3.1.2~git55.7fbd4526: + * Security fix for CVE-2025-2487 + * Issue 6500 - Fix covscan and ASAN issue + * Issue 6571 - Nested group does not receive memberOf attribute (#6679) + * Issue 6676 - Add GitHub workflow action and fix pbkdf2 tests (#6677) + * Issue 6671 - tombstone_fixup_test sometime fails on bdb + * Issue 6680 - instance read-only mode is broken (#6681) + * Issue 6683 - test_healthcheck_replication_out_of_sync_broken mail fail (#6684) + * Ignore replica busy condition in healthcheck (#6630) + * Issue 6613 - test_reindex_task_creates_abandoned_index_file fails (#6674) + * Issue 6663 - CLI - add error log JSON settings to dsconf + * Issue 6663 - RFE - Add option to write error log in JSON + * Issue 6665 - UI - Need to refresh log settings after saving + * Issue 6639 - Fix crash in upgrade when removing subtree name attribute + * Issue 6656 - UI - Enhance Monitor Log Viewer with Patternfly LogViewer component (#6657) + * Issue 6655 - fix replication release replica decoding error + * Issue 6653 - Cleanup error messages + * Issue 6639 - remove all the code related to entryrdn_get_switch + * Issue 6429 - UI - clicking on a database suffix under the Monitor tab crashes UI (#6610) + * Issue 6632 - Replication init fails with ASAN build + * Issue 6625 - UI - various fixes part 3 + * Revert "Issue #6562 - Prevent undefined behaviour in in filter_stuff_func (#6563)" (#6634) + * Issue 6625 - UI - fix next round of bugs + * Issue 6599 - Access JSON logging - lib389/CI/minor fixes + * Issue #6562 - Prevent undefined behaviour in in filter_stuff_func (#6563) + * Bump esbuild from 0.24.0 to 0.25.0 in /src/cockpit/389-console (#6602) + * Issue 6327 - Fix incorrect sizeof() usage for pointer in get_ip_str() function (#6629) + * Issue 6553 - Update concread to 0.5.4 and refactor statistics tracking (#6607) + * Issue 6619 - test_dblib_migration fails on RHEL10 (#6620) + * Issue 6617 - test_vlv_as_freeipa_backup_restore fails (#6618) + * Issue 6625 - UI - fix various issues with LDAP browser, etc + * Issue 6623 - UI - Generic updates (#6624) + +------------------------------------------------------------------- Old: ---- 389-ds-base-3.1.2~git24.744df65e.tar.zst New: ---- 389-ds-base-3.1.2~git55.7fbd4526.tar.zst ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ 389-ds.spec ++++++ --- /var/tmp/diff_new_pack.fMS7eY/_old 2025-03-27 22:31:41.851106664 +0100 +++ /var/tmp/diff_new_pack.fMS7eY/_new 2025-03-27 22:31:41.851106664 +0100 @@ -33,7 +33,7 @@ %define svrcorelib libsvrcore0 Name: 389-ds -Version: 3.1.2~git24.744df65e +Version: 3.1.2~git55.7fbd4526 Release: 0 Summary: 389 Directory Server License: GPL-3.0-or-later AND MPL-2.0 @@ -81,6 +81,7 @@ BuildRequires: %use_python-cryptography BuildRequires: %use_python-devel BuildRequires: %use_python-ldap >= 3 +BuildRequires: %use_python-psutil BuildRequires: %use_python-pyasn1 BuildRequires: %use_python-pyasn1-modules BuildRequires: %use_python-python-dateutil ++++++ 389-ds-base-3.1.2~git24.744df65e.tar.zst -> 389-ds-base-3.1.2~git55.7fbd4526.tar.zst ++++++ ++++ 20615 lines of diff (skipped) ++++++ 389-ds-base.obsinfo ++++++ --- /var/tmp/diff_new_pack.fMS7eY/_old 2025-03-27 22:31:42.819146734 +0100 +++ /var/tmp/diff_new_pack.fMS7eY/_new 2025-03-27 22:31:42.823146899 +0100 @@ -1,5 +1,5 @@ name: 389-ds-base -version: 3.1.2~git24.744df65e -mtime: 1739887849 -commit: 744df65e75035466cf501a2a2809d223f7466a8f +version: 3.1.2~git55.7fbd4526 +mtime: 1742983996 +commit: 7fbd4526c42806826ca1b335c5686b054486e613 ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.fMS7eY/_old 2025-03-27 22:31:42.907150377 +0100 +++ /var/tmp/diff_new_pack.fMS7eY/_new 2025-03-27 22:31:42.907150377 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/389ds/389-ds-base.git</param> - <param name="changesrevision">744df65e75035466cf501a2a2809d223f7466a8f</param></service></servicedata> + <param name="changesrevision">7fbd4526c42806826ca1b335c5686b054486e613</param></service></servicedata> (No newline at EOF) ++++++ vendor.tar.zst ++++++ /work/SRC/openSUSE:Factory/389-ds/vendor.tar.zst /work/SRC/openSUSE:Factory/.389-ds.new.2696/vendor.tar.zst differ: char 7, line 1
