Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package velocity-engine for openSUSE:Factory
checked in at 2021-12-14 22:01:54
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/velocity-engine (Old)
and /work/SRC/openSUSE:Factory/.velocity-engine.new.2520 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "velocity-engine"
Tue Dec 14 22:01:54 2021 rev:2 rq:940438 version:2.3
Changes:
--------
--- /work/SRC/openSUSE:Factory/velocity-engine/velocity-engine.changes
2021-12-13 20:50:30.664639323 +0100
+++
/work/SRC/openSUSE:Factory/.velocity-engine.new.2520/velocity-engine.changes
2021-12-14 22:02:07.807145667 +0100
@@ -1,0 +2,18 @@
+Tue Dec 14 10:38:40 UTC 2021 - Fridrich Strba <[email protected]>
+
+- Version 2.3:
+ * Fixes:
+ + Fix parser bug (newline and space inside an empty inline map
+ definition). Fixes VELOCITY-927.
+ + Backported Spring framework Velocity Engine integration
+ classes from Spring 4.x, in the new module spring-velocity-support.
+ Fixes VELOCITY-933.
+ + Let SecureUberspector block methods on ClassLoader and subclasses.
+ Fixes VELOCITY-931.
+ + Added Travis CI.
+ + Don't leak classes via Stop.STOP_ALL stack trace.
+- Removed patch:
+ * velocity-engine-2.2-CVE-2020-13936.patch
+ + Integrated upstream
+
+-------------------------------------------------------------------
Old:
----
velocity-engine-2.2-CVE-2020-13936.patch
velocity-engine-2.2.tar.xz
New:
----
velocity-engine-2.3.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ velocity-engine.spec ++++++
--- /var/tmp/diff_new_pack.2bkaiE/_old 2021-12-14 22:02:08.411146011 +0100
+++ /var/tmp/diff_new_pack.2bkaiE/_new 2021-12-14 22:02:08.415146013 +0100
@@ -38,15 +38,14 @@
applications to be developed according to a true MVC model.
Name: velocity-engine
-Version: 2.2
+Version: 2.3
Release: 0
Summary: Apache Velocity - Engine
License: Apache-2.0
Group: Development/Libraries/Java
URL: https://velocity.apache.org/
Source0: %{name}-%{version}.tar.xz
-Patch1: velocity-engine-2.2-CVE-2020-13936.patch
-Patch2: build.patch
+Patch1: build.patch
BuildRequires: fdupes
BuildRequires: maven-local
BuildRequires: mvn(com.google.code.maven-replacer-plugin:replacer)
@@ -119,7 +118,8 @@
%prep
%setup -q
%patch1 -p1
-%patch2 -p1
+
+%pom_disable_module spring-velocity-support
%pom_remove_plugin org.apache.maven.plugins:maven-enforcer-plugin
%pom_remove_plugin org.apache.maven.plugins:maven-source-plugin
++++++ _service ++++++
--- /var/tmp/diff_new_pack.2bkaiE/_old 2021-12-14 22:02:08.451146034 +0100
+++ /var/tmp/diff_new_pack.2bkaiE/_new 2021-12-14 22:02:08.459146039 +0100
@@ -2,7 +2,7 @@
<service name="tar_scm" mode="disabled">
<param name="scm">git</param>
<param
name="url">http://gitbox.apache.org/repos/asf/velocity-engine.git</param>
- <param name="revision">2.2</param>
+ <param name="revision">2.3</param>
<param name="versionformat">@PARENT_TAG@</param>
</service>
<service name="recompress" mode="disabled">
++++++ velocity-engine-2.2.tar.xz -> velocity-engine-2.3.tar.xz ++++++
++++ 13219 lines of diff (skipped)
