Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package rubygem-minitar for openSUSE:Factory
checked in at 2021-01-21 21:57:04
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/rubygem-minitar (Old)
and /work/SRC/openSUSE:Factory/.rubygem-minitar.new.28504 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "rubygem-minitar"
Thu Jan 21 21:57:04 2021 rev:3 rq:865298 version:0.9
Changes:
--------
--- /work/SRC/openSUSE:Factory/rubygem-minitar/rubygem-minitar.changes
2017-02-03 20:00:32.884866898 +0100
+++
/work/SRC/openSUSE:Factory/.rubygem-minitar.new.28504/rubygem-minitar.changes
2021-01-21 21:57:06.469851751 +0100
@@ -1,0 +2,75 @@
+Mon Feb 10 15:07:34 UTC 2020 - Stephan Kulow <[email protected]>
+
+- updated to version 0.9
+ see installed History.md
+
+ ## 0.9 / 2019-09-04
+
+ * jtappa added the ability to skip fsync with a new option to
Minitar.unpack
+ and Minitar::Input#extract_entry. Provide `:fsync => false` as the last
+ parameter to enable. Merged from a modified version of PR [#37][].
+
+-------------------------------------------------------------------
+Mon Jan 14 13:46:03 UTC 2019 - Stephan Kulow <[email protected]>
+
+- updated to version 0.8
+ see installed History.md
+
+ ## 0.8 / 2019-01-05
+
+ * inkstak resolved an issue introduced in the fix for [#31][] by allowing
+ spaces to be considered valid characters in strict octal handling. Octal
+ conversion ignores leading spaces. Merged from a slightly modified
version
+ of PR [#35][].
+
+ * dearblue contributed PR [#32][] providing an explicit call to #bytesize
for
+ strings that include multibyte characters. The PR has been modified to be
+ compatible with older versions of Ruby and extend tests.
+
+ * Akinori MUSHA (knu) contributed PR [#36][] that treats certain badly
+ encoded regular files (with names ending in `/`) as if they were
+ directories on decode.
+
+-------------------------------------------------------------------
+Thu Nov 22 05:21:32 UTC 2018 - Stephan Kulow <[email protected]>
+
+- updated to version 0.7
+ see installed History.md
+
+ ## 0.7 / 2018-02-19
+
+ * Fixed issue [#28][] with a modified version of PR [#29][] covering the
+ security policy and position for Minitar. Thanks so much to ooooooo\_q
for
+ the report and an initial patch. Additional information was added as
+ [#30][].
+
+ * dearblue contributed PR [#33][] providing a fix for Minitar::Reader when
+ the IO-like object does not have a `#pos` method.
+
+ * Kevin McDermott contributed PR [#34][] so that an InvalidTarStream is
+ raised if the tar header is not valid, preventing incorrect streaming of
+ files from a non-tarfile. This is a minor breaking change, so the version
+ has been bumped accordingly.
+
+ * Kazuyoshi Kato contributed PR [#26][] providing support for the GNU tar
+ long filename extension.
+
+ * Addressed a potential DOS with negative size fields in tar headers
+ ([#31][]). This has been handled in two ways: the size field in a tar
+ header is interpreted as a strict octal value and the Minitar reader will
+ raise an InvalidTarStream if the size ends up being negative anyway.
+
+-------------------------------------------------------------------
+Tue May 23 09:06:50 UTC 2017 - [email protected]
+
+- Remove bsc_1021740.patch for CVE-2016-10173
+ This vulneribility has been fixed by upstream with v0.6.1:
+
https://github.com/halostatue/minitar/commit/30e62689b614938dc96b4f2cb8e033e72f650670
+
+-------------------------------------------------------------------
+Tue Feb 14 05:36:26 UTC 2017 - [email protected]
+
+- updated to version 0.6.1
+ ChangeLog removed upstream
+
+-------------------------------------------------------------------
Old:
----
bsc_1021740.patch
minitar-0.5.4.gem
New:
----
minitar-0.9.gem
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ rubygem-minitar.spec ++++++
--- /var/tmp/diff_new_pack.1SnFA0/_old 2021-01-21 21:57:07.037851945 +0100
+++ /var/tmp/diff_new_pack.1SnFA0/_new 2021-01-21 21:57:07.037851945 +0100
@@ -1,7 +1,7 @@
#
# spec file for package rubygem-minitar
#
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2021 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -12,7 +12,7 @@
# license that conforms to the Open Source Definition (Version 1.9)
# published by the Open Source Initiative.
-# Please submit bugfixes or comments via http://bugs.opensuse.org/
+# Please submit bugfixes or comments via https://bugs.opensuse.org/
#
@@ -24,47 +24,39 @@
#
Name: rubygem-minitar
-Version: 0.5.4
+Version: 0.9
Release: 0
%define mod_name minitar
%define mod_full_name %{mod_name}-%{version}
BuildRoot: %{_tmppath}/%{name}-%{version}-build
-BuildRequires: %{ruby >= 1.8.2}
+BuildRequires: %{ruby >= 1.8}
BuildRequires: %{rubygem gem2rpm}
BuildRequires: %{rubygem rdoc > 3.10}
BuildRequires: ruby-macros >= 5
-BuildRequires: update-alternatives
-Url: http://www.github.com/atoulme/minitar
-Source: http://rubygems.org/gems/%{mod_full_name}.gem
+URL: https://github.com/halostatue/minitar/
+Source: https://rubygems.org/gems/%{mod_full_name}.gem
Source1: gem2rpm.yml
-# MANUAL
-Patch0: bsc_1021740.patch
-# /MANUAL
-Summary: Provides POSIX tarchive management from Ruby programs
+Summary: The minitar library is a pure-Ruby library that provides the
ability
License: Ruby
Group: Development/Languages/Ruby
-PreReq: update-alternatives
%description
-Archive::Tar::Minitar is a pure-Ruby library and command-line utility that
-provides the ability to deal with POSIX tar(1) archive files. The
-implementation is based heavily on Mauricio Ferna'ndez's implementation in
-rpa-base, but has been reorganised to promote reuse in other projects. Antoine
-Toulme forked the original project on rubyforge to place it on github, under
-http://www.github.com/atoulme/minitar.
+The minitar library is a pure-Ruby library that provides the ability to deal
+with POSIX tar(1) archive files.
+This is release 0.9, adding a minor feature to Minitar.unpack and
+Minitar::Input#extract_entry that when <tt>:fsync => false</tt> is provided,
+fsync will be skipped.
+minitar (previously called Archive::Tar::Minitar) is based heavily on code
+originally written by Mauricio Julio Fern??ndez Pradier for the rpa-base
+project.
%prep
-%gem_unpack
-%patch0 -p1
-find -type f -print0 | xargs -0 touch -r %{S:0}
-%gem_build
%build
%install
%gem_install \
- --symlink-binaries \
- --doc-files="ChangeLog README" \
+ --doc-files="History.md Licence.md README.rdoc" \
-f
%gem_packages
++++++ gem2rpm.yml ++++++
--- /var/tmp/diff_new_pack.1SnFA0/_old 2021-01-21 21:57:07.061851953 +0100
+++ /var/tmp/diff_new_pack.1SnFA0/_new 2021-01-21 21:57:07.061851953 +0100
@@ -1,4 +1,2 @@
---
:license: 'Ruby'
-:patches:
- bsc_1021740.patch: -p1
++++++ minitar-0.5.4.gem -> minitar-0.9.gem ++++++
++++ 6025 lines of diff (skipped)
