Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package socat for openSUSE:Factory checked in at 2024-12-13 22:31:32 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/socat (Old) and /work/SRC/openSUSE:Factory/.socat.new.29675 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "socat" Fri Dec 13 22:31:32 2024 rev:48 rq:1230116 version:1.8.0.2 Changes: -------- --- /work/SRC/openSUSE:Factory/socat/socat.changes 2024-06-19 16:36:33.505351386 +0200 +++ /work/SRC/openSUSE:Factory/.socat.new.29675/socat.changes 2024-12-13 22:32:34.599656054 +0100 @@ -1,0 +2,42 @@ +Wed Dec 11 12:13:49 UTC 2024 - Wolfgang Frisch <wolfgang.fri...@suse.com> + +- Update to 1.8.0.2: + - Security fix for readline.sh: arbitrary file overwrite via predictable /tmp + directory (bsc#1225462 CVE-2024-54661) + +- Update to 1.8.0.1: + - Bug fixes + - UDP-SENDTO, UDPLITE-SENDTO, and IP-SENDTO addresses now select an IPv4 + address in case the server name resolves to both IPv4 and IPv6 addresses. + - Guard applyopts_termios_value() with WITH_TERMIOS. + - In some situations xioclose() was called nested what could cause hanging + of OpenSSL in pthread_rwlock_wrlock(). + - socat 1.8.0.0 with addresses of type RECVFROM and option fork, where the + second address failed to connect/open in the child process, entered a + fork loop that was only stopped by FD exhaustion caused by FD leak. + - socat 1.8.0.0 had an FD leak with addresses of type RECVFROM with fork. + - With version 1.8.0.0, options ipv6-join-group and ipv6-join-source-group + did not work. + - IP-SENDTO and option pf (protocol-family) with protocol name (vs.numeric + argument) failed with message: E retropts_int(): trailing garbage in + numerical arg of option "protocol-family". + - Fixed a possible buffer overrun with long log lines. In fact it does not + write beyond end of buffer but lets pass excessive data to the write() + function. + - Reworked domain name resolution, centralized IPv4/IPv6 sorting. + - Print warning about not checking CRLs in OpenSSL only in the first child + process. + - Features + - Total inactivity timeout option -T 0 now means 0.0 seconds; + - Changed socat-chain.sh, socat-mux.sh, and socat-broker.sh to work with + older Socat versions. + - socat-mux.sh and socat-broker.sh, when run as root, now internally use + low (512..1023) UDP ports to increase security. + - Added option ai-all (sets AI_ALL flag of getaddrinfo() resolver) + - Socks5 now also allows syntax without socks port, and supports option + socksport. + +- Removed 0004-udp-listen-bind4.patch (fixed by upstream socat-1.8.0.1). +- Refreshed socat-test-without-tty.patch to match socat-1.8.0.1. + +------------------------------------------------------------------- Old: ---- 0004-udp-listen-bind4.patch socat-1.8.0.0.tar.gz New: ---- socat-1.8.0.2.tar.gz BETA DEBUG BEGIN: Old: - Removed 0004-udp-listen-bind4.patch (fixed by upstream socat-1.8.0.1). - Refreshed socat-test-without-tty.patch to match socat-1.8.0.1. BETA DEBUG END: ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ socat.spec ++++++ --- /var/tmp/diff_new_pack.Fd08Bd/_old 2024-12-13 22:32:35.055675072 +0100 +++ /var/tmp/diff_new_pack.Fd08Bd/_new 2024-12-13 22:32:35.055675072 +0100 @@ -18,7 +18,7 @@ Name: socat -Version: 1.8.0.0 +Version: 1.8.0.2 Release: 0 Summary: Multipurpose relay for bidirectional data transfer License: MIT AND SUSE-GPL-2.0-with-openssl-exception @@ -32,8 +32,6 @@ Patch1: socat-ignore-tests-failure-boo1078346.patch # Support build environments without a TTY Patch2: socat-test-without-tty.patch -# FIX from termux , https://bugzilla.suse.com/show_bug.cgi?id=1226459, https://github.com/termux/termux-packages/issues/18645 -Patch3: 0004-udp-listen-bind4.patch BuildRequires: iputils BuildRequires: net-tools BuildRequires: openssl-devel ++++++ socat-1.8.0.0.tar.gz -> socat-1.8.0.2.tar.gz ++++++ ++++ 8847 lines of diff (skipped) ++++++ socat-test-without-tty.patch ++++++ --- /var/tmp/diff_new_pack.Fd08Bd/_old 2024-12-13 22:32:35.275684248 +0100 +++ /var/tmp/diff_new_pack.Fd08Bd/_new 2024-12-13 22:32:35.279684415 +0100 @@ -12,7 +12,7 @@ + TTY="-t $TTY" +fi +pkill -USR1 $TTY socat || { echo "pkill $TTY -USR1 socat"; } - relsleep 1 + relsleep 2 -pkill -t $TTY socat +pkill $TTY socat wait
