Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package strongswan for openSUSE:Factory checked in at 2025-10-29 21:04:14 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/strongswan (Old) and /work/SRC/openSUSE:Factory/.strongswan.new.1980 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "strongswan" Wed Oct 29 21:04:14 2025 rev:103 rq:1314220 version:6.0.3 Changes: -------- --- /work/SRC/openSUSE:Factory/strongswan/strongswan.changes 2025-07-22 12:53:53.044016539 +0200 +++ /work/SRC/openSUSE:Factory/.strongswan.new.1980/strongswan.changes 2025-10-29 21:04:28.741115949 +0100 @@ -1,0 +2,16 @@ +Tue Oct 28 23:17:38 UTC 2025 - Jan Engelhardt <[email protected]> + +- Update to release 6.0.3 + * Fixed a heap buffer overflow [CVE-2025-62291] in the + eap-mschapv2 plugin. + * Improved the detection of already unwrapped CKA_EC_POINTs in + the pkcs11 plugin, because the previous check could cause false + positives that resulted in mangled EC points. + * Initiated IKE SAs tracked by the controller (if initiated + manually or via start action) or the trap-manager (if initiated + via acquire) are now migrated if the SA is redirected during + IKE_AUTH (which creates a new IKE SA object). + * Fallback to the IKE identity if the client does not provide an + EAP-Identity. + +------------------------------------------------------------------- Old: ---- strongswan-6.0.2.tar.bz2 strongswan-6.0.2.tar.bz2.sig New: ---- strongswan-6.0.3.tar.bz2 strongswan-6.0.3.tar.bz2.sig ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ strongswan.spec ++++++ --- /var/tmp/diff_new_pack.VX7yj7/_old 2025-10-29 21:04:29.729157951 +0100 +++ /var/tmp/diff_new_pack.VX7yj7/_new 2025-10-29 21:04:29.733158120 +0100 @@ -1,7 +1,7 @@ # # spec file for package strongswan # -# Copyright (c) 2025 SUSE LLC +# Copyright (c) 2025 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -39,7 +39,7 @@ %bcond_without systemd Name: strongswan -Version: 6.0.2 +Version: 6.0.3 Release: 0 Summary: IPsec-based VPN solution License: GPL-2.0-or-later ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.VX7yj7/_old 2025-10-29 21:04:29.781160162 +0100 +++ /var/tmp/diff_new_pack.VX7yj7/_new 2025-10-29 21:04:29.785160331 +0100 @@ -1,5 +1,5 @@ -mtime: 1752828417 -commit: 53632c49fad42e0d2ff502512a76d7c6158cbaa97a5984e755be4fcbf2c2d5c7 +mtime: 1761693978 +commit: ead39ca8f4f235460dd3a8c626cd7d2d991c783a140d17af4377e023c654e71f url: https://src.opensuse.org/jengelh/strongswan revision: master ++++++ build.specials.obscpio ++++++ ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2025-10-29 00:27:01.000000000 +0100 @@ -0,0 +1 @@ +.osc ++++++ strongswan-6.0.2.tar.bz2 -> strongswan-6.0.3.tar.bz2 ++++++ ++++ 12071 lines of diff (skipped)
