Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package istioctl for openSUSE:Factory checked in at 2026-01-12 10:25:49 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/istioctl (Old) and /work/SRC/openSUSE:Factory/.istioctl.new.1928 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "istioctl" Mon Jan 12 10:25:49 2026 rev:43 rq:1326629 version:1.28.2 Changes: -------- --- /work/SRC/openSUSE:Factory/istioctl/istioctl.changes 2025-12-05 16:55:21.857193226 +0100 +++ /work/SRC/openSUSE:Factory/.istioctl.new.1928/istioctl.changes 2026-01-12 10:34:27.665935793 +0100 @@ -1,0 +2,14 @@ +Sun Jan 11 10:49:56 UTC 2026 - Johannes Kastl <[email protected]> + +- update to 1.28.2: + https://istio.io/latest/news/releases/1.28.x/announcing-1.28.2/ + * Security Update + - CVE-2025-62408 (CVSS score 5.3, Moderate): Use after free can + crash Envoy due to malfunctioning or compromised DNS. This is + a heap use-after-free vulnerability in the c-ares library + that can be exploited by an attacker controlling the local + DNS infrastructure to cause a Denial of Service (DoS) in + Envoy. + * no istioctl-related changes + +------------------------------------------------------------------- Old: ---- istioctl-1.28.1.obscpio New: ---- istioctl-1.28.2.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ istioctl.spec ++++++ --- /var/tmp/diff_new_pack.uQAZCa/_old 2026-01-12 10:34:30.106036215 +0100 +++ /var/tmp/diff_new_pack.uQAZCa/_new 2026-01-12 10:34:30.126037038 +0100 @@ -1,7 +1,7 @@ # # spec file for package istioctl # -# Copyright (c) 2025 SUSE LLC and contributors +# Copyright (c) 2026 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: istioctl -Version: 1.28.1 +Version: 1.28.2 Release: 0 Summary: CLI for the istio servic mesh in Kubernetes License: Apache-2.0 ++++++ _service ++++++ --- /var/tmp/diff_new_pack.uQAZCa/_old 2026-01-12 10:34:30.542054160 +0100 +++ /var/tmp/diff_new_pack.uQAZCa/_new 2026-01-12 10:34:30.582055805 +0100 @@ -3,7 +3,7 @@ <param name="url">https://github.com/istio/istio</param> <param name="scm">git</param> <param name="exclude">.git</param> - <param name="revision">1.28.1</param> + <param name="revision">1.28.2</param> <param name="versionformat">@PARENT_TAG@</param> <param name="changesgenerate">disable</param> <param name="filename">istioctl</param> ++++++ istioctl-1.28.1.obscpio -> istioctl-1.28.2.obscpio ++++++ ++++ 1949 lines of diff (skipped) ++++++ istioctl.obsinfo ++++++ --- /var/tmp/diff_new_pack.uQAZCa/_old 2026-01-12 10:34:39.954441530 +0100 +++ /var/tmp/diff_new_pack.uQAZCa/_new 2026-01-12 10:34:39.958441694 +0100 @@ -1,5 +1,5 @@ name: istioctl -version: 1.28.1 -mtime: 1764262786 -commit: 6268e25f089a4b0f726082053cf630490c235cdc +version: 1.28.2 +mtime: 1766002106 +commit: ab413ac6c1f40b2f7c69d97e0db4e712e4ef1ecc ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/istioctl/vendor.tar.gz /work/SRC/openSUSE:Factory/.istioctl.new.1928/vendor.tar.gz differ: char 20, line 1
