commit heroic-games-launcher for openSUSE:Factory

Source-Sync Fri, 13 Mar 2026 13:22:00 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package heroic-games-launcher for 
openSUSE:Factory checked in at 2026-03-13 21:16:55
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/heroic-games-launcher (Old)
 and      /work/SRC/openSUSE:Factory/.heroic-games-launcher.new.8177 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "heroic-games-launcher"

Fri Mar 13 21:16:55 2026 rev:8 rq:1338568 version:2.20.1

Changes:
--------
--- 
/work/SRC/openSUSE:Factory/heroic-games-launcher/heroic-games-launcher.changes  
    2026-03-05 17:23:28.919403963 +0100
+++ 
/work/SRC/openSUSE:Factory/.heroic-games-launcher.new.8177/heroic-games-launcher.changes
    2026-03-13 21:20:42.354998496 +0100
@@ -1,0 +2,7 @@
+Thu Mar 12 03:06:06 UTC 2026 - Jonatas Gonçalves <[email protected]>
+
+- Security: Fix CVE-2026-28292 in simple-git
+  Ensure version 3.33.0 is used to prevent command
+  injection leading to remote code execution. 
+
+-------------------------------------------------------------------

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ _scmsync.obsinfo ++++++
--- /var/tmp/diff_new_pack.JWnunz/_old  2026-03-13 21:21:09.084101110 +0100
+++ /var/tmp/diff_new_pack.JWnunz/_new  2026-03-13 21:21:09.088101275 +0100
@@ -1,5 +1,5 @@
-mtime: 1772664371
-commit: 0d5b1fa23689ff82ccfe581b9108ccaabfc2558bf3773f7aea882c2d9984e592
+mtime: 1773284939
+commit: 375e4c763f7d889e366603ab888e85fffc9d532e305858d1adbe87731a3c539a
 url: https://src.opensuse.org/MaxxedSUSE/heroic-games-launcher
 revision: master
 

++++++ get-sources.sh ++++++
--- /var/tmp/diff_new_pack.JWnunz/_old  2026-03-13 21:21:09.132103090 +0100
+++ /var/tmp/diff_new_pack.JWnunz/_new  2026-03-13 21:21:09.136103255 +0100
@@ -91,15 +91,16 @@
         "react-router": "^7.12.0",
         "react-router-dom": "^7.12.0",
         "fast-xml-parser": "5.3.6",
-        "rollup": "4.59.0"
+        "rollup": "4.59.0",
+        "@tootallnate/once": "3.0.1"
       }
   )
 
-  # === CVE-2026-3449: @tootallnate/once fix ===
+  # === CVE-2026-28292: simple-git fix ===
   | .pnpm.overrides = (
       (.pnpm.overrides // {})
       + {
-          "@tootallnate/once": "3.0.1"
+          "simple-git": "^3.32.3"
         }
     )
 ' package.json > temp.json && mv temp.json package.json

++++++ heroic-games-launcher-2.20.1.obscpio ++++++
/work/SRC/openSUSE:Factory/heroic-games-launcher/heroic-games-launcher-2.20.1.obscpio
 
/work/SRC/openSUSE:Factory/.heroic-games-launcher.new.8177/heroic-games-launcher-2.20.1.obscpio
 differ: char 1772012, line 36195

++++++ pnpm-offline-store.tar.gz ++++++
/work/SRC/openSUSE:Factory/heroic-games-launcher/pnpm-offline-store.tar.gz 
/work/SRC/openSUSE:Factory/.heroic-games-launcher.new.8177/pnpm-offline-store.tar.gz
 differ: char 15, line 1

commit heroic-games-launcher for openSUSE:Factory

Reply via email to