Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python-GitPython for
openSUSE:Factory checked in at 2026-05-12 19:26:28
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-GitPython (Old)
and /work/SRC/openSUSE:Factory/.python-GitPython.new.1966 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-GitPython"
Tue May 12 19:26:28 2026 rev:35 rq:1352487 version:3.1.49
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-GitPython/python-GitPython.changes
2026-05-04 21:17:15.479936842 +0200
+++
/work/SRC/openSUSE:Factory/.python-GitPython.new.1966/python-GitPython.changes
2026-05-12 19:26:52.439598663 +0200
@@ -1,0 +2,11 @@
+Fri May 08 11:44:48 UTC 2026 - Nico Krapp <[email protected]>
+
+- Update to version 3.1.49 (fixes CVE-2026-44244, bsc#1264608):
+ * bump version to 3.1.49
+ * Address rev-parse review feedback
+ * Fix rev-parse CI issues
+ * Improve pure Python rev-parse coverage and behavior (#2135)
+ * avoid duplicate validation in set_value
+ * reject control chars in written values in configuration
+
+-------------------------------------------------------------------
@@ -4 +15 @@
-- Update to version 3.1.48:
+- Update to version 3.1.48 (fixes CVE-2026-44243, bsc#1264606):
@@ -8 +19 @@
-- 3.1.47:
+- 3.1.47 (fixes CVE-2026-42215, bsc#1264604, CVE-2026-42284, bsc#1264605):
Old:
----
GitPython-3.1.48.tar.gz
New:
----
GitPython-3.1.49.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-GitPython.spec ++++++
--- /var/tmp/diff_new_pack.k26BeW/_old 2026-05-12 19:26:53.155628339 +0200
+++ /var/tmp/diff_new_pack.k26BeW/_new 2026-05-12 19:26:53.159628504 +0200
@@ -18,7 +18,7 @@
%{?sle15_python_module_pythons}
Name: python-GitPython
-Version: 3.1.48
+Version: 3.1.49
Release: 0
Summary: Python Git Library
License: BSD-3-Clause
++++++ GitPython-3.1.48.tar.gz -> GitPython-3.1.49.tar.gz ++++++
/work/SRC/openSUSE:Factory/python-GitPython/GitPython-3.1.48.tar.gz
/work/SRC/openSUSE:Factory/.python-GitPython.new.1966/GitPython-3.1.49.tar.gz
differ: char 12, line 1
++++++ _service ++++++
--- /var/tmp/diff_new_pack.k26BeW/_old 2026-05-12 19:26:53.219630992 +0200
+++ /var/tmp/diff_new_pack.k26BeW/_new 2026-05-12 19:26:53.223631157 +0200
@@ -2,7 +2,7 @@
<service name="tar_scm" mode="manual">
<param name="url">https://github.com/gitpython-developers/GitPython</param>
<param name="scm">git</param>
- <param name="revision">3.1.48</param>
+ <param name="revision">3.1.49</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="package-meta">yes</param>
<param name="changesgenerate">enable</param>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.k26BeW/_old 2026-05-12 19:26:53.251632318 +0200
+++ /var/tmp/diff_new_pack.k26BeW/_new 2026-05-12 19:26:53.255632484 +0200
@@ -3,6 +3,6 @@
<param
name="url">git://github.com/gitpython-developers/GitPython</param>
<param
name="changesrevision">f653af66e4c9461579ec44db50e113facf61e2d3</param></service><service
name="tar_scm">
<param
name="url">https://github.com/gitpython-developers/GitPython</param>
- <param
name="changesrevision">5a15361e0e1223f5c2e2c05688e6d094796b954d</param></service></servicedata>
+ <param
name="changesrevision">aee2fd5c13770954469e650f1df8f92f0183bc70</param></service></servicedata>
(No newline at EOF)
