Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package teleport for openSUSE:Factory checked in at 2026-06-25 10:53:03 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/teleport (Old) and /work/SRC/openSUSE:Factory/.teleport.new.2088 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "teleport" Thu Jun 25 10:53:03 2026 rev:174 rq:1361549 version:17.7.26 Changes: -------- --- /work/SRC/openSUSE:Factory/teleport/teleport.changes 2026-06-10 15:54:31.020109046 +0200 +++ /work/SRC/openSUSE:Factory/.teleport.new.2088/teleport.changes 2026-06-25 10:57:59.875014767 +0200 @@ -1,0 +2,32 @@ +Wed Jun 24 07:00:48 UTC 2026 - Johannes Kastl <[email protected]> + +- update to 17.7.26: + * Breaking changes + - Kubernetes API server proxy access + Access to the Kubernetes API server pods/{name}/proxy/{path}, + services/{name}/proxy/{path}, and nodes/{name}/proxy/{path} + endpoints now requires the new proxy verb in + kubernetes_resources. Previously these endpoints were + authorized as the get verb. Roles that use the Kubernetes API + server proxy must add "proxy" to the relevant verbs + list. + * Other fixes and improvements + - Fixed Teleport Connect file uploads for empty files. #67926 + - Fixed an issue where path separators could be included in scp + file names during upload. #67773 + - Sanitized AWS console federation transport errors to avoid + logging AWS session credential material. #67708 + - Fixed an SSRF vulnerability in AWS application access where a + crafted X-Forwarded-Host header could divert IAM-signed AWS + API requests to an attacker-controlled host. #67707 + - Cap AWS STS AssumeRole session duration to the Teleport + identity TTL, including query-string AssumeRole requests and + requests made with cached assumed-role credentials. #67705 + - Fixed role impersonation incorrectly being affected by user + allow/deny rules. #67690 + - Prevented users with the same name in different clusters from + being able to cancel each others' remote port forwards. + #67688 + - Update golang.org/x/crypto to v0.53.0. #67641 + +------------------------------------------------------------------- Old: ---- teleport-17.7.25.obscpio New: ---- teleport-17.7.26.obscpio ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ teleport.spec ++++++ --- /var/tmp/diff_new_pack.5dYrJM/_old 2026-06-25 10:58:02.471104360 +0200 +++ /var/tmp/diff_new_pack.5dYrJM/_new 2026-06-25 10:58:02.475104499 +0200 @@ -17,7 +17,7 @@ Name: teleport -Version: 17.7.25 +Version: 17.7.26 Release: 0 Summary: Identity-aware, multi-protocol access proxy License: AGPL-3.0-only ++++++ _service ++++++ --- /var/tmp/diff_new_pack.5dYrJM/_old 2026-06-25 10:58:02.531106432 +0200 +++ /var/tmp/diff_new_pack.5dYrJM/_new 2026-06-25 10:58:02.539106708 +0200 @@ -4,7 +4,7 @@ <param name="scm">git</param> <param name="submodules">disable</param> <param name="exclude">.git</param> - <param name="revision">v17.7.25</param> + <param name="revision">v17.7.26</param> <param name="match-tag">v*</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> ++++++ teleport-17.7.25.obscpio -> teleport-17.7.26.obscpio ++++++ /work/SRC/openSUSE:Factory/teleport/teleport-17.7.25.obscpio /work/SRC/openSUSE:Factory/.teleport.new.2088/teleport-17.7.26.obscpio differ: char 49, line 1 ++++++ teleport.obsinfo ++++++ --- /var/tmp/diff_new_pack.5dYrJM/_old 2026-06-25 10:58:02.599108778 +0200 +++ /var/tmp/diff_new_pack.5dYrJM/_new 2026-06-25 10:58:02.607109054 +0200 @@ -1,5 +1,5 @@ name: teleport -version: 17.7.25 -mtime: 1781015559 -commit: 6f690bad4c56948f6edd8e45f0d12f82b072dd13 +version: 17.7.26 +mtime: 1782159584 +commit: 02e9da4fa0e3393b1e5398277c50d22a3bd8385a ++++++ vendor.tar.gz ++++++ /work/SRC/openSUSE:Factory/teleport/vendor.tar.gz /work/SRC/openSUSE:Factory/.teleport.new.2088/vendor.tar.gz differ: char 124, line 1
