commit velociraptor for openSUSE:Factory

Source-Sync Thu, 25 Jun 2026 02:00:08 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package velociraptor for openSUSE:Factory 
checked in at 2026-06-25 10:56:10
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/velociraptor (Old)
 and      /work/SRC/openSUSE:Factory/.velociraptor.new.2088 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "velociraptor"

Thu Jun 25 10:56:10 2026 rev:24 rq:1361554 version:0.7.0.4.git185.a5708584

Changes:
--------
--- /work/SRC/openSUSE:Factory/velociraptor/velociraptor.changes        
2026-03-03 15:32:31.592995173 +0100
+++ /work/SRC/openSUSE:Factory/.velociraptor.new.2088/velociraptor.changes      
2026-06-25 10:58:47.856670670 +0200
@@ -1,0 +2,68 @@
+Fri Jun 05 13:12:24 UTC 2026 - Darragh O'Reilly <[email protected]>
+
+- Update to version 0.7.0.4.git185.a5708584:
+  * Update golang dependencies
+    Fixes CVE-2026-34986 (bsc#1262841)
+    Fixes CVE-2026-1229 (bsc#1265479)
+    Fixes CVE-2026-33814 (bsc#1265650)
+    Fixes CVE-2026-39827 (bsc#1266059)
+    Fixes CVE-2026-39834 (bsc#1266059)
+    Fixes CVE-2026-39828 (bsc#1266059)
+    Fixes CVE-2026-39829 (bsc#1266059)
+    Fixes CVE-2026-39831 (bsc#1266059)
+    Fixes CVE-2026-42508 (bsc#1266059)
+    Fixes CVE-2026-39833 (bsc#1266059)
+    Fixes CVE-2026-39830 (bsc#1266059)
+    Fixes CVE-2026-39832 (bsc#1266059)
+    Fixes CVE-2026-46597 (bsc#1266059)
+    Fixes CVE-2026-46598 (bsc#1266059)
+    Fixes CVE-2026-46595 (bsc#1266059)
+    Fixes CVE-2026-39835 (bsc#1266059)
+    Fixes CVE-2026-39821 (bsc#1266489)
+    Fixes CVE-2026-33487
+    Fixes CVE-2026-25680 (bsc#1267056)
+    Fixes CVE-2026-42502 (bsc#1267056)
+    Fixes CVE-2026-27136 (bsc#1267056)
+    Fixes CVE-2026-25681 (bsc#1267056)
+    Fixes CVE-2026-42506 (bsc#1267056)
+    Fixes CVE-2026-33487 (bsc#1267056)
+  * Update npm packages
+    Fixes CVE-2025-27152 (bsc#1239305)
+    Fixes CVE-2026-25128 (bsc#1257518)
+    Fixes CVE-2026-26278 (bsc#1258550)
+    Fixes CVE-2026-33036 (bsc#1259978)
+    Fixes CVE-2025-5889 (bsc#1244349)
+    Fixes CVE-2025-6547 (bsc#1245281)
+    Fixes CVE-2025-6545 (bsc#1245282)
+    Fixes CVE-2025-7783 (bsc#1246811)
+    Fixes CVE-2025-64718 (bsc#1255429)
+    Fixes CVE-2025-13465 (bsc#1257322)
+    Fixes CVE-2026-26996 (bsc#1258626)
+    Fixes CVE-2026-27904 (bsc#1259007)
+    Fixes CVE-2026-2739 (bsc#1258648)
+    Fixes CVE-2026-27606 (bsc#1258877)
+    Fixes CVE-2026-42039 (bsc#1267407)
+  * Update google.golang.org/grpc to 1.79.3
+    Fixes CVE-2026-33186 (bsc#1260088)
+  * github-actions: remove failing Windows workflow
+  * Update github.com/ulikunitz/xz
+    Fixes CVE-2025-58058 (bsc#1248903)
+  * Update github.com/golang/glog
+    Fixes CVE-2024-45339 (bsc#1236562)
+  * Update github.com/gorilla/csrf v1.6.2 => v1.7.3
+    Fixes CVE-2025-24358 (bsc#1241233, bsc#1241236)
+  * Update golang.org/x/oauth2 v0.13.0 => v0.27.0
+    Fixes CVE-2025-22868 (bsc#1239201, bsc#1239234)
+  * Fix go vet non-constant format string from go1.24
+  * Fix TestHTTPComms failures from go1.24+
+  * Update golang.org/x/net to v0.45.0
+    Fixes CVE-2023-45288 (bsc#1236506)
+    Fixes CVE-2025-22869 (bsc#1239326, bsc#1239358)
+    Fixes CVE-2025-22870 (bsc#1238678)
+    Fixes CVE-2025-22872 (bsc#1241713)
+    Fixes CVE-2025-47911 (bsc#1251346)
+    Fixes CVE-2025-58181 (bsc#1253788)
+    Fixes CVE-2025-58190 (bsc#1251537)
+  * Fix symbol not found errors from SUSE.Linux.Events.Services
+
+-------------------------------------------------------------------

Old:
----
  velociraptor-0.7.0.4.git169.cb4e6db8.obscpio

New:
----
  velociraptor-0.7.0.4.git185.a5708584.obscpio

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ velociraptor.spec ++++++
--- /var/tmp/diff_new_pack.AWV06f/_old  2026-06-25 10:58:49.660732931 +0200
+++ /var/tmp/diff_new_pack.AWV06f/_new  2026-06-25 10:58:49.660732931 +0200
@@ -86,7 +86,7 @@
 %endif
 
 Name:           velociraptor%{name_suffix}
-Version:        0.7.0.4.git169.cb4e6db8
+Version:        0.7.0.4.git185.a5708584
 Release:        0
 %if %{build_server}
 Summary:        Endpoint visibility and collection tool
@@ -119,16 +119,16 @@
 BuildRequires:  fileb0x
 %if 0%{?suse_version}
 BuildRequires:  systemd-rpm-macros
-BuildRequires:  golang(API) >= 1.19
+BuildRequires:  golang(API) >= 1.25
 BuildRequires:  pkgconfig(libsystemd)
 %endif
 %if "%{_vendor}" == "debbuild"
-BuildRequires:  golang >= 2:1.19~0
+BuildRequires:  golang >= 2:1.25~0
 BuildRequires:  libsystemd-dev
 BuildRequires:  pkg-config
 %endif
 %if 0%{?rhel}
-BuildRequires:  golang >= 1.19
+BuildRequires:  golang >= 1.25
 BuildRequires:  python3
 BuildRequires:  systemd-devel
 BuildRequires:  pkgconfig(libsystemd)

++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.AWV06f/_old  2026-06-25 10:58:49.736735554 +0200
+++ /var/tmp/diff_new_pack.AWV06f/_new  2026-06-25 10:58:49.740735692 +0200
@@ -1,6 +1,6 @@
 <servicedata>
 <service name="tar_scm">
                 <param 
name="url">https://github.com/SUSE/linux-security-sensor</param>
-              <param 
name="changesrevision">cb4e6db8385b7cd8d0609b65a2ba3cab03ee54fa</param></service></servicedata>
+              <param 
name="changesrevision">a5708584de05e0e7380972aa2314fd4ab87b5aaf</param></service></servicedata>
 (No newline at EOF)
 

++++++ package-lock.json ++++++
++++ 2527 lines (skipped)
++++ between /work/SRC/openSUSE:Factory/velociraptor/package-lock.json
++++ and /work/SRC/openSUSE:Factory/.velociraptor.new.2088/package-lock.json

++++++ velociraptor-0.7.0.4.git169.cb4e6db8.obscpio -> 
velociraptor-0.7.0.4.git185.a5708584.obscpio ++++++
/work/SRC/openSUSE:Factory/velociraptor/velociraptor-0.7.0.4.git169.cb4e6db8.obscpio
 
/work/SRC/openSUSE:Factory/.velociraptor.new.2088/velociraptor-0.7.0.4.git185.a5708584.obscpio
 differ: char 48, line 1

++++++ velociraptor-go_modules.tar.gz ++++++
/work/SRC/openSUSE:Factory/velociraptor/velociraptor-go_modules.tar.gz 
/work/SRC/openSUSE:Factory/.velociraptor.new.2088/velociraptor-go_modules.tar.gz
 differ: char 12, line 1

++++++ velociraptor-node_modules.obscpio ++++++
/work/SRC/openSUSE:Factory/velociraptor/velociraptor-node_modules.obscpio 
/work/SRC/openSUSE:Factory/.velociraptor.new.2088/velociraptor-node_modules.obscpio
 differ: char 84459240, line 281110

++++++ velociraptor-nodejs.spec.inc ++++++
++++ 1567 lines (skipped)
++++ between 
/work/SRC/openSUSE:Factory/velociraptor/velociraptor-nodejs.spec.inc
++++ and 
/work/SRC/openSUSE:Factory/.velociraptor.new.2088/velociraptor-nodejs.spec.inc

++++++ velociraptor.obsinfo ++++++
--- /var/tmp/diff_new_pack.AWV06f/_old  2026-06-25 10:58:50.176750740 +0200
+++ /var/tmp/diff_new_pack.AWV06f/_new  2026-06-25 10:58:50.180750877 +0200
@@ -1,5 +1,5 @@
 name: velociraptor
-version: 0.7.0.4.git169.cb4e6db8
-mtime: 1763480698
-commit: cb4e6db8385b7cd8d0609b65a2ba3cab03ee54fa
+version: 0.7.0.4.git185.a5708584
+mtime: 1780582401
+commit: a5708584de05e0e7380972aa2314fd4ab87b5aaf

commit velociraptor for openSUSE:Factory

Reply via email to