Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package icinga2 for openSUSE:Factory checked in at 2026-06-30 15:11:51 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/icinga2 (Old) and /work/SRC/openSUSE:Factory/.icinga2.new.11887 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "icinga2" Tue Jun 30 15:11:51 2026 rev:63 rq:1362450 version:2.16.2 Changes: -------- --- /work/SRC/openSUSE:Factory/icinga2/icinga2.changes 2026-05-31 18:31:07.603085596 +0200 +++ /work/SRC/openSUSE:Factory/.icinga2.new.11887/icinga2.changes 2026-06-30 15:12:25.962009455 +0200 @@ -1,0 +2,30 @@ +Mon Jun 29 13:07:55 UTC 2026 - ecsos <[email protected]> + +- Update to version 2.16.2: + * Also execute JsonDecode stack size test in pthread if available + * Use protected stack for new-style Boost.Asio coroutines + * Add tests for JsonDecode depth limit in combination with coroutine stacks + * tests: move SpawnSynchronizedCoroutine() to utils.cpp + * Prevent HTTP requests from creating deeply nested data structures + * Don't shut down JSON-RPC connection if a message fails to parse + * JsonDecode: include path in JSON depth error + * JsonDecode: add depth limit + * Add filter-expression permission + * Release v2.16.2 + * Bump OpenSSL shipped for Windows to v3.5.7 + * Check if client is a valid endpoint before updating CA-certificate + * ConfigWriter::EmitScope: Escape import + * GHA: Windows: run on Windows Server 2022 + * Guard against assert() failures in SendJsonError() + * Fix handling `std::ifstream` exceptions in `ConfigFilesHandler` + * Fix handling the `std::ifstream::failbit` in `OutgoingHttpMessage` + * Add test-case for `SendFile()` with non-existant paths + * This release fixes some critical security vulnerabilities_ + - Verify that certificate update requests come from an authorized endpoint + (GHSA-vj39-ww8j-vvx5) + - Fix stack overflow due to deeply nested data structures + (GHSA-wh38-wg57-5w7g) + - Prevent arbitrary config injection on object creation via the API + (GHSA-jgqj-x5j9-vgcm) + +------------------------------------------------------------------- Old: ---- icinga2-2.16.1.tar.xz New: ---- icinga2-2.16.2.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ icinga2.spec ++++++ --- /var/tmp/diff_new_pack.fNgLtG/_old 2026-06-30 15:12:26.634032197 +0200 +++ /var/tmp/diff_new_pack.fNgLtG/_new 2026-06-30 15:12:26.638032332 +0200 @@ -16,7 +16,7 @@ # Name: icinga2 -Version: 2.16.1 +Version: 2.16.2 Release: 0 Summary: Network monitoring application License: GPL-3.0-or-later ++++++ _service ++++++ --- /var/tmp/diff_new_pack.fNgLtG/_old 2026-06-30 15:12:26.682033821 +0200 +++ /var/tmp/diff_new_pack.fNgLtG/_new 2026-06-30 15:12:26.686033957 +0200 @@ -7,7 +7,7 @@ <param name="submodules">disable</param> <param name="versionformat">@PARENT_TAG@</param> <param name="versionrewrite-pattern">v(.*)</param> - <param name="revision">v2.16.1</param> + <param name="revision">v2.16.2</param> <param name="changesgenerate">enable</param> </service> <service name="recompress" mode="manual"> ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.fNgLtG/_old 2026-06-30 15:12:26.710034769 +0200 +++ /var/tmp/diff_new_pack.fNgLtG/_new 2026-06-30 15:12:26.714034904 +0200 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">https://github.com/Icinga/icinga2.git</param> - <param name="changesrevision">1c7237d66dae2ee672ae7f859845451c2008267a</param></service></servicedata> + <param name="changesrevision">cfdf63b6331c73fecb2de433022e950cf5184d02</param></service></servicedata> (No newline at EOF) ++++++ icinga2-2.16.1.tar.xz -> icinga2-2.16.2.tar.xz ++++++ /work/SRC/openSUSE:Factory/icinga2/icinga2-2.16.1.tar.xz /work/SRC/openSUSE:Factory/.icinga2.new.11887/icinga2-2.16.2.tar.xz differ: char 15, line 1
