Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package google-guest-configs for
openSUSE:Factory checked in at 2021-07-20 15:39:16
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/google-guest-configs (Old)
and /work/SRC/openSUSE:Factory/.google-guest-configs.new.2632 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "google-guest-configs"
Tue Jul 20 15:39:16 2021 rev:4 rq:907123 version:20210702.00
Changes:
--------
---
/work/SRC/openSUSE:Factory/google-guest-configs/google-guest-configs.changes
2021-04-01 14:19:19.608157111 +0200
+++
/work/SRC/openSUSE:Factory/.google-guest-configs.new.2632/google-guest-configs.changes
2021-07-20 15:39:58.241526743 +0200
@@ -1,0 +2,10 @@
+Mon Jul 19 12:03:26 UTC 2021 - John Paul Adrian Glaubitz
<adrian.glaub...@suse.com>
+
+- Update to version 20210702.00
+ * use grep for hostname check (#23)
+- from version 20210629.00
+ * address set_hostname vuln (#22)
+- from version 20210324.00
+ * dracut.conf wants spaces around values (#19)
+
+-------------------------------------------------------------------
Old:
----
google-guest-configs-20210317.00.tar.gz
New:
----
google-guest-configs-20210702.00.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ google-guest-configs.spec ++++++
--- /var/tmp/diff_new_pack.oGRukX/_old 2021-07-20 15:39:58.629527437 +0200
+++ /var/tmp/diff_new_pack.oGRukX/_new 2021-07-20 15:39:58.633527444 +0200
@@ -17,7 +17,7 @@
Name: google-guest-configs
-Version: 20210317.00
+Version: 20210702.00
Release: 0
Summary: Google Cloud Guest Configs
License: Apache-2.0
++++++ google-guest-configs-20210317.00.tar.gz ->
google-guest-configs-20210702.00.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore'
old/guest-configs-20210317.00/src/usr/bin/google_set_hostname
new/guest-configs-20210702.00/src/usr/bin/google_set_hostname
--- old/guest-configs-20210317.00/src/usr/bin/google_set_hostname
2021-02-04 20:22:37.000000000 +0100
+++ new/guest-configs-20210702.00/src/usr/bin/google_set_hostname
2021-07-03 00:19:48.000000000 +0200
@@ -19,8 +19,14 @@
# Delete entries with new_host_name or new_ip_address in /etc/hosts.
sed -i"" '/Added by Google/d' /etc/hosts
- # Add an entry for our new_host_name/new_ip_address in /etc/hosts.
- echo "${new_ip_address} ${new_host_name} ${new_host_name%%.*} # Added by
Google" >> /etc/hosts
+ # Don't allow DHCP responses with the MDS as the hostname.
+ # See: https://github.com/irsl/gcp-dhcp-takeover-code-exec
+ if echo "$new_host_name" | grep -iq "metadata.google.internal"; then
+ echo "not setting invalid hostname"
+ else
+ # Add an entry for our new_host_name/new_ip_address in /etc/hosts.
+ echo "${new_ip_address} ${new_host_name} ${new_host_name%%.*} # Added by
Google" >> /etc/hosts
+ fi
# Add an entry for reaching the metadata server in /etc/hosts.
echo "169.254.169.254 metadata.google.internal # Added by Google" >>
/etc/hosts
@@ -36,7 +42,7 @@
# As a result, we set the host name in all circumstances here, to the truncated
# unqualified domain name.
-if [ -n "$new_host_name" ]; then
+if [ -n "$new_host_name" ] && ! echo "$new_host_name" | grep -iq
"metadata.google.internal"; then
hostname "${new_host_name%%.*}"
# If NetworkManager is installed set the hostname with nmcli.
