commit apr for openSUSE:Factory

Wed, 23 Feb 2022 07:26:10 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package apr for openSUSE:Factory checked in 
at 2022-02-23 16:25:43
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/apr (Old)
 and      /work/SRC/openSUSE:Factory/.apr.new.1958 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "apr"

Wed Feb 23 16:25:43 2022 rev:14 rq:956627 version:1.7.0

Changes:
--------
--- /work/SRC/openSUSE:Factory/apr/apr.changes  2021-10-29 22:34:51.587696320 
+0200
+++ /work/SRC/openSUSE:Factory/.apr.new.1958/apr.changes        2022-02-23 
16:25:57.975507791 +0100
@@ -1,0 +2,8 @@
+Tue Feb 22 08:22:54 UTC 2022 - pgaj...@suse.com
+
+- deleted patches
+  - apr-CVE-2021-3594.patch (renamed)
+- added patches
+  + apr-CVE-2021-35940.patch (correct name)
+
+-------------------------------------------------------------------
@@ -11,2 +19,2 @@
-  fix CVE-2021-3594 [bsc#1187367], invalid pointer initialization may lead to 
information disclosure (udp)
-  + apr-CVE-2021-3594.patch
+  fix CVE-2021-35940 [bsc#1190072], Regression of fix in apr 1.7
+  + apr-CVE-2021-35940.patch

Old:
----
  apr-CVE-2021-3594.patch

New:
----
  apr-CVE-2021-35940.patch

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ apr.spec ++++++
--- /var/tmp/diff_new_pack.vNl4X7/_old  2022-02-23 16:25:58.639507815 +0100
+++ /var/tmp/diff_new_pack.vNl4X7/_new  2022-02-23 16:25:58.643507816 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package apr
 #
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -35,7 +35,7 @@
 # prevent random failures of the testsuite (sendfile test)
 Patch10:        apr-test-sendfile-timeout.patch
 # CVE-2021-3594 [bsc#1187367], invalid pointer initialization may lead to 
information disclosure (udp)
-Patch11:        apr-CVE-2021-3594.patch
+Patch11:        apr-CVE-2021-35940.patch
 BuildRequires:  doxygen
 BuildRequires:  fdupes
 BuildRequires:  libtool


++++++ apr-CVE-2021-3594.patch -> apr-CVE-2021-35940.patch ++++++

Reply via email to