commit grafana for openSUSE:Factory

Source-Sync Tue, 15 Nov 2022 04:21:42 -0800

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package grafana for openSUSE:Factory checked 
in at 2022-11-15 13:18:50
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/grafana (Old)
 and      /work/SRC/openSUSE:Factory/.grafana.new.1597 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "grafana"

Tue Nov 15 13:18:50 2022 rev:36 rq:1035683 version:8.5.14

Changes:
--------
--- /work/SRC/openSUSE:Factory/grafana/grafana.changes  2022-10-12 
18:27:46.714097606 +0200
+++ /work/SRC/openSUSE:Factory/.grafana.new.1597/grafana.changes        
2022-11-15 13:21:35.536852426 +0100
@@ -1,0 +2,12 @@
+Fri Nov 11 09:06:30 UTC 2022 - witold.be...@suse.com
+
+- Update to version 8.5.14 (jsc#PED-2617):
+  * Security: Fix do not forward login cookie in outgoing requests
+    (bsc#1204303, CVE-2022-39201)
+  * Security: Make proxy endpoints not leak sensitive HTTP headers
+    (bsc#1204305, CVE-2022-31130)
+  * Security: Fix plugin signature bypass (bsc#1204302, CVE-2022-31123)
+  * Security: Fix blocknig other users from signing in (bsc#1204304,
+    CVE-2022-39229)
+
+-------------------------------------------------------------------

Old:
----
  grafana-8.5.13.tar.gz

New:
----
  grafana-8.5.14.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ grafana.spec ++++++
--- /var/tmp/diff_new_pack.jH6aMN/_old  2022-11-15 13:21:36.620858022 +0100
+++ /var/tmp/diff_new_pack.jH6aMN/_new  2022-11-15 13:21:36.624858043 +0100
@@ -22,7 +22,7 @@
 %endif
 
 Name:           grafana
-Version:        8.5.13
+Version:        8.5.14
 Release:        0
 Summary:        The open-source platform for monitoring and observability
 License:        AGPL-3.0-only

++++++ _service ++++++
--- /var/tmp/diff_new_pack.jH6aMN/_old  2022-11-15 13:21:36.708858477 +0100
+++ /var/tmp/diff_new_pack.jH6aMN/_new  2022-11-15 13:21:36.712858497 +0100
@@ -5,7 +5,7 @@
     <param name="exclude">.git</param>
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="versionrewrite-pattern">v(.*)</param>
-    <param name="revision">v8.5.13</param>
+    <param name="revision">v8.5.14</param>
     <param name="changesgenerate">enable</param>
   </service>
   <service name="recompress" mode="disabled">

++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.jH6aMN/_old  2022-11-15 13:21:36.732858601 +0100
+++ /var/tmp/diff_new_pack.jH6aMN/_new  2022-11-15 13:21:36.732858601 +0100
@@ -1,7 +1,7 @@
 <servicedata>
   <service name="tar_scm">
     <param name="url">https://github.com/grafana/grafana</param>
-    <param 
name="changesrevision">38d274060d2dd6c4240edfdcc30d122e8120545d</param>
+    <param 
name="changesrevision">5bc88988a5a25c23452249315e8789ef059a2a3d</param>
   </service>
 </servicedata>
 (No newline at EOF)

++++++ grafana-8.5.13.tar.gz -> grafana-8.5.14.tar.gz ++++++
/work/SRC/openSUSE:Factory/grafana/grafana-8.5.13.tar.gz 
/work/SRC/openSUSE:Factory/.grafana.new.1597/grafana-8.5.14.tar.gz differ: char 
5, line 1

++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/grafana/vendor.tar.gz 
/work/SRC/openSUSE:Factory/.grafana.new.1597/vendor.tar.gz differ: char 5, line 
1

commit grafana for openSUSE:Factory

Reply via email to