Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package libssh for openSUSE:Factory checked
in at 2023-05-08 17:23:44
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/libssh (Old)
and /work/SRC/openSUSE:Factory/.libssh.new.1533 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libssh"
Mon May 8 17:23:44 2023 rev:69 rq:1085234 version:0.10.5
Changes:
--------
--- /work/SRC/openSUSE:Factory/libssh/libssh.changes 2022-09-08
14:22:01.062442416 +0200
+++ /work/SRC/openSUSE:Factory/.libssh.new.1533/libssh.changes 2023-05-08
17:23:45.960511505 +0200
@@ -1,0 +2,34 @@
+Sat May 6 01:05:17 UTC 2023 - Dirk Müller <dmuel...@suse.com>
+
+- update to 0.10.5:
+ * Fix CVE-2023-1667: a NULL dereference during rekeying with
+ algorithm guessing
+ * Fix CVE-2023-2283: a possible authorization bypass in
+ pki_verify_data_signature under low-memory conditions.
+ * Fix several memory leaks in GSSAPI handling code
+ * Escape braces in ProxyCommand created from ProxyJump options
+ for zsh compatibility.
+ * Fix pkg-config path relocation for MinGW
+ * Improve doxygen documentation
+ * Fix build with cygwin due to the glob support
+ * Do not enqueue outgoing packets after sending
+ SSH2_MSG_NEWKEYS
+ * Add support for SSH_SUPPRESS_DEPRECATED
+ * Avoid functions declarations without prototype to build with
+ clang 15
+ * Fix spelling issues
+ * Avoid expanding KnownHosts, ProxyCommands and IdentityFiles
+ repetitively
+ * Add support sk-* keys through configuration
+ * Improve checking for Argp library
+ * Log information about received extensions
+ * Correctly handle rekey with delayed compression
+ * Move the EC keys handling to OpenSSL 3.0 API
+ * Record peer disconnect message
+ * Avoid deadlock when write buffering occurs and we call poll
+ recursively to flush the output buffer
+ * Disable preauthentication compression by default
+ * Add accidentally removed default compile flags
+ * Solve incorrect parsing of ProxyCommand option
+
+-------------------------------------------------------------------
Old:
----
libssh-0.10.4.tar.xz
libssh-0.10.4.tar.xz.asc
New:
----
libssh-0.10.5.tar.xz
libssh-0.10.5.tar.xz.asc
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ libssh.spec ++++++
--- /var/tmp/diff_new_pack.6ywoW2/_old 2023-05-08 17:23:46.740516117 +0200
+++ /var/tmp/diff_new_pack.6ywoW2/_new 2023-05-08 17:23:46.744516140 +0200
@@ -1,7 +1,7 @@
#
# spec file
#
-# Copyright (c) 2022 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -30,14 +30,14 @@
%bcond_with test
%endif
Name: libssh%{pkg_suffix}
-Version: 0.10.4
+Version: 0.10.5
Release: 0
Summary: The SSH library
License: LGPL-2.1-or-later
Group: Development/Libraries/C and C++
URL: https://www.libssh.org
-Source0: https://www.libssh.org/files/0.9/libssh-%{version}.tar.xz
-Source1: https://www.libssh.org/files/0.9/libssh-%{version}.tar.xz.asc
+Source0: https://www.libssh.org/files/0.10/libssh-%{version}.tar.xz
+Source1: https://www.libssh.org/files/0.10/libssh-%{version}.tar.xz.asc
Source2:
https://cryptomilk.org/gpgkey-8DFF53E18F2ABC8D8F3C92237EE0FC4DCC014E3D.gpg#/libssh.keyring
Source3: libssh_client.config
Source4: libssh_server.config
++++++ libssh-0.10.4.tar.xz -> libssh-0.10.5.tar.xz ++++++
++++ 9771 lines of diff (skipped)
