Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package Botan for openSUSE:Factory checked in at 2024-07-15 19:49:47 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/Botan (Old) and /work/SRC/openSUSE:Factory/.Botan.new.17339 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "Botan" Mon Jul 15 19:49:47 2024 rev:65 rq:1187484 version:2.19.5 Changes: -------- --- /work/SRC/openSUSE:Factory/Botan/Botan.changes 2023-11-20 21:21:00.558036542 +0100 +++ /work/SRC/openSUSE:Factory/.Botan.new.17339/Botan.changes 2024-07-15 19:50:27.878305802 +0200 @@ -1,0 +2,13 @@ +Mon Jul 15 05:50:55 UTC 2024 - Angel Yankov <angel.yan...@suse.com> + +- Update to 2.19.5: + * Fix multiple Denial of service attacks due to X.509 cert processing: + * CVE-2024-34702 - bsc#1227238 + * CVE-2024-34703 - bsc#1227607 + * CVE-2024-39312 - bsc#1227608 + * Fix a crash in OCB + * Fix a test failure in compression with certain versions of zlib + * Fix some iterator debugging errors in TLS CBC decryption. + * Avoid a miscompilation in ARIA when using XCode 14 + +------------------------------------------------------------------- Old: ---- Botan-2.19.3.tar.xz Botan-2.19.3.tar.xz.asc New: ---- Botan-2.19.5.tar.xz Botan-2.19.5.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ Botan.spec ++++++ --- /var/tmp/diff_new_pack.n3v761/_old 2024-07-15 19:50:28.542330272 +0200 +++ /var/tmp/diff_new_pack.n3v761/_new 2024-07-15 19:50:28.546330419 +0200 @@ -1,7 +1,7 @@ # # spec file for package Botan # -# Copyright (c) 2023 SUSE LLC +# Copyright (c) 2024 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -20,7 +20,7 @@ %define version_suffix 2-19 %define short_version 2 Name: Botan -Version: 2.19.3 +Version: 2.19.5 Release: 0 Summary: A C++ Crypto Library License: BSD-2-Clause ++++++ Botan-2.19.3.tar.xz -> Botan-2.19.5.tar.xz ++++++ ++++ 25754 lines of diff (skipped)
