Hello community, here is the log from the commit of package icinga2 for openSUSE:Factory checked in at 2018-03-28 10:30:14 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/icinga2 (Old) and /work/SRC/openSUSE:Factory/.icinga2.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "icinga2" Wed Mar 28 10:30:14 2018 rev:5 rq:590984 version:2.8.2 Changes: -------- --- /work/SRC/openSUSE:Factory/icinga2/icinga2.changes 2018-02-26 23:27:35.125082992 +0100 +++ /work/SRC/openSUSE:Factory/.icinga2.new/icinga2.changes 2018-03-28 10:30:18.039377688 +0200 @@ -1,0 +2,37 @@ +Fri Mar 23 10:09:11 UTC 2018 - [email protected] + +- update to version 2.8.2 (fixes CVE-2017-16933 - bsc#1086676, CVE-2018-6532 - bsc#1086672, CVE-2018-6533 - bsc#1086673, + CVE-2018-6534 - bsc#1086674, CVE-2018-6535 - bsc#1086675, CVE-2018-6536) + * [#5715](https://github.com/icinga/icinga2/issues/5715) (API, PR): Hash API password and comparison + * [#6153](https://github.com/icinga/icinga2/issues/6153) (API, PR): Improve error handling for empty packages in /v1/config/packages + * [#6147](https://github.com/icinga/icinga2/issues/6147) (PR): Fix incorrect argument type for JsonRpc::SendMessage + * [#6146](https://github.com/icinga/icinga2/issues/6146) (PR): Ensure that SetCorked\(\) works properly + * [#6134](https://github.com/icinga/icinga2/issues/6134) (PR): Fix incorrect HTTP content length limits + * [#6133](https://github.com/icinga/icinga2/issues/6133) (PR): Limit the number of HTTP/JSON-RPC requests we read in parallel + * [#6132](https://github.com/icinga/icinga2/issues/6132) (PR): Fix HTTP parser crash/hang + * [#6129](https://github.com/icinga/icinga2/issues/6129): api/packages not created by prepare-dir/daemon + * [#5995](https://github.com/icinga/icinga2/issues/5995) (InfluxDB, PR): Fix InfluxDB requests + * [#5991](https://github.com/icinga/icinga2/issues/5991): Partial privilege escalation via PID file manipulation + * [#5987](https://github.com/icinga/icinga2/issues/5987) (Elasticsearch, InfluxDB, Metrics): InfluxDBWriter and ElasticsearchWriter stop writing to HTTP API + * [#5943](https://github.com/icinga/icinga2/issues/5943) (PR): Fix incorrect ::Start call + * [#5793](https://github.com/icinga/icinga2/issues/5793): CVE-2017-16933: root privilege escalation via prepare-dirs \(init script and systemd service file\) + * [#5760](https://github.com/icinga/icinga2/issues/5760) (Crash, PR): Fix incorrect socket handling for the HTTP client + * [#6148](https://github.com/icinga/icinga2/issues/6148) (PR): Fix ApiUser unit test + * [#6135](https://github.com/icinga/icinga2/issues/6135) (API, Cluster, PR): Limit JSON RPC message size + * [#6115](https://github.com/icinga/icinga2/issues/6115) (PR): Fix incorrect size of request limits + * [#6114](https://github.com/icinga/icinga2/issues/6114) (PR): Fix typo in prepare-dirs + * [#6104](https://github.com/icinga/icinga2/issues/6104) (PR): Fix nullptr dereferences + * [#6103](https://github.com/icinga/icinga2/issues/6103) (PR): HTTP Security fixes + * [#5982](https://github.com/icinga/icinga2/issues/5982) (Packages, PR): SELinux: Allows icinga2\_t to send sigkill to all domains it transitions to + * [#5916](https://github.com/icinga/icinga2/issues/5916) (Packages): Unable to kill process group after check timeout if SElinux is enabled + * [#5850](https://github.com/icinga/icinga2/issues/5850) (Installation, PR): init script security fixes + * [#5764](https://github.com/icinga/icinga2/issues/5764) (InfluxDB, code-quality, PR): Improve InfluxdbWriter performance + * [#5759](https://github.com/icinga/icinga2/issues/5759) (code-quality, PR): Make default getters and setters non-virtual +- install limits.conf to systemd directory instead of etc + +------------------------------------------------------------------- +Mon Mar 12 15:47:30 UTC 2018 - [email protected] + +- override ICINGA2_BUILD_HOST_NAME to make builds reproducible (boo#1084909) + +------------------------------------------------------------------- Old: ---- v2.8.1.tar.gz New: ---- v2.8.2.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ icinga2.spec ++++++ --- /var/tmp/diff_new_pack.sl369k/_old 2018-03-28 10:30:20.311295984 +0200 +++ /var/tmp/diff_new_pack.sl369k/_new 2018-03-28 10:30:20.319295696 +0200 @@ -77,10 +77,10 @@ %define logmsg logger -t %{name}/rpm Summary: Network monitoring application -License: GPL-2.0+ +License: GPL-2.0-or-later Group: System/Monitoring Name: icinga2 -Version: 2.8.1 +Version: 2.8.2 Release: %{revision}%{?dist} Url: https://www.icinga.com/ Source: https://github.com/Icinga/%{name}/archive/v%{version}.tar.gz @@ -348,7 +348,7 @@ export CXX=g++-4.8 %endif -%{?scl_enable} cmake $CMAKE_OPTS -DCMAKE_C_FLAGS:STRING="%{optflags} %{?march_flag}" -DCMAKE_CXX_FLAGS:STRING="%{optflags} %{?march_flag}" . +%{?scl_enable} cmake $CMAKE_OPTS -DCMAKE_C_FLAGS:STRING="%{optflags} %{?march_flag}" -DCMAKE_CXX_FLAGS:STRING="%{optflags} %{?march_flag}" -DICINGA2_BUILD_HOST_NAME:STRING=hostname . make %{?_smp_mflags} @@ -370,8 +370,12 @@ # install custom limits.conf for systemd %if 0%{?configure_systemd_limits} # for > 2.8 or > 2.7.2 +%if "%{_vendor}" == "suse" +install -D -m 0644 etc/initsystem/icinga2.service.limits.conf %{buildroot}/%{_unitdir}/%{name}.service.d/limits.conf +%else install -D -m 0644 etc/initsystem/icinga2.service.limits.conf %{buildroot}/etc/systemd/system/%{name}.service.d/limits.conf %endif +%endif # remove features-enabled symlinks rm -f %{buildroot}/%{_sysconfdir}/%{name}/features-enabled/*.conf @@ -624,9 +628,14 @@ %if 0%{?use_systemd} %attr(644,root,root) %{_unitdir}/%{name}.service %if 0%{?configure_systemd_limits} +%if "%{_vendor}" == "suse" +%dir %{_unitdir}/%{name}.service.d +%{_unitdir}/%{name}.service.d/limits.conf +%else %dir /etc/systemd/system/%{name}.service.d %attr(644,root,root) %config(noreplace) /etc/systemd/system/%{name}.service.d/limits.conf %endif +%endif %else %attr(755,root,root) %config(noreplace) %{_sysconfdir}/init.d/%{name} %endif @@ -648,7 +657,6 @@ %attr(0750,%{icinga_user},%{icinga_group}) %dir %{_sysconfdir}/%{name}/scripts %attr(0750,%{icinga_user},%{icinga_group}) %dir %{_sysconfdir}/%{name}/zones.d %config(noreplace) %attr(0640,%{icinga_user},%{icinga_group}) %{_sysconfdir}/%{name}/%{name}.conf -%config(noreplace) %attr(0640,root,%{icinga_group}) %{_sysconfdir}/%{name}/init.conf %config(noreplace) %attr(0640,%{icinga_user},%{icinga_group}) %{_sysconfdir}/%{name}/constants.conf %config(noreplace) %attr(0640,%{icinga_user},%{icinga_group}) %{_sysconfdir}/%{name}/zones.conf %config(noreplace) %attr(0640,%{icinga_user},%{icinga_group}) %{_sysconfdir}/%{name}/conf.d/*.conf ++++++ v2.8.1.tar.gz -> v2.8.2.tar.gz ++++++ ++++ 9833 lines of diff (skipped)
