Hello community, here is the log from the commit of package libarchive for openSUSE:Factory checked in at 2019-06-17 10:32:01 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libarchive (Old) and /work/SRC/openSUSE:Factory/.libarchive.new.4811 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libarchive" Mon Jun 17 10:32:01 2019 rev:34 rq:709705 version:3.4.0 Changes: -------- --- /work/SRC/openSUSE:Factory/libarchive/libarchive.changes 2019-02-08 13:47:23.846798028 +0100 +++ /work/SRC/openSUSE:Factory/.libarchive.new.4811/libarchive.changes 2019-06-17 10:32:06.917302304 +0200 @@ -1,0 +2,24 @@ +Thu Jun 13 08:00:36 UTC 2019 - Ismail Dönmez <[email protected]> + +- Update to version 3.4.0 + * Support for file and directory symlinks on Windows + * Read support for RAR 5.0 archives + * Read support for ZIPX archives with xz, lzma, ppmd8 and + bzip2 compression + * Support for non-recursive list and extract + * New tar option: --exclude-vcs + * Improved file attribute support on Linux and file flags support + on FreeBSD + * Fix reading Android APK archives (#1055 ) + * Fix problems related to unreadable directories (#1167) + * A two-digit number of OSS-Fuzz issues was resolved in this release +- Add libarchive.keyring and validate the tarball signature +- Drop all security patches, fixed upstream: + * CVE-2018-1000877.patch + * CVE-2018-1000878.patch + * CVE-2018-1000879.patch + * CVE-2018-1000880.patch + * CVE-2019-1000019.patch + * CVE-2019-1000020.patch + +------------------------------------------------------------------- Old: ---- CVE-2018-1000877.patch CVE-2018-1000878.patch CVE-2018-1000879.patch CVE-2018-1000880.patch CVE-2019-1000019.patch CVE-2019-1000020.patch libarchive-3.3.3.tar.gz New: ---- libarchive-3.4.0.tar.gz libarchive-3.4.0.tar.gz.asc libarchive.keyring ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libarchive.spec ++++++ --- /var/tmp/diff_new_pack.1Rj1k2/_old 2019-06-17 10:32:08.557301399 +0200 +++ /var/tmp/diff_new_pack.1Rj1k2/_new 2019-06-17 10:32:08.561301397 +0200 @@ -20,7 +20,6 @@ %define libname libarchive%{somajor} %if 0%{?centos_version} || 0%{?rhel_version} %if 0%{?centos_version} <= 600 || 0%{?rhel_version <= 700} -%define skip_autoreconf 1 %bcond_without static_libs %bcond_with openssl %bcond_with ext2fs @@ -31,20 +30,16 @@ %bcond_without ext2fs %endif Name: libarchive -Version: 3.3.3 +Version: 3.4.0 Release: 0 Summary: Utility and C library to create and read several different streaming archive formats License: BSD-2-Clause Group: Productivity/Archiving/Compression URL: http://www.libarchive.org/ -Source0: http://www.libarchive.org/downloads/libarchive-%{version}.tar.gz -Source1: baselibs.conf -Patch0: CVE-2018-1000877.patch -Patch1: CVE-2018-1000878.patch -Patch2: CVE-2018-1000879.patch -Patch3: CVE-2018-1000880.patch -Patch4: CVE-2019-1000019.patch -Patch5: CVE-2019-1000020.patch +Source0: https://github.com/libarchive/libarchive/releases/download/v%{version}/libarchive-%{version}.tar.gz +Source1: https://github.com/libarchive/libarchive/releases/download/v%{version}/libarchive-%{version}.tar.gz.asc +Source2: libarchive.keyring +Source1000: baselibs.conf BuildRequires: libacl-devel BuildRequires: libbz2-devel BuildRequires: libtool @@ -162,17 +157,8 @@ %prep %setup -q -%patch0 -p1 -%patch1 -p1 -%patch2 -p1 -%patch3 -p1 -%patch4 -p1 -%patch5 -p1 %build -%if !0%{?skip_autoreconf} -autoreconf -fiv -%endif export CFLAGS="%{optflags} -D_REENTRANT -pipe" export CXXFLAGS="$CFLAGS" %configure \ @@ -189,7 +175,7 @@ %check # test suite is a bit racy unfortunatly, so give it three attempts -make check || make check || make check +make %{?_smp_mflags} check || make check || make check %install %make_install ++++++ libarchive-3.3.3.tar.gz -> libarchive-3.4.0.tar.gz ++++++ /work/SRC/openSUSE:Factory/libarchive/libarchive-3.3.3.tar.gz /work/SRC/openSUSE:Factory/.libarchive.new.4811/libarchive-3.4.0.tar.gz differ: char 5, line 1
