Hello community, here is the log from the commit of package ldb.13815 for openSUSE:Leap:15.2:Update checked in at 2020-09-01 12:30:24 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Leap:15.2:Update/ldb.13815 (Old) and /work/SRC/openSUSE:Leap:15.2:Update/.ldb.13815.new.3399 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ldb.13815" Tue Sep 1 12:30:24 2020 rev:1 rq:830438 version:2.0.12 Changes: -------- New Changes file: --- /dev/null 2020-08-06 00:20:10.149648038 +0200 +++ /work/SRC/openSUSE:Leap:15.2:Update/.ldb.13815.new.3399/ldb.changes 2020-09-01 12:30:52.720240035 +0200 @@ -0,0 +1,595 @@ +------------------------------------------------------------------- +Thu Jul 2 15:37:23 UTC 2020 - Noel Power <[email protected]> + +- Update to version 2.0.12 + + CVE-2020-10730: NULL de-reference in AD DC LDAP server + when ASQ and VLV combined; (bso#14364); (bsc#1173159). + + ldb_ldap: fix off-by-one increment in lldb_add_msg_attr; + (bso#14413). + + lib/ldb: add unit test for ldb_ldap internal code. +- Update to version 2.0.11 + + lib ldb: lmdb init var before calling mdb_reader_check. + + lib ldb: lmdb clear stale readers on write txn start; + (bso#14330). + + ldb tests: Confirm lmdb free list handling + +------------------------------------------------------------------- +Mon May 4 09:47:11 UTC 2020 - Samuel Cabrero <[email protected]> + +- Update to version 2.0.10 + + Drop patch CVE-2020-10700-2.0.10.patch + +------------------------------------------------------------------- +Fri Apr 24 08:40:43 UTC 2020 - Samuel Cabrero <[email protected]> + +- CVE-2020-10700: Use-after-free in Samba AD DC LDAP Server with + ASQ; (bso#14331); (bsc#1169850); +- Add CVE-2020-10700-2.0.10.patch + +------------------------------------------------------------------- +Wed Apr 22 10:42:21 UTC 2020 - Samuel Cabrero <[email protected]> + +- Update to version 2.0.9 + + Samba 4.11 and later give incorrect results for SCOPE_ONE + searches (bso#14270) + +------------------------------------------------------------------- +Wed Jan 22 17:28:23 UTC 2020 - David Mulder <[email protected]> + +ldb: Release ldb 2.0.8 + + Upgrade waf to version 2.0.18 to match the rest of Samba 4.11.x + (bso#13846) + +------------------------------------------------------------------- +Fri Jan 17 16:43:19 UTC 2020 - David Mulder <[email protected]> + +- libldb1 fails to migrate to libldb2 when libldb2 version is less + than libldb1 version; (bsc#1160341) + +------------------------------------------------------------------- +Tue Dec 17 15:11:00 UTC 2019 - Noel Power <[email protected]> + +- Add obsolete ldb1 directive to baselibs.conf + +------------------------------------------------------------------- +Thu Oct 03 22:08:14 UTC 2019 - James McDonough <[email protected]> + +- Update to version 2.0.7 + + Robustness improvements against duplicate attributes in ldb_filter_attrs() + (bso#13695) + + Robustness improvements against invalid string DN values (bso#14049) + + log database repack so users know what is happening (bso#14059) + + add ldb_options_get + + add "batch_mode" option. + + Remove Python 2.x support except to build just the bare C library + + Remove --extra-python (a build time mode to produce Python2 and Python3 + bindings at the same time) + + Fix standalone build of ldb. + + CVE-2019-3824 out of bounds read in wildcard compare (bso#13773) + +------------------------------------------------------------------- +Thu Aug 1 10:57:34 UTC 2019 - Samuel Cabrero <[email protected]> + +- Update to 1.5.5 + + LDAP_REFERRAL_SCHEME_OPAQUE was added to ldb_module.h; (bso#12478); + + Skip @ records early in a search full scan; (bso#13893); + +------------------------------------------------------------------- +Wed Mar 27 20:39:08 UTC 2019 - David Mulder <[email protected]> + +- Update to 1.4.6 + + CVE-2019-3824 out of bounds read in wildcard compare; (bso#13773); + +------------------------------------------------------------------- +Tue Mar 5 16:30:16 UTC 2019 - David Mulder <[email protected]> + +- Update to 1.5.4 + + Fix standalone build of ldb. + + C99 build fixes. + + CVE-2019-3824 out of bounds read in wildcard compare (bug#13773) +- Update to 1.5.3 + + Avoid inefficient one-level searches (bug#13762) + + The test api.py should not rely on order of entries in dict (bug#13772) + +------------------------------------------------------------------- +Wed Feb 6 17:40:31 UTC 2019 - David Mulder <[email protected]> + +- Update to 1.5.2 + + dirsync: Allow arbitrary length cookies (bug #13686) + + The build uses python3 by default: --extra-python would take + python2 now + + To build with python2 only use: + PYTHON=python2 ./configure + PYTHON=python2 make + PYTHON=python2 make install + +------------------------------------------------------------------- +Mon Nov 12 17:33:03 UTC 2018 - Samuel Cabrero <[email protected]> + +- Update to 1.4.3 + + Python: Ensure ldb.Dn can accept utf8 encoded unicode (bug 13616) + +------------------------------------------------------------------- +Tue Sep 25 07:35:57 UTC 2018 - Samuel Cabrero <[email protected]> + +- Update license to LGPL-3.0 + +------------------------------------------------------------------- +Fri Aug 17 15:21:40 UTC 2018 - [email protected] + +- Update to 1.4.2 + + Security fix for CVE-2018-1140 (NULL pointer de-reference, bug 13374) + + Fix memory leaks and missing error checks (bug 13459, 13471, 13475) +- 1.4.1 + + add some missing return value checks + + Fix several mem leaks in ldb_index ldb_search ldb_tdb (bug#13475) + + ldb_tdb: Use mem_ctx and so avoid leak onto long-term memory + on duplicated add. (bug#13471) + + ldb: Fix memory leak on module context (bug#13459) + + Refused build of Samba 4.8 with ldb 1.4 (bug #13519) + + Prevent similar issues in the future at configure time (bug #13519) +- 1.4.0 + + New LMDB backend (experimental) + + Comprehensive tests for index behaviour + + Enforce transactions for writes + + Enforce read lock use for all reads + + Fix memory leak in paged_results module. + We hold at most 10 outstanding paged result cookies + (bug #13362) + + Fix compiler warnings + + Python3 improvements + + Restore --disable-python build + + Fix for performance regression on one-level searches + (bug #13448) + + Samba's subtree_rename could fail to rename some entries + (bug #13452) + +------------------------------------------------------------------- +Wed Aug 15 21:52:13 UTC 2018 - [email protected] + +- Add fix_ldb_mod_op_test.patch: Fix missing NULL terminator in + ldb_mod_op_test testsuite + +------------------------------------------------------------------- +Tue Aug 14 20:35:30 UTC 2018 - [email protected] + +- Update to 1.3.5 + + Security fix for CVE-2018-1140 (NULL pointer de-reference, + bug #13374). +- 1.3.4 + + Fix memory leaks and missing error checks (bug #13459, #13471, + #13475). + + Fix fallback to full scan (performance regression) on + one-level search (bug #13448). + + Fix read corruption (missing results) during writes, + particularly during a Samba subtree rename (bug #13452). + +------------------------------------------------------------------- +Wed May 23 10:36:02 UTC 2018 - [email protected] + +- Update to 1.3.3 + + Fix failure to upgrade to the GUID index DB format; (bso#13306). + +------------------------------------------------------------------- +Fri Mar 16 19:09:53 UTC 2018 - [email protected] + +- Update to 1.3.2; + + Expose the SHOW_BINARY, ENABLE_TRACING and DONT_CREATE_DB flag + constants in the python api. + + Don't load LDB_MODULESDIR as a module file. + + Fix binary data in debug log (bug #13185). + + Intersect the index from SCOPE_ONELEVEL with the index for the + search expression (bso#13191) + + GUID Index support. + +------------------------------------------------------------------- +Fri Feb 9 12:04:23 UTC 2018 - [email protected] + +- Update to 1.2.3; (bsc#1080545); + + Performance regression in DNS server with introduction of DNS wildcard; + (bso#13191); + +------------------------------------------------------------------- +Mon Oct 2 12:18:30 UTC 2017 - [email protected] + +- Remove %if guards for blocks that do not affect the build result. + Fix RPM groups and summaries. + Drop very old SUSE support. Replace old RPM macros by new ++++ 398 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:Leap:15.2:Update/.ldb.13815.new.3399/ldb.changes New: ---- baselibs.conf ldb-2.0.12.tar.asc ldb-2.0.12.tar.gz ldb-python3.5-fix-soabi_name.patch ldb.changes ldb.keyring ldb.spec ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ldb.spec ++++++ # # spec file for package ldb # # Copyright (c) 2020 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via https://bugs.opensuse.org/ # %{!?py3_soflags: %global py3_soflags cpython-%{python3_version_nodots}m} %{!?py3_soflags_dash: %global py3_soflags_dash %(echo %{py3_soflags} | sed "s/_/-/g")} %global with_lmdb 0 %if 0%{?suse_version} > 1320 %ifarch x86_64 %global with_lmdb 1 %endif %endif %define lmdb_version 0.9.16 %define talloc_version 2.2.0 %define tdb_version 1.4.2 %define tevent_version 0.10.0 Name: ldb BuildRequires: docbook-xsl-stylesheets BuildRequires: doxygen %if 0%{?suse_version} > 1500 %ifnarch ppc BuildRequires: libcmocka-devel >= 1.1.3 %endif %endif BuildRequires: libtalloc-devel >= %{talloc_version} BuildRequires: libtdb-devel >= %{tdb_version} BuildRequires: libtevent-devel >= %{tevent_version} BuildRequires: libxslt BuildRequires: popt-devel BuildRequires: python3-devel BuildRequires: python3-talloc >= %{talloc_version} BuildRequires: python3-talloc-devel >= %{talloc_version} BuildRequires: python3-tdb >= %{tdb_version} BuildRequires: python3-tevent >= %{tevent_version} %if 0%{?suse_version} >= 1330 BuildRequires: libtirpc-devel %endif %if %{with_lmdb} BuildRequires: lmdb-devel >= %{lmdb_version} %endif Url: https://ldb.samba.org/ Version: 2.0.12 Release: 0 Summary: An LDAP-like embedded database License: LGPL-3.0-or-later Group: Development/Libraries/C and C++ Source: https://download.samba.org/pub/ldb/ldb-%{version}.tar.gz Source1: https://download.samba.org/pub/ldb/ldb-%{version}.tar.asc Source2: ldb.keyring Source4: baselibs.conf Patch0: ldb-python3.5-fix-soabi_name.patch BuildRoot: %{_tmppath}/%{name}-%{version}-build %description LDB is an LDAP-like embedded database. %package -n libldb2 Summary: An LDAP-like embedded database Group: System/Libraries Provides: libldb1 Obsoletes: libldb1 %description -n libldb2 LDB is an LDAP-like embedded database. This package includes the ldb2 library. %package -n libldb-devel Summary: Libraries and Header Files to Develop Programs with ldb2 Support Group: Development/Libraries/C and C++ Requires: libldb2 = %{version} Requires: pkg-config %description -n libldb-devel LDB is an LDAP-like embedded database. Libraries and Header Files to Develop Programs with ldb2 Support. %package -n ldb-tools Summary: Tools to manipulate LDB files Group: Development/Libraries/C and C++ %description -n ldb-tools Tools to manipulate LDB files. %package -n python3-ldb Summary: Python3 bindings for the LDB library Group: Development/Libraries/Python Requires: libldb2 = %{version} Obsoletes: python-ldb %description -n python3-ldb This package contains the python3 bindings for the LDB library. %package -n python3-ldb-devel Summary: Development files for the Python3 bindings for the LDB library Group: Development/Libraries/Python Requires: pkg-config Requires: python3-ldb = %{version} Obsoletes: python-ldb-devel %description -n python3-ldb-devel This package contains the development files for the Python bindings for the LDB library. %prep %setup -n ldb-%{version} -q %patch0 -p1 %build %if 0%{?suse_version} > 1110 export SUSE_ASNEEDED=0 %endif export CFLAGS="%{optflags} -D_GNU_SOURCE -D_LARGEFILE64_SOURCE -DIDMAP_RID_SUPPORT_TRUSTED_DOMAINS" %define bundled_libs cmocka %if 0%{?suse_version} > 1500 %ifnarch ppc %define bundled_libs NONE %endif %endif export CFLAGS="%{optflags} -D_GNU_SOURCE -D_LARGEFILE64_SOURCE -DIDMAP_RID_SUPPORT_TRUSTED_DOMAINS" CONFIGURE_OPTIONS="\ --prefix=%{_prefix} \ --libdir=%{_libdir} \ --disable-rpath \ --disable-rpath-install \ --disable-silent-rules \ --with-modulesdir=%{_libdir} \ --bundled-libraries=%{bundled_libs} \ --builtin-libraries=replace \ %if !%{with_lmdb} --without-ldb-lmdb \ %endif " ./configure ${CONFIGURE_OPTIONS} make %{?_smp_mflags} \ all doxygen Doxyfile # remove man page with bogus full build dir in path rm -f apidocs/man/man3/_*_ldb-%{version}_include_.3 %check %if %{with_lmdb} LD_LIBRARY_PATH="bin/shared:bin/shared/private" \ LDB_MODULES_PATH="bin/modules" \ make test %endif %install %make_install # Install API documentation cp -a apidocs/man/* %{buildroot}/%{_mandir} sed -i 's;-lpyldb-util.%{py3_soflags_dash};-lpyldb-util.%{py3_soflags};g' %{buildroot}/%{_libdir}/pkgconfig/pyldb-util.%{py3_soflags}.pc %post -n libldb2 -p /sbin/ldconfig %postun -n libldb2 -p /sbin/ldconfig %post -n python3-ldb -p /sbin/ldconfig %postun -n python3-ldb -p /sbin/ldconfig %files -n libldb2 %defattr(-,root,root) %{_libdir}/libldb.so.* %dir %{_libdir}/ldb %{_libdir}/ldb/asq.so %{_libdir}/ldb/paged_searches.so %{_libdir}/ldb/rdn_name.so %{_libdir}/ldb/sample.so %{_libdir}/ldb/server_sort.so %{_libdir}/ldb/skel.so %{_libdir}/ldb/tdb.so %if 0%{?suse_version} <= 1500 %{_libdir}/ldb/libcmocka-ldb.so %endif %ifarch ppc %{_libdir}/ldb/libcmocka-ldb.so %endif %{_libdir}/ldb/ldb.so %{_libdir}/ldb/libldb-key-value.so %if %{with_lmdb} %{_libdir}/ldb/libldb-mdb-int.so %{_libdir}/ldb/mdb.so %endif %{_libdir}/ldb/libldb-tdb-err-map.so %{_libdir}/ldb/libldb-tdb-int.so %files -n libldb-devel %defattr(-,root,root) %{_includedir}/ldb.h %{_includedir}/ldb_errors.h %{_includedir}/ldb_handlers.h %{_includedir}/ldb_module.h %{_includedir}/ldb_version.h %{_libdir}/libldb.so %dir %{_libdir}/ldb %{_libdir}/pkgconfig/ldb.pc %{_mandir}/man3/ldb*.3.* %if 0%{?suse_version} != 1110 || %{_arch} != i386 %{_mandir}/man3/ldif*.3.* %endif %files -n ldb-tools %defattr(-,root,root) %{_bindir}/ldbadd %{_bindir}/ldbdel %{_bindir}/ldbedit %{_bindir}/ldbmodify %{_bindir}/ldbrename %{_bindir}/ldbsearch %{_libdir}/ldb/libldb-cmdline.so %{_mandir}/man1/ldbadd.1.* %{_mandir}/man1/ldbdel.1.* %{_mandir}/man1/ldbedit.1.* %{_mandir}/man1/ldbmodify.1.* %{_mandir}/man1/ldbrename.1.* %{_mandir}/man1/ldbsearch.1.* %files -n python3-ldb %defattr(-,root,root) %{_libdir}/libpyldb-util.%{py3_soflags}.so.* %{python3_sitearch}/_ldb_text.py %if 0%{?centos_version} > 599 || 0%{?fedora_version} > 11 || 0%{?rhel_version} > 599 %{python3_sitearch}/__pycache__/_ldb_text.cpython-*.py[co] %endif %{python3_sitearch}/ldb.%{py3_soflags}.so %files -n python3-ldb-devel %defattr(-,root,root) %{_includedir}/pyldb.h %{_libdir}/libpyldb-util.%{py3_soflags}.so %{_libdir}/pkgconfig/pyldb-util.%{py3_soflags}.pc %if 0%{?suse_version} != 1110 || %{_arch} != i386 %{_mandir}/man3/PyLdb*.3.* %endif %changelog ++++++ baselibs.conf ++++++ libldb2 obsoletes "libldb1-<targettype> < <version>" python3-ldb ++++++ ldb-python3.5-fix-soabi_name.patch ++++++ Index: ldb-1.1.26/buildtools/wafsamba/wafsamba.py =================================================================== --- ldb-1.1.26.orig/buildtools/wafsamba/wafsamba.py +++ ldb-1.1.26/buildtools/wafsamba/wafsamba.py @@ -115,7 +115,7 @@ def SAMBA_LIBRARY(bld, libname, source, ldflags='', external_library=False, realname=None, - keep_underscore=False, + keep_underscore=True, autoproto=None, autoproto_extra_source='', group='main',
