Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-pysaml2 for openSUSE:Factory checked in at 2021-01-21 21:54:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-pysaml2 (Old) and /work/SRC/openSUSE:Factory/.python-pysaml2.new.28504 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-pysaml2" Thu Jan 21 21:54:40 2021 rev:22 rq:865254 version:6.5.1 Changes: -------- --- /work/SRC/openSUSE:Factory/python-pysaml2/python-pysaml2.changes 2021-01-06 19:57:04.073155868 +0100 +++ /work/SRC/openSUSE:Factory/.python-pysaml2.new.28504/python-pysaml2.changes 2021-01-21 21:54:41.105777736 +0100 @@ -1,0 +2,30 @@ +Wed Jan 20 23:41:54 UTC 2021 - Michael Str??der <mich...@stroeder.com> + +- Update to 6.5.1: + * Fix the parser to take into account both the xs and xsd namespace prefixes + +------------------------------------------------------------------- +Wed Jan 20 20:12:26 UTC 2021 - Michael Str??der <mich...@stroeder.com> + +- Update to 6.5.0 - Security release + * Fix processing of invalid SAML XML documents - CVE-2021-21238 + * Fix unspecified xmlsec1 key-type preference - CVE-2021-21239 + * Add more tests regarding XSW attacks + * Add XML Schemas for SAML2 and common extensions + * Fix the XML parser to not break on ePTID AttributeValues + * Fix the initialization value of the return_addrs property of the StatusResponse object + * Fix SWAMID entity-category policy regarding eduPersonTargetedID + * data: use importlib to load package data (backwards compatibility through the importlib_resources package) + * docs: improve the documentation for the signing_algorithm and digest_algorithm options + * examples: fix the logging configuration of the example-IdP + * tests: allow tests to pass on 32bit systems by properly choosing dates in test XML documents + * tests: improvements on the generation of response and assertion objects + * tests: expand tests on python-3.9 and python-3.10-dev +- added new build dependencies: + * python3-importlib-resources + * python3-xmlschema + * update-alternatives +- removed obsolete avoid-too-large-dates.patch +- replaced %python3_alternative by %python_alternative + +------------------------------------------------------------------- Old: ---- avoid-too-large-dates.patch v6.3.1.tar.gz New: ---- v6.5.1.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-pysaml2.spec ++++++ --- /var/tmp/diff_new_pack.DuFLYk/_old 2021-01-21 21:54:42.289778184 +0100 +++ /var/tmp/diff_new_pack.DuFLYk/_new 2021-01-21 21:54:42.293778185 +0100 @@ -20,19 +20,17 @@ %global modname pysaml2 %global skip_python2 1 Name: python-pysaml2 -Version: 6.3.1 +Version: 6.5.1 Release: 0 Summary: Python implementation of SAML Version 2 to be used in a WSGI environment License: Apache-2.0 URL: https://github.com/IdentityPython/pysaml2 Source: https://github.com/IdentityPython/pysaml2/archive/v%{version}.tar.gz -# PATCH-FIX-UPSTREAM avoid-too-large-dates.patch gh#IdentityPython/pysaml2#759 mc...@suse.com -# avoid Y38K bug on 32bit machines. -Patch0: avoid-too-large-dates.patch BuildRequires: %{python_module Paste} BuildRequires: %{python_module cryptography >= 1.4} BuildRequires: %{python_module dbm} BuildRequires: %{python_module defusedxml} +BuildRequires: %{python_module importlib-resources} BuildRequires: %{python_module mock} BuildRequires: %{python_module pyOpenSSL} BuildRequires: %{python_module pymongo} @@ -44,8 +42,10 @@ BuildRequires: %{python_module responses} BuildRequires: %{python_module setuptools} BuildRequires: %{python_module six} +BuildRequires: %{python_module xmlschema} BuildRequires: %{python_module zope.interface} BuildRequires: fdupes +BuildRequires: update-alternatives # This is needed as xmlsec itself does not pull any backend by default # Will be fixed in future xmlsec releases BuildRequires: libxmlsec1-openssl1 @@ -75,7 +75,6 @@ %prep %setup -q -n %{modname}-%{version} %ifarch %{ix86} -%patch0 -p1 %endif # delete shebang of files not in executable path @@ -110,10 +109,10 @@ %files %{python_files} %license LICENSE %doc README.rst CHANGELOG.md -%python3_alternative %{_bindir}/make_metadata.py -%python3_alternative %{_bindir}/parse_xsd2.py -%python3_alternative %{_bindir}/mdexport.py -%python3_alternative %{_bindir}/merge_metadata.py +%python_alternative %{_bindir}/make_metadata.py +%python_alternative %{_bindir}/parse_xsd2.py +%python_alternative %{_bindir}/mdexport.py +%python_alternative %{_bindir}/merge_metadata.py %{python_sitelib}/* %changelog ++++++ v6.3.1.tar.gz -> v6.5.1.tar.gz ++++++ ++++ 11724 lines of diff (skipped)
