commit raptor for openSUSE:Factory

Tue, 14 Jan 2025 07:22:31 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package raptor for openSUSE:Factory checked 
in at 2025-01-14 16:21:30
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/raptor (Old)
 and      /work/SRC/openSUSE:Factory/.raptor.new.1881 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "raptor"

Tue Jan 14 16:21:30 2025 rev:45 rq:1237384 version:2.0.16

Changes:
--------
--- /work/SRC/openSUSE:Factory/raptor/raptor.changes    2024-03-06 
23:03:34.447230286 +0100
+++ /work/SRC/openSUSE:Factory/.raptor.new.1881/raptor.changes  2025-01-14 
16:21:41.531636329 +0100
@@ -1,0 +2,5 @@
+Mon Jan 13 10:57:36 UTC 2025 - Dirk Müller <dmuel...@suse.com>
+
+- add raptor-CVE-2024-57823.patch (bsc#1235673, CVE-2024-57823)
+
+-------------------------------------------------------------------

New:
----
  raptor-CVE-2024-57823.patch

BETA DEBUG BEGIN:
  New:
- add raptor-CVE-2024-57823.patch (bsc#1235673, CVE-2024-57823)
BETA DEBUG END:

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ raptor.spec ++++++
--- /var/tmp/diff_new_pack.ALLYl1/_old  2025-01-14 16:21:42.019656522 +0100
+++ /var/tmp/diff_new_pack.ALLYl1/_new  2025-01-14 16:21:42.023656688 +0100
@@ -1,7 +1,7 @@
 #
 # spec file for package raptor
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -30,6 +30,7 @@
 Patch2:         ubsan.patch
 # Patch sent upstream: https://github.com/dajobe/raptor/pull/58
 Patch3:         raptor-libxml2-2.11-support.patch
+Patch4:         raptor-CVE-2024-57823.patch
 BuildRequires:  bison
 BuildRequires:  curl-devel
 BuildRequires:  libxslt-devel
@@ -70,6 +71,7 @@
 %setup -q -n %{name}2-%{version}
 %patch -P 2
 %patch -P 3 -p1
+%patch -P 4 -p1
 
 %build
 %configure \

++++++ raptor-CVE-2024-57823.patch ++++++
Index: raptor2-2.0.16/src/raptor_rfc2396.c
===================================================================
--- raptor2-2.0.16.orig/src/raptor_rfc2396.c
+++ raptor2-2.0.16/src/raptor_rfc2396.c
@@ -393,10 +393,8 @@ raptor_uri_normalize_path(unsigned char*
   }
 
 
-#if defined(RAPTOR_DEBUG)
   if(path_len != strlen((const char*)path_buffer))
     RAPTOR_FATAL3("Path length %ld does not match calculated %ld.", 
(long)strlen((const char*)path_buffer), (long)path_len);
-#endif
 
   /* RFC3986 Appendix C.2 / 5.4.2 Abnormal Examples
    * Remove leading /../ and /./

Reply via email to