commit python-rfc3161-client for openSUSE:Factory

Mon, 23 Jun 2025 06:09:58 -0700 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package python-rfc3161-client for 
openSUSE:Factory checked in at 2025-06-23 15:06:00
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-rfc3161-client (Old)
 and      /work/SRC/openSUSE:Factory/.python-rfc3161-client.new.7067 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "python-rfc3161-client"

Mon Jun 23 15:06:00 2025 rev:3 rq:1287872 version:1.0.3

Changes:
--------
--- 
/work/SRC/openSUSE:Factory/python-rfc3161-client/python-rfc3161-client.changes  
    2025-04-20 20:08:12.313707706 +0200
+++ 
/work/SRC/openSUSE:Factory/.python-rfc3161-client.new.7067/python-rfc3161-client.changes
    2025-06-23 15:07:07.142354750 +0200
@@ -1,0 +2,17 @@
+Mon Jun 23 07:46:59 UTC 2025 - Nico Krapp <nico.kr...@suse.com>
+
+- Update to 1.0.3
+  * Exposed verify_message in the actual Verify interface, not just the
+    implementation
+  * Fixed a bug where verification performed insufficient signature checks on
+    the timestamp response itself, rather than the response's certificate chain
+    (CVE-2025-52556 / bsc#1245174)
+- Update to 1.0.2
+  * Added HashAlgorithm to exports of the base package module
+  * Added verify_message method to Verifier class
+  * Slight refactoring of the tests to ease how to test with multiple TSA
+  * Changed return value of VerifierBuilder.build() from _Verifier to Verifier:
+    This is technically an API change but should have minimal user impact.
+  * Fixed spelling of hash_algorithm parameter in TimestampRequestBuilder class
+
+-------------------------------------------------------------------

Old:
----
  rfc3161_client-1.0.1.tar.gz

New:
----
  rfc3161_client-1.0.3.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ python-rfc3161-client.spec ++++++
--- /var/tmp/diff_new_pack.leSTDJ/_old  2025-06-23 15:07:08.794423648 +0200
+++ /var/tmp/diff_new_pack.leSTDJ/_new  2025-06-23 15:07:08.794423648 +0200
@@ -27,7 +27,7 @@
 
 %{?sle15_python_module_pythons}
 Name:           python-rfc3161-client
-Version:        1.0.1
+Version:        1.0.3
 Release:        0
 Summary:        Python library implementing the Time-Stamp Protocol (TSP) 
described in RFC 3161
 License:        Apache-2.0

++++++ rfc3161_client-1.0.1.tar.gz -> rfc3161_client-1.0.3.tar.gz ++++++
++++ 1640 lines of diff (skipped)

++++++ vendor.tar.zst ++++++
/work/SRC/openSUSE:Factory/python-rfc3161-client/vendor.tar.zst 
/work/SRC/openSUSE:Factory/.python-rfc3161-client.new.7067/vendor.tar.zst 
differ: char 7, line 1

Reply via email to