Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-pypdf for openSUSE:Factory checked in at 2026-04-20 16:12:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-pypdf (Old) and /work/SRC/openSUSE:Factory/.python-pypdf.new.11940 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-pypdf" Mon Apr 20 16:12:29 2026 rev:19 rq:1348120 version:6.10.2 Changes: -------- --- /work/SRC/openSUSE:Factory/python-pypdf/python-pypdf.changes 2026-03-30 18:35:32.129684498 +0200 +++ /work/SRC/openSUSE:Factory/.python-pypdf.new.11940/python-pypdf.changes 2026-04-20 16:12:42.836655442 +0200 @@ -1,0 +2,20 @@ +Mon Apr 20 06:56:57 UTC 2026 - Daniel Garcia <[email protected]> + +- Update to 6.10.2 (bsc#1262284, CVE-2026-40260) + * Do not rely on possibly invalid /Size for incremental cloning + * Introduce limits for FlateDecode parameters and image decoding +- 6.10.1 + * Limit the allowed size of xref and object streams + * Consider strict mode setting for decryption errors + * Use new parameter names for compress_identical_objects +- 6.10.0 + * Disallow custom XML entity declarations for XMP metadata + * Skip MD5 key derivation for AES-256 encrypted PDFs + * Use remove_orphans in compress_identical_objects + * Fix PdfReadError when xref table contains comments before trailer + * Correctly verify AES padding during decryption + * Fix stale object cache from non-authoritative object streams + * Fix extract_links pairing when annotations include non-links + * Add AI policy + +------------------------------------------------------------------- Old: ---- python-pypdf-6.9.2.tar.gz New: ---- python-pypdf-6.10.2.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-pypdf.spec ++++++ --- /var/tmp/diff_new_pack.hrDGtc/_old 2026-04-20 16:12:43.476682169 +0200 +++ /var/tmp/diff_new_pack.hrDGtc/_new 2026-04-20 16:12:43.476682169 +0200 @@ -18,7 +18,7 @@ %{?sle15_python_module_pythons} Name: python-pypdf -Version: 6.9.2 +Version: 6.10.2 Release: 0 Summary: PDF toolkit License: BSD-3-Clause ++++++ python-pypdf-6.9.2.tar.gz -> python-pypdf-6.10.2.tar.gz ++++++ /work/SRC/openSUSE:Factory/python-pypdf/python-pypdf-6.9.2.tar.gz /work/SRC/openSUSE:Factory/.python-pypdf.new.11940/python-pypdf-6.10.2.tar.gz differ: char 13, line 1
