Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package scap-workbench for openSUSE:Factory checked in at 2021-06-04 22:44:10 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/scap-workbench (Old) and /work/SRC/openSUSE:Factory/.scap-workbench.new.1898 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "scap-workbench" Fri Jun 4 22:44:10 2021 rev:14 rq:897412 version:1.2.1+git20210604.1fc6def Changes: -------- --- /work/SRC/openSUSE:Factory/scap-workbench/scap-workbench.changes 2020-03-26 23:37:59.438877223 +0100 +++ /work/SRC/openSUSE:Factory/.scap-workbench.new.1898/scap-workbench.changes 2021-06-04 22:44:37.607213879 +0200 @@ -1,0 +2,7 @@ +Fri Jun 4 09:44:15 UTC 2021 - Klaus K??mpf <[email protected]> + +- Update to 1.2.1+git20210604.1fc6def to fix Factory build + +- drop 0001-Port-Qt5-deprecated-methods.patch (upstream) + +------------------------------------------------------------------- Old: ---- 0001-Port-Qt5-deprecated-methods.patch scap-workbench-1.2.1.tar.bz2 New: ---- scap-workbench-1.2.1+git20210604.1fc6def.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ scap-workbench.spec ++++++ --- /var/tmp/diff_new_pack.NlqHgu/_old 2021-06-04 22:44:38.043214765 +0200 +++ /var/tmp/diff_new_pack.NlqHgu/_new 2021-06-04 22:44:38.047214773 +0200 @@ -1,7 +1,7 @@ # # spec file for package scap-workbench # -# Copyright (c) 2020 SUSE LLC +# Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,16 +17,16 @@ Name: scap-workbench -Version: 1.2.1 +Version: 1.2.1+git20210604.1fc6def Release: 0 Summary: A SCAP scanner and SCAP content editor License: GPL-3.0-only Group: Productivity/Security URL: https://github.com/OpenSCAP/scap-workbench -Source: https://github.com/OpenSCAP/scap-workbench/releases/download/%{version}/scap-workbench-%{version}.tar.bz2 +#Source: https://github.com/OpenSCAP/scap-workbench/releases/download/%{version}/scap-workbench-%{version}.tar.bz2 +Source: scap-workbench-%{version}.tar.gz Patch0: 0001-pkexec-avoid-potential-local-root-exploit-by-using-P.patch -# PATCH-FIX-UPSTREAM -Patch1: 0001-Port-Qt5-deprecated-methods.patch +BuildRequires: asciidoc BuildRequires: cmake >= 2.6 BuildRequires: openscap-devel # SLE 11 SP3: libopenscap needs libxslt without requiring it @@ -41,6 +41,12 @@ BuildRequires: cmake(Qt5XmlPatterns) BuildRoot: %{_tmppath}/%{name}-%{version}-build +# scap-security-guide provides 'content' +Recommends: scap-security-guide + +# openscap-utils provides 'oscap' to run profiles +Recommends: openscap-utils + %description The main goal of this application is to lower the initial barrier of using SCAP. Therefore, the scope of very narrow - scap-workbench only @@ -59,9 +65,8 @@ This package provides HTML documentation for scap-workbench. %prep -%setup -q +%setup -q -n %{name} %patch0 -p1 -%patch1 -p1 %build %if 0%{?cmake} ++++++ 0001-pkexec-avoid-potential-local-root-exploit-by-using-P.patch ++++++ --- /var/tmp/diff_new_pack.NlqHgu/_old 2021-06-04 22:44:38.067214814 +0200 +++ /var/tmp/diff_new_pack.NlqHgu/_new 2021-06-04 22:44:38.067214814 +0200 @@ -1,7 +1,7 @@ -From d0afef48545bd88687023e25c62d948354406597 Mon Sep 17 00:00:00 2001 +From 000889f30583d8e8bb956c665b9f60a12a4a56d8 Mon Sep 17 00:00:00 2001 From: Matthias Gerstner <[email protected]> Date: Thu, 19 Jul 2018 12:27:46 +0200 -Subject: [PATCH 1/2] pkexec: avoid potential local root exploit by using +Subject: [PATCH] pkexec: avoid potential local root exploit by using PKEXEC_UID and sudo If an admin relaxes the required polkit authentication for running @@ -31,7 +31,7 @@ 2 files changed, 26 insertions(+), 13 deletions(-) diff --git a/scap-workbench-oscap.sh b/scap-workbench-oscap.sh -index 9066444..6f720de 100755 +index 90664446c594..6f720ded54a8 100755 --- a/scap-workbench-oscap.sh +++ b/scap-workbench-oscap.sh @@ -25,14 +25,15 @@ trap "" SIGHUP SIGINT @@ -94,7 +94,7 @@ chown_copy "$TEMP_DIR/results-arf.xml" "$TARGET_RESULTS_ARF" chown_copy "$TEMP_DIR/report.html" "$TARGET_REPORT" diff --git a/scap-workbench-pkexec-oscap.sh b/scap-workbench-pkexec-oscap.sh -index 1ae8329..a8d9b2b 100755 +index 1ae83296b83b..a8d9b2bd84cb 100755 --- a/scap-workbench-pkexec-oscap.sh +++ b/scap-workbench-pkexec-oscap.sh @@ -18,9 +18,6 @@ @@ -126,5 +126,5 @@ fi -- -2.25.1 +2.26.0
