Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package cryptsetup for openSUSE:Factory
checked in at 2022-01-20 00:11:59
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/cryptsetup (Old)
and /work/SRC/openSUSE:Factory/.cryptsetup.new.1892 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "cryptsetup"
Thu Jan 20 00:11:59 2022 rev:117 rq:946915 version:2.4.3
Changes:
--------
--- /work/SRC/openSUSE:Factory/cryptsetup/cryptsetup.changes 2021-09-21
21:12:34.442600052 +0200
+++ /work/SRC/openSUSE:Factory/.cryptsetup.new.1892/cryptsetup.changes
2022-01-20 00:12:30.474587561 +0100
@@ -1,0 +2,43 @@
+Fri Jan 14 19:19:43 UTC 2022 - Andreas Stieger <andreas.stie...@gmx.de>
+
+- cryptsetup 2.4.3:
+ * Fix possible attacks against data confidentiality through
+ LUKS2 online reencryption extension crash recovery
+ CVE-2021-4122, boo#1194469
+ * Add configure option --disable-luks2-reencryption to completely
+ disable LUKS2 reencryption code.
+ * Improve internal metadata validation code for reencryption
+ metadata
+ * Add updated documentation for LUKS2 On-Disk Format
+ Specification version 1.1.0
+ * Fix support for bitlk (BitLocker compatible) startup key with
+ new metadata entry introduced in Windows 11
+ * Fix space restriction for LUKS2 reencryption with data shift
+
+-------------------------------------------------------------------
+Thu Nov 18 20:15:22 UTC 2021 - Andreas Stieger <andreas.stie...@gmx.de>
+
+- cryptsetup 2.4.2:
+ * Fix possible large memory allocation if LUKS2 header size is
+ invalid.
+ * Fix memory corruption in debug message printing LUKS2
+ checksum.
+ * veritysetup: remove link to the UUID library for the static
+ build.
+ * Remove link to pwquality library for integritysetup and
+ veritysetup. These tools do not read passphrases.
+ * OpenSSL3 backend: avoid remaining deprecated calls in API.
+ Crypto backend no longer use API deprecated in OpenSSL 3.0
+ * Check if kernel device-mapper create device failed in an early
+ phase. This happens when a concurrent creation of device-mapper
+ devices meets in the very early state.
+ * Do not set compiler optimization flag for Argon2 KDF if the
+ memory wipe is implemented in libc.
+ * Do not attempt to unload LUKS2 tokens if external tokens are
+ disabled. This allows building a static binary with
+ --disable-external-tokens.
+ * LUKS convert: also check sysfs for device activity.
+ If udev symlink is missing, code fallbacks to sysfs scan to
+ prevent data corruption for the active device.
+
+-------------------------------------------------------------------
Old:
----
cryptsetup-2.4.1.tar.sign
cryptsetup-2.4.1.tar.xz
New:
----
cryptsetup-2.4.3.tar.sign
cryptsetup-2.4.3.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ cryptsetup.spec ++++++
--- /var/tmp/diff_new_pack.ZXI6KS/_old 2022-01-20 00:12:31.338588258 +0100
+++ /var/tmp/diff_new_pack.ZXI6KS/_new 2022-01-20 00:12:31.342588261 +0100
@@ -1,7 +1,7 @@
#
-# spec file for package cryptsetup
+# spec file for package cryptsetup2
#
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -16,14 +16,14 @@
#
-%define tar_version 2.4.1
+%define tar_version 2.4.3
%define so_ver 12
%if 0%{?is_backports}
Name: cryptsetup2
%else
Name: cryptsetup
%endif
-Version: 2.4.1
+Version: 2.4.3
Release: 0
Summary: Setup program for dm-crypt Based Encrypted Block Devices
License: LGPL-2.0-or-later AND SUSE-GPL-2.0-with-openssl-exception
@@ -52,7 +52,7 @@
BuildRequires: pkgconfig(libssh)
BuildRequires: pkgconfig(openssl)
Requires(post): coreutils
-Requires(postun): coreutils
+Requires(postun):coreutils
%if 0%{?is_backports}
BuildRequires: autoconf
BuildRequires: automake
@@ -72,7 +72,6 @@
includes support for automatically setting up encrypted volumes at boot
time via the config file %{_sysconfdir}/crypttab.
-
%package ssh
Summary: Cryptsetup LUKS2 SSH token
Group: System/Base
++++++ cryptsetup-2.4.1.tar.xz -> cryptsetup-2.4.3.tar.xz ++++++
/work/SRC/openSUSE:Factory/cryptsetup/cryptsetup-2.4.1.tar.xz
/work/SRC/openSUSE:Factory/.cryptsetup.new.1892/cryptsetup-2.4.3.tar.xz differ:
char 13, line 1
