Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package timescaledb for openSUSE:Factory checked in at 2022-03-17 17:02:05 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/timescaledb (Old) and /work/SRC/openSUSE:Factory/.timescaledb.new.25692 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "timescaledb" Thu Mar 17 17:02:05 2022 rev:9 rq:962455 version:2.6.0 Changes: -------- --- /work/SRC/openSUSE:Factory/timescaledb/timescaledb.changes 2021-07-02 13:28:56.908070949 +0200 +++ /work/SRC/openSUSE:Factory/.timescaledb.new.25692/timescaledb.changes 2022-03-17 17:02:34.565734844 +0100 @@ -1,0 +2,51 @@ +Tue Mar 15 18:05:26 UTC 2022 - Bruno Friedmann <br...@ioda-net.ch> + +- Added patch ab6b90caf.patch containing explicit mention of + CVE-2022-24128 closing boo#1197063 + +------------------------------------------------------------------- +Wed Feb 23 15:04:28 UTC 2022 - Marcus Rueckert <mrueck...@suse.de> + +- Update to version 2.6.0 + https://github.com/timescale/timescaledb/releases/tag/2.6.0 + +------------------------------------------------------------------- +Thu Feb 10 11:02:56 UTC 2022 - Marcus Rueckert <mrueck...@suse.de> + +- Update to version 2.5.2 + https://github.com/timescale/timescaledb/releases/tag/2.5.2 + +------------------------------------------------------------------- +Fri Jan 28 11:03:26 UTC 2022 - Marcus Rueckert <mrueck...@suse.de> + +- Update to version 2.5.1 + https://github.com/timescale/timescaledb/releases/tag/2.5.1 + +------------------------------------------------------------------- +Tue Nov 30 17:24:04 UTC 2021 - Marcus Rueckert <mrueck...@suse.de> + +- switch to %{pg_name}-server-devel + +------------------------------------------------------------------- +Tue Nov 30 15:13:07 UTC 2021 - Marcus Rueckert <mrueck...@suse.de> + +- Update to version 2.5.0 + https://github.com/timescale/timescaledb/releases/tag/1.7.5 + https://github.com/timescale/timescaledb/releases/tag/2.0.0 + https://github.com/timescale/timescaledb/releases/tag/2.0.1 + https://github.com/timescale/timescaledb/releases/tag/2.0.2 + https://github.com/timescale/timescaledb/releases/tag/2.1.0 + https://github.com/timescale/timescaledb/releases/tag/2.1.1 + https://github.com/timescale/timescaledb/releases/tag/2.2.0 + https://github.com/timescale/timescaledb/releases/tag/2.2.1 + https://github.com/timescale/timescaledb/releases/tag/2.3.0 + https://github.com/timescale/timescaledb/releases/tag/2.3.1 + https://github.com/timescale/timescaledb/releases/tag/2.4.0 + https://github.com/timescale/timescaledb/releases/tag/2.4.1 + https://github.com/timescale/timescaledb/releases/tag/2.4.2 + https://github.com/timescale/timescaledb/releases/tag/2.5.0 +- enable postgresql14 +- port to postgresql macros +- refresh clang-format9_support.diff + +------------------------------------------------------------------- Old: ---- timescaledb-1.7.4.tar.gz New: ---- ab6b90caf.patch series timescaledb-2.6.0.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ timescaledb.spec ++++++ --- /var/tmp/diff_new_pack.q01ZqS/_old 2022-03-17 17:02:35.301735406 +0100 +++ /var/tmp/diff_new_pack.q01ZqS/_new 2022-03-17 17:02:35.305735410 +0100 @@ -1,7 +1,7 @@ # # spec file # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,32 +16,28 @@ # -%define pgname @BUILD_FLAVOR@%{nil} -%define sname timescaledb -%define priority %{pgname} -Version: 1.7.4 +%define pg_name @BUILD_FLAVOR@%{nil} +%define ext_name timescaledb +%{pg_version_from_name} + +Name: %{pg_name}-%{ext_name} +Version: 2.6.0 Release: 0 Summary: A time-series database extension for PostgreSQL License: Apache-2.0 Group: Productivity/Databases/Tools URL: https://www.timescale.com/ -Source: https://github.com/timescale/%{sname}/archive/%{version}/%{sname}-%{version}.tar.gz -Patch0: clang-format9_support.diff -BuildRequires: %{pgname}-server -BuildRequires: %{pgname}-server-devel -BuildRequires: clang -BuildRequires: cmake >= 3.4 -BuildRequires: fdupes -BuildRequires: update-alternatives -%requires_eq %{pgname}-server -%if "%{pgname}" == "" -Name: %{sname} -ExclusiveArch: do_not_build -%else -Name: %{pgname}-%{sname} -%endif -%if ("%{pgname}" == "postgresql95" || "%{pgname}" == "postgresql96") && 0%{?suse_version} >= 1550 +Source: https://github.com/timescale/%{ext_name}/archive/%{version}/%{ext_name}-%{version}.tar.gz +Source1: series +Patch1: clang-format9_support.diff +Patch2: https://github.com/timescale/timescaledb/commit/ab6b90caf.patch + +BuildRequires: %{pg_name}-server-devel +BuildRequires: cmake >= 3.11 +%pg_server_requires +%if "%{pg_name}" == "" ExclusiveArch: do_not_build +Name: %{ext_name} %endif %description @@ -55,42 +51,20 @@ This build includes only Apache2 modules; TSL (timescale licenced modules are not built). -This build only Apache2 modules, -TSL (timescale licenced modules are not build) - %prep -%setup -q -n %{sname}-%{version} -# Remove static .so -rm -fv %{sname}.so -%autopatch -p1 +%autosetup -p1 -n %{ext_name}-%{version} %build -export PATH="$PATH:%{_prefix}/lib/%{pgname}/bin" -# No-as-needed is mandatory for Build on Leap42/SLE12 -# Force build of only Apache2(community) -%cmake -DAPACHE_ONLY=1 \ - -DCMAKE_EXE_LINKER_FLAGS="-Wl,--no-as-needed -Wl,--no-undefined -Wl,-z,now" \ - -DCMAKE_MODULE_LINKER_FLAGS="-Wl,--no-as-needed" \ - -DCMAKE_SHARED_LINKER_FLAGS="-Wl,--no-as-needed -Wl,--no-undefined -Wl,-z,now" \ - -DREGRESS_CHECKS=OFF \ - .. - -make USE_PGXS=1 %{?_smp_mflags} +%cmake -DAPACHE_ONLY=1 -DSEND_TELEMETRY_DEFAULT=OFF -DREGRESS_CHECKS=OFF +%cmake_build %install -export PATH="$PATH:%{_prefix}/lib/%{pgname}/bin" -%cmake_install USE_PGXS=1 install DESTDIR=%{buildroot} - -%fdupes %{buildroot}/%{_datadir}/%{pgname}/extension - -#%%check -# Need to be finished when we found pg_regress +%cmake_install %files -%defattr(-,root,root) -%license LICENSE-APACHE NOTICE -%doc README.md CONTRIBUTING.md CHANGELOG.md docs -%{_prefix}/lib/%{pgname}/%{_lib}/%{sname}*.so -%{_datadir}/%{pgname}/extension/%{sname}* +%license LICENSE-APACHE NOTICE LICENSE +%doc README.md CONTRIBUTING.md CHANGELOG.md +%{pg_config_pkglibdir}/%{ext_name}*.so +%{pg_config_sharedir}/extension/%{ext_name}* %changelog ++++++ _multibuild ++++++ --- /var/tmp/diff_new_pack.q01ZqS/_old 2022-03-17 17:02:35.341735437 +0100 +++ /var/tmp/diff_new_pack.q01ZqS/_new 2022-03-17 17:02:35.345735441 +0100 @@ -1,7 +1,6 @@ <multibuild> - <package>postgresql96</package> - <package>postgresql10</package> - <package>postgresql11</package> <package>postgresql12</package> + <package>postgresql13</package> + <package>postgresql14</package> </multibuild> ++++++ ab6b90caf.patch ++++++ >From ab6b90caff19e0193ceb58ba298280daf03a6adb Mon Sep 17 00:00:00 2001 From: Sven Klemm <s...@timescale.com> Date: Mon, 14 Mar 2022 11:44:05 +0100 Subject: [PATCH] Reference CVE ID in CHANGELOG The CVE ID was already referenced in the commit introducing the fix but not in the CHANGELOG. --- CHANGELOG.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index c3f051c01c..78a4b8fe21 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -63,7 +63,7 @@ upgrade as soon as possible. * #4024 Fix premature cache release call * #4037 Fix status for dropped chunks that have catalog entries * #4069 Fix riinfo NULL handling in ANY construct -* #4071 Fix extension installation privilege escalation +* #4071 Fix extension installation privilege escalation (CVE-2022-24128) **Thanks** * @carlocperez for reporting crash with NULL handling in ANY construct ++++++ clang-format9_support.diff ++++++ --- /var/tmp/diff_new_pack.q01ZqS/_old 2022-03-17 17:02:35.365735456 +0100 +++ /var/tmp/diff_new_pack.q01ZqS/_new 2022-03-17 17:02:35.369735458 +0100 @@ -1,9 +1,10 @@ -diff -rup a/CMakeLists.txt b/CMakeLists.txt ---- a/CMakeLists.txt 2020-03-18 15:58:38.000000000 +0100 -+++ b/CMakeLists.txt 2020-03-31 22:03:28.897261375 +0200 -@@ -258,8 +258,8 @@ if (CLANG_FORMAT) - message(FATAL_ERROR "Could not parse clang-format version ${CLANG_FORMAT_VERSION_OUTPUT}") - endif () +Index: timescaledb-2.5.0/CMakeLists.txt +=================================================================== +--- timescaledb-2.5.0.orig/CMakeLists.txt ++++ timescaledb-2.5.0/CMakeLists.txt +@@ -426,8 +426,8 @@ if(CLANG_FORMAT) + "Could not parse clang-format version ${CLANG_FORMAT_VERSION_OUTPUT}") + endif() - if((${CMAKE_MATCH_1} LESS "7") OR (${CMAKE_MATCH_1} GREATER "8")) - message(WARNING "clang-format version 7 or 8 required") @@ -11,5 +12,5 @@ + message(WARNING "clang-format version 7 or 9 required") set(CLANG_FORMAT False) endif() - endif () + endif() ++++++ series ++++++ clang-format9_support.diff ab6b90caf.patch ++++++ timescaledb-1.7.4.tar.gz -> timescaledb-2.6.0.tar.gz ++++++ ++++ 542887 lines of diff (skipped)
