Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package vsftpd for openSUSE:Factory checked
in at 2023-06-20 16:40:04
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/vsftpd (Old)
and /work/SRC/openSUSE:Factory/.vsftpd.new.15902 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "vsftpd"
Tue Jun 20 16:40:04 2023 rev:85 rq:1093728 version:3.0.5
Changes:
--------
--- /work/SRC/openSUSE:Factory/vsftpd/vsftpd.changes 2023-03-22
22:29:12.541760592 +0100
+++ /work/SRC/openSUSE:Factory/.vsftpd.new.15902/vsftpd.changes 2023-06-20
16:40:12.436422255 +0200
@@ -1,0 +2,8 @@
+Mon Jun 19 06:25:26 UTC 2023 - Peter Simons <psim...@suse.com>
+
+- Apply "0001-Fix-default-value-of-strict_ssl_read_eof-in-man-page.patch"
+ to fix the documentation of the strict_ssl_read_eof option. The
+ documentation says option would be disabled by default, but it is
+ in fact enabled. [bsc#1200075]
+
+-------------------------------------------------------------------
@@ -1307,3 +1314,0 @@
-
--------------------------------------------------------------------
-Mon Oct 22 15:57:40 CEST 2001 -
New:
----
0001-Fix-default-value-of-strict_ssl_read_eof-in-man-page.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ vsftpd.spec ++++++
--- /var/tmp/diff_new_pack.idlOlj/_old 2023-06-20 16:40:13.692429804 +0200
+++ /var/tmp/diff_new_pack.idlOlj/_new 2023-06-20 16:40:13.704429876 +0200
@@ -97,6 +97,7 @@
Patch43: vsftpd-allow-dev-log-socket.patch
Patch44: vsftpd-enable-sendto-for-prelogin-syslog.patch
Patch45: disable-tls13-to-support-older-openssl-versions.patch
+Patch46: 0001-Fix-default-value-of-strict_ssl_read_eof-in-man-page.patch
BuildRequires: libcap-devel
%if 0%{?suse_version} == 1315
BuildRequires: libopenssl-1_1-devel >= 1.1.1
@@ -180,10 +181,10 @@
%patch42 -p1
%patch43 -p1
%patch44 -p1
-
%if 0%{?sle_version} == 150000
%patch45 -p1
%endif
+%patch46 -p1
%build
%define seccomp_opts -D_GNU_SOURCE -DUSE_SECCOMP
++++++ 0001-Fix-default-value-of-strict_ssl_read_eof-in-man-page.patch ++++++
>From 9cba9e81aa96e1d64ae2eaaf88330e09dadfce79 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Ond=C5=99ej=20Lyson=C4=9Bk?= <olyso...@redhat.com>
Date: Fri, 5 Jan 2018 09:40:09 +0100
Subject: [PATCH 01/27] Fix default value of strict_ssl_read_eof in man page
---
vsftpd.conf.5 | 5 ++---
1 file changed, 2 insertions(+), 3 deletions(-)
diff --git a/vsftpd.conf.5 b/vsftpd.conf.5
index a5abeb2..43b0435 100644
--- a/vsftpd.conf.5
+++ b/vsftpd.conf.5
@@ -574,10 +574,9 @@ Default: YES
.B strict_ssl_read_eof
If enabled, SSL data uploads are required to terminate via SSL, not an
EOF on the socket. This option is required to be sure that an attacker did
-not terminate an upload prematurely with a faked TCP FIN. Unfortunately, it
-is not enabled by default because so few clients get it right. (New in v2.0.7).
+not terminate an upload prematurely with a faked TCP FIN. (New in v2.0.7).
-Default: NO
+Default: YES
.TP
.B strict_ssl_write_shutdown
If enabled, SSL data downloads are required to terminate via SSL, not an
--
2.40.1
