Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package redis for openSUSE:Factory checked
in at 2023-10-24 20:07:38
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/redis (Old)
and /work/SRC/openSUSE:Factory/.redis.new.24901 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "redis"
Tue Oct 24 20:07:38 2023 rev:91 rq:1119656 version:7.2.2
Changes:
--------
--- /work/SRC/openSUSE:Factory/redis/redis.changes 2023-07-14
15:35:46.453982547 +0200
+++ /work/SRC/openSUSE:Factory/.redis.new.24901/redis.changes 2023-10-24
20:07:42.263100512 +0200
@@ -1,0 +2,53 @@
+Fri Oct 20 10:03:33 UTC 2023 - Danilo Spinella <o...@danyspin97.org>
+
+- redis 7.2.2:
+ * (CVE-2023-45145) The wrong order of listen(2) and chmod(2) calls creates a
+ race condition that can be used by another process to bypass desired Unix
+ socket permissions on startup, bsc#1216376
+ * WAITAOF could timeout in the absence of write traffic in case a new AOF is
+ created and an AOF rewrite can't immediately start
+ * Fix crash when running rebalance command in a mixed cluster of 7.0 and 7.2
+ nodes
+ * Fix the return type of the slot number in cluster shards to integer, which
+ makes it consistent with past behavior
+ * Fix CLUSTER commands are called from modules or scripts to return TLS info
+ appropriately
+ redis-cli, fix crash on reconnect when in SUBSCRIBE mode
+ * Fix overflow calculation for next timer event
+
+-------------------------------------------------------------------
+Thu Sep 7 14:31:26 UTC 2023 - Danilo Spinella <danilo.spine...@suse.com>
+
+- redis 7.2.1:
+ * (CVE-2023-41053) Redis does not correctly identify keys accessed by
SORT_RO and,
+ as a result, may grant users executing this command access to keys that
are not
+ explicitly authorized by the ACL configuration. (bsc#1215094)
+ * Fix crashes when joining a node to an existing 7.0 Redis Cluster
+ * Correct request_policy and response_policy command tips on for some admin /
+ configuration commands
+- Refresh redis.hashes
+
+-------------------------------------------------------------------
+Tue Aug 15 11:28:07 UTC 2023 - Marcus Rueckert <mrueck...@suse.de>
+
+- redis 7.2.0
+ - Bug Fixes
+ - redis-cli in cluster mode handles unknown-endpoint (#12273)
+ - Update request / response policy hints for a few commands
+ (#12417)
+ - Ensure that the function load timeout is disabled during
+ loading from RDB/AOF and on replicas. (#12451)
+ - Fix false success and a memory leak for ACL selector with bad
+ parenthesis combination (#12452)
+ - Fix the assertion when script timeout occurs after it
+ signaled a blocked client (#12459)
+ - Fixes for issues in previous releases of Redis 7.2
+ - Update MONITOR client's memory correctly for INFO and
+ client-eviction (#12420)
+ - The response of cluster nodes was unnecessarily adding an
+ extra comma when no hostname was present. (#12411)
+- refreshed redis-conf.patch:
+- switch to autosetup now that we switched the last patch to patch
+ level 1
+
+-------------------------------------------------------------------
Old:
----
redis-7.0.12.tar.gz
New:
----
redis-7.2.2.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ redis.spec ++++++
--- /var/tmp/diff_new_pack.fjN6mX/_old 2023-10-24 20:07:43.031128434 +0200
+++ /var/tmp/diff_new_pack.fjN6mX/_new 2023-10-24 20:07:43.035128580 +0200
@@ -20,7 +20,7 @@
%define _log_dir %{_localstatedir}/log/%{name}
%define _conf_dir %{_sysconfdir}/%{name}
Name: redis
-Version: 7.0.12
+Version: 7.2.2
Release: 0
Summary: Persistent key-value database
License: BSD-3-Clause
@@ -63,10 +63,7 @@
%prep
echo "`grep -F %{name}-%{version}.tar.gz %{SOURCE10} | cut -d' ' -f4`
%{SOURCE0}" | sha256sum -c
-%setup -q
-%patch0
-%patch3 -p1
-%patch4 -p1
+%autosetup -p1
%build
export HOST=OBS # for reproducible builds
++++++ redis-7.0.12.tar.gz -> redis-7.2.2.tar.gz ++++++
++++ 192631 lines of diff (skipped)
++++++ redis-conf.patch ++++++
--- /var/tmp/diff_new_pack.fjN6mX/_old 2023-10-24 20:07:43.747154466 +0200
+++ /var/tmp/diff_new_pack.fjN6mX/_new 2023-10-24 20:07:43.751154612 +0200
@@ -1,8 +1,8 @@
-Index: redis.conf
-===================================================================
---- redis.conf.orig
-+++ redis.conf
-@@ -244,7 +244,7 @@
+diff --git a/redis.conf b/redis.conf
+index 97f077b0d..6ba6b290e 100644
+--- a/redis.conf
++++ b/redis.conf
+@@ -306,7 +306,7 @@ tcp-keepalive 300
# By default Redis does not run as a daemon. Use 'yes' if you need it.
# Note that Redis will write a pid file in /var/run/redis.pid when daemonized.
# When Redis is supervised by upstart or systemd, this parameter has no
impact.
@@ -11,7 +11,7 @@
# If you run Redis from upstart or systemd, Redis can interact with your
# supervision tree. Options:
-@@ -262,7 +262,7 @@
+@@ -324,7 +324,7 @@ daemonize no
# The default is "no". To run under upstart/systemd, you can simply uncomment
# the line below:
#
@@ -20,7 +20,7 @@
# If a pid file is specified, Redis writes it where specified at startup
# and removes it at exit.
-@@ -276,7 +276,7 @@
+@@ -338,7 +338,7 @@ daemonize no
#
# Note that on modern Linux systems "/run/redis.pid" is more conforming
# and should be used instead.
@@ -29,7 +29,7 @@
# Specify the server verbosity level.
# This can be one of:
-@@ -289,7 +289,8 @@
+@@ -352,7 +352,8 @@ loglevel notice
# Specify the log file name. Also the empty string can be used to force
# Redis to log on the standard output. Note that if you use standard
# output for logging but daemonize, logs will be sent to /dev/null
@@ -39,7 +39,7 @@
# To enable logging to the system logger, just set 'syslog-enabled' to yes,
# and optionally update the other syslog parameters to suit your needs.
-@@ -441,7 +442,7 @@
+@@ -507,7 +508,7 @@ rdb-del-sync-files no
# The Append Only File will also be created inside this directory.
#
# Note that you must specify a directory here, not a file name.
@@ -48,11 +48,11 @@
################################# REPLICATION
#################################
-Index: sentinel.conf
-===================================================================
---- sentinel.conf.orig
-+++ sentinel.conf
-@@ -24,16 +24,18 @@
+diff --git a/sentinel.conf b/sentinel.conf
+index b7b3604f0..8262608ad 100644
+--- a/sentinel.conf
++++ b/sentinel.conf
+@@ -13,11 +13,12 @@ port 26379
# Note that Redis will write a pid file in /var/run/redis-sentinel.pid when
# daemonized.
daemonize no
@@ -64,13 +64,15 @@
-pidfile /var/run/redis-sentinel.pid
+pidfile /run/redis/sentinel-default.pid
+ # Specify the server verbosity level.
+ # This can be one of:
+@@ -31,7 +32,7 @@ loglevel notice
# Specify the log file name. Also the empty string can be used to force
# Sentinel to log on the standard output. Note that if you use standard
# output for logging but daemonize, logs will be sent to /dev/null
-logfile ""
-+loglevel notice
+logfile /var/log/redis/sentinel-default.log
- # sentinel announce-ip <ip>
- # sentinel announce-port <port>
+ # To enable logging to the system logger, just set 'syslog-enabled' to yes,
+ # and optionally update the other syslog parameters to suit your needs.
++++++ redis.hashes ++++++
--- /var/tmp/diff_new_pack.fjN6mX/_old 2023-10-24 20:07:43.823157230 +0200
+++ /var/tmp/diff_new_pack.fjN6mX/_new 2023-10-24 20:07:43.831157520 +0200
@@ -163,4 +163,10 @@
hash redis-6.2.13.tar.gz sha256
89ff27c80d420456a721ccfb3beb7cc628d883c53059803513749e13214a23d1
http://download.redis.io/releases/redis-6.2.13.tar.gz
hash redis-7.0.12.tar.gz sha256
9dd83d5b278bb2bf0e39bfeb75c3e8170024edbaf11ba13b7037b2945cf48ab7
http://download.redis.io/releases/redis-7.0.12.tar.gz
hash redis-7.2-rc3.tar.gz sha256
4035e2b146ca1eb43b4188ca30a6d7be1a4d40ac2dfdf58db8f885517bbab41a
http://download.redis.io/releases/redis-7.2-rc3.tar.gz
+hash redis-7.2.0.tar.gz sha256
8b12e242647635b419a0e1833eda02b65bf64e39eb9e509d9db4888fb3124943
http://download.redis.io/releases/redis-7.2.0.tar.gz
+hash redis-7.0.13.tar.gz sha256
97065774d5fb8388eb0d8913458decfcb167d356e40d31dd01cd30c1cc391673
http://download.redis.io/releases/redis-7.0.13.tar.gz
+hash redis-7.2.1.tar.gz sha256
5c76d990a1b1c5f949bcd1eed90d0c8a4f70369bdbdcb40288c561ddf88967a4
http://download.redis.io/releases/redis-7.2.1.tar.gz
+hash redis-6.2.14.tar.gz sha256
34e74856cbd66fdb3a684fb349d93961d8c7aa668b06f81fd93ff267d09bc277
http://download.redis.io/releases/redis-6.2.14.tar.gz
+hash redis-7.0.14.tar.gz sha256
7e1cdf347f4970ea39d5b7fdb19aedec4c21942e202de65bdeb782d38d2f299f
http://download.redis.io/releases/redis-7.0.14.tar.gz
+hash redis-7.2.2.tar.gz sha256
ca999be08800edc6d265379c4c7aafad92f0ee400692e4e2d69829ab4b4c3d08
http://download.redis.io/releases/redis-7.2.2.tar.gz
