Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package python-fastapi for openSUSE:Factory
checked in at 2024-02-14 23:18:54
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/python-fastapi (Old)
and /work/SRC/openSUSE:Factory/.python-fastapi.new.1815 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-fastapi"
Wed Feb 14 23:18:54 2024 rev:29 rq:1146442 version:0.109.1
Changes:
--------
--- /work/SRC/openSUSE:Factory/python-fastapi/python-fastapi.changes
2024-01-21 23:07:46.932249896 +0100
+++ /work/SRC/openSUSE:Factory/.python-fastapi.new.1815/python-fastapi.changes
2024-02-14 23:18:56.272683666 +0100
@@ -1,0 +2,30 @@
+Tue Feb 6 14:19:32 UTC 2024 - Dirk Müller <dmuel...@suse.com>
+
+- update to 0.109.1 [bsc#1219610] CVE-2024-24762:
+ * Upgrade minimum version of `python-multipart` to `>=0.0.7`
+ to fix a vulnerability when using form data with a ReDos
+ attack. You can also simply upgrade `python-multipart`.
+ * Read more in the advisory: Content-Type Header ReDoS.
+ * Include HTTP 205 in status codes with no body.
+ * Fix broken link in `docs/tutorial/sql-databases.md` in
+ several languages.
+ * Remove broken links from `external_links.yml`.
+ * Update template docs with more info about `url_for`. PR
+ #5937 by @EzzEddin.
+ * Update usage of Token model in security docs.
+ * Update highlighted line in `docs/en/docs/tutorial/bigger-
+ applications.md`.
+ * Add External Link: Explore How to Effectively Use JWT With
+ FastAPI.
+ * Add hyperlink to `docs/en/docs/tutorial/static-files.md`.
+ * Add External Link: Instrument a FastAPI service adding
+ tracing with OpenTelemetry and send/show traces in Grafana
+ Tempo.
+ * Review and rewording of `en/docs/contributing.md`.
+ * Add External Link: ML serving and monitoring with FastAPI
+ and Evidently.
+ * Reword in docs, from "have in mind" to "keep in mind".
+ * Add External Link: Talk by Jeny Sadadia.
+ * Add location info to `tutorial/bigger-applications.md`.
+
+-------------------------------------------------------------------
Old:
----
fastapi-0.109.0.tar.gz
New:
----
fastapi-0.109.1.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ python-fastapi.spec ++++++
--- /var/tmp/diff_new_pack.nRczQR/_old 2024-02-14 23:18:56.964708615 +0100
+++ /var/tmp/diff_new_pack.nRczQR/_new 2024-02-14 23:18:56.968708759 +0100
@@ -20,7 +20,7 @@
%bcond_with ringdisabled
%{?sle15_python_module_pythons}
Name: python-fastapi
-Version: 0.109.0
+Version: 0.109.1
Release: 0
Summary: FastAPI framework
License: MIT
@@ -46,7 +46,7 @@
BuildRequires: %{python_module anyio >= 3.2.1}
BuildRequires: %{python_module dirty-equals}
BuildRequires: %{python_module httpx >= 0.23.0}
-BuildRequires: %{python_module python-multipart >= 0.0.5}
+BuildRequires: %{python_module python-multipart >= 0.0.7}
BuildRequires: %{python_module sqlalchemy < 2.0}
BuildRequires: %{python_module trio}
%if !%{with ringdisabled}
++++++ fastapi-0.109.0.tar.gz -> fastapi-0.109.1.tar.gz ++++++
/work/SRC/openSUSE:Factory/python-fastapi/fastapi-0.109.0.tar.gz
/work/SRC/openSUSE:Factory/.python-fastapi.new.1815/fastapi-0.109.1.tar.gz
differ: char 14, line 1
