commit eclipse for openSUSE:Factory

Wed, 20 Mar 2024 13:22:42 -0700 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package eclipse for openSUSE:Factory checked 
in at 2024-03-20 21:19:06
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/eclipse (Old)
 and      /work/SRC/openSUSE:Factory/.eclipse.new.1905 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "eclipse"

Wed Mar 20 21:19:06 2024 rev:24 rq:1159913 version:4.15

Changes:
--------
--- /work/SRC/openSUSE:Factory/eclipse/eclipse.changes  2024-02-21 
17:59:32.450082182 +0100
+++ /work/SRC/openSUSE:Factory/.eclipse.new.1905/eclipse.changes        
2024-03-20 21:22:30.036022167 +0100
@@ -1,0 +2,8 @@
+Wed Mar 20 17:36:32 UTC 2024 - Fridrich Strba <fst...@suse.com>
+
+- Added patch:
+  * eclipse-CVE-2023-4218.patch
+    + backport of fixes for bsc#1216992 (CVE-2023-4218): Some files
+      with xml content parsed vulnerable against XXE attacks
+
+-------------------------------------------------------------------

New:
----
  eclipse-CVE-2023-4218.patch

BETA DEBUG BEGIN:
  New:- Added patch:
  * eclipse-CVE-2023-4218.patch
    + backport of fixes for bsc#1216992 (CVE-2023-4218): Some files
BETA DEBUG END:

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ eclipse.spec ++++++
--- /var/tmp/diff_new_pack.iOwZrG/_old  2024-03-20 21:22:31.628080651 +0100
+++ /var/tmp/diff_new_pack.iOwZrG/_new  2024-03-20 21:22:31.632080798 +0100
@@ -121,6 +121,7 @@
 Patch35:        eclipse-CVE-2020-27225.patch
 Patch36:        eclipse-ant.patch
 Patch37:        reproducible-p2_timestamp.patch
+Patch38:        eclipse-CVE-2023-4218.patch
 BuildRequires:  ant >= 1.10.5
 BuildRequires:  ant-antlr
 BuildRequires:  ant-apache-bcel
@@ -534,6 +535,8 @@
 %patch -P 36 -p1
 %patch -P 37 -p1
 
+%patch -P 38 -p1
+
 # Extend the objectweb-asm requirements
 sed -i -e 
's/org\.objectweb\.asm\.tree;bundle-version="\[6\.0\.0,8\.0\.0)"/org\.objectweb\.asm\.tree;bundle-version="\[6\.0\.0,10\.0\.0)"/g'
 \
   eclipse.pde.ui/apitools/org.eclipse.pde.api.tools/META-INF/MANIFEST.MF

++++++ eclipse-CVE-2023-4218.patch ++++++
++++ 4148 lines (skipped)

Reply via email to