Hello community, here is the log from the commit of package lftp for openSUSE:Factory checked in at 2018-10-08 17:44:17 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/lftp (Old) and /work/SRC/openSUSE:Factory/.lftp.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "lftp" Mon Oct 8 17:44:17 2018 rev:72 rq:639977 version:4.8.4 Changes: -------- --- /work/SRC/openSUSE:Factory/lftp/lftp.changes 2018-03-19 23:38:08.433867732 +0100 +++ /work/SRC/openSUSE:Factory/.lftp.new/lftp.changes 2018-10-08 17:46:16.946418281 +0200 @@ -1,0 +2,16 @@ +Thu Oct 4 13:48:46 UTC 2018 - Ismail Dönmez <idon...@suse.com> + +- Update to version 4.8.4 + * Fixed a security vulnerability with "file:" file names. + CVE-2018-10916 bsc#1103367 + * Fixed mirror --flat. + * http: extract links from <source> tags. + * Fixed upload of zero-length files over ftps. + * Fixed assert on "mput -d". + * Fixed a core dump. + * Avoid multiple backup files of DHT cache. + * Translations updated (uk, zh_CN). +- Remove upstream patch: + * fix-zero-byte-file-upload-via-ssl.patch + +------------------------------------------------------------------- Old: ---- fix-zero-byte-file-upload-via-ssl.patch lftp-4.8.3.tar.xz lftp-4.8.3.tar.xz.asc New: ---- lftp-4.8.4.tar.xz lftp-4.8.4.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ lftp.spec ++++++ --- /var/tmp/diff_new_pack.Be70za/_old 2018-10-08 17:46:17.702417318 +0200 +++ /var/tmp/diff_new_pack.Be70za/_new 2018-10-08 17:46:17.706417312 +0200 @@ -13,15 +13,15 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: lftp -Version: 4.8.3 +Version: 4.8.4 Release: 0 Summary: Command Line File Transfer Program -License: GPL-3.0+ +License: GPL-3.0-or-later Group: Productivity/Networking/Ftp/Clients URL: http://lftp.yar.ru/ Source: http://lftp.yar.ru/ftp/%{name}-%{version}.tar.xz @@ -29,14 +29,12 @@ Source3: http://lftp.yar.ru/ftp/%{name}-%{version}.tar.xz.asc # PATCH-FEATURE-OPENSUSE lftp-ssl-cipher.patch pgaj...@suse.cz -- use stronger cipher [bnc#857148] Patch0: lftp-default-ssl-cipher.patch -# PATCH-FIX-UPSTREAM fix-for-upstream-sources.patch psim...@suse.com -- lftp hangs if uploading a 0 byte file [bsc#1079168] -Patch1: https://github.com/lavv17/lftp/commit/b934dbba0cb3.patch#/fix-zero-byte-file-upload-via-ssl.patch # PATCH-FEATURE-OPENSUSE patch2-patch6 psim...@suse.com -- maintained at https://github.com/opensuse/lftp [bsc#1083331] -Patch2: 0001-Add-content-of-the-SUSE-lftp-vi-1.1-archive.patch -Patch3: 0002-Add-content-of-lftp-compat-addfiles.patch.patch -Patch4: 0003-Add-content-of-lftp-completion.patch.patch -Patch5: 0004-Include-config.h-to-detect-gnulib-macros.patch -Patch6: 0005-Add-the-wrapper-code-to-the-Makefile-in-order-to-bui.patch +Patch1: 0001-Add-content-of-the-SUSE-lftp-vi-1.1-archive.patch +Patch2: 0002-Add-content-of-lftp-compat-addfiles.patch.patch +Patch3: 0003-Add-content-of-lftp-completion.patch.patch +Patch4: 0004-Include-config.h-to-detect-gnulib-macros.patch +Patch5: 0005-Add-the-wrapper-code-to-the-Makefile-in-order-to-bui.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: gcc-c++ @@ -119,7 +117,8 @@ fi %files -f "lftp.lang" -%doc BUGS COPYING ChangeLog FAQ FEATURES README* NEWS THANKS TODO +%license COPYING +%doc BUGS ChangeLog FAQ FEATURES README* NEWS THANKS TODO %ghost %{_sysconfdir}/alternatives/ftp %ghost %{_sysconfdir}/alternatives/ftp.1.gz %{_bindir}/ftp ++++++ lftp-4.8.3.tar.xz -> lftp-4.8.4.tar.xz ++++++ ++++ 39748 lines of diff (skipped)
