Hello community,
here is the log from the commit of package libgcrypt for openSUSE:Factory
checked in at 2016-08-22 10:06:35
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/libgcrypt (Old)
and /work/SRC/openSUSE:Factory/.libgcrypt.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libgcrypt"
Changes:
--------
--- /work/SRC/openSUSE:Factory/libgcrypt/libgcrypt.changes 2016-05-20
11:55:23.000000000 +0200
+++ /work/SRC/openSUSE:Factory/.libgcrypt.new/libgcrypt.changes 2016-08-22
10:06:37.000000000 +0200
@@ -1,0 +2,9 @@
+Wed Aug 17 18:21:44 UTC 2016 - astie...@suse.com
+
+- libgcrypt 1.6.6:
+ * fix CVE-2016-6313: Issue in the mixing functions of the random
+ number generators allowed an attacker who obtained a number of
+ bytes from the standard RNG to predict some of the next ouput.
+ (bsc#994157)
+
+-------------------------------------------------------------------
Old:
----
libgcrypt-1.6.5.tar.bz2
libgcrypt-1.6.5.tar.bz2.sig
New:
----
libgcrypt-1.6.6.tar.bz2
libgcrypt-1.6.6.tar.bz2.sig
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ libgcrypt.spec ++++++
--- /var/tmp/diff_new_pack.CtMmFO/_old 2016-08-22 10:06:39.000000000 +0200
+++ /var/tmp/diff_new_pack.CtMmFO/_new 2016-08-22 10:06:39.000000000 +0200
@@ -19,10 +19,10 @@
%define build_hmac256 1
%define separate_hmac256_binary 0
%define libsoname %{name}20
-%define sosuffix 20.0.5
+%define sosuffix 20.0.6
%define cavs_dir %{_libexecdir}/%{name}/cavs
Name: libgcrypt
-Version: 1.6.5
+Version: 1.6.6
Release: 0
Summary: The GNU Crypto Library
License: GPL-2.0+ and LGPL-2.1+ and GPL-3.0+
++++++ libgcrypt-1.6.5.tar.bz2 -> libgcrypt-1.6.6.tar.bz2 ++++++
++++ 5520 lines of diff (skipped)
