SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for rsync-debugsource-3.2.3-150400.3.8.1.x86_64.rpm :

* Thu Oct 20 2022 david.anesAATTsuse.com- Fix --delay-updates never updates after interruption [bsc#1204538]
* Added patch rsync-fix-delay-updates-never-updates-after-interruption.patch
* Thu Oct 06 2022 david.anesAATTsuse.com- Add support for --trust-sender parameter (patch by Jie Gong in bsc#1202970). (related to CVE-2022-29154, bsc#1201840)
* Added patch rsync-CVE-2022-29154-trust-sender-1.patch
* Added patch rsync-CVE-2022-29154-trust-sender-2.patch
* Mon Aug 01 2022 david.anesAATTsuse.com- Security fix: [bsc#1201840, CVE-2022-29154]
* arbitrary file write vulnerability via do_server_recv function
* Added patch rsync-rsync-CVE-2022-29154.patch
* Mon Oct 04 2021 pmonrealAATTsuse.com- Update to 3.2.3 in SLE-15-SP4 [jsc#SLE-21252]
* Rebase rsync-no-libattr.patch
* Fri Sep 04 2020 pmonrealAATTsuse.com- Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.- Add rsync-CVE-2020-14387.patch
* Fri Aug 07 2020 idonmezAATTsuse.com- Updated to version 3.2.3
* Fixes a memory usage regression introduced in 3.2.2
* Too many changes to list, see included NEWS.md file.- acls.diff, time-limit.diff and xattrs.diff are now upstream.- Drop rsync-add_back_use_slp_directive.patch, included in upstream slp.diff
* Wed Aug 05 2020 idonmezAATTsuse.com- Add BR on c++_compiler needed for SIMD support- Add --enable-simd configure option on x86_64
* Wed Aug 05 2020 idonmezAATTsuse.com- Change BR on xxhash-devel to pkgconfig(libxxhash) and depend on xxhash >= 0.8.0 since this is needed for XXH3- Use xxhash only on suse_version >= 1550 since xxhash 0.8.0 is not available elsewhere.
* Tue Jul 07 2020 idonmezAATTsuse.com- Updated to version 3.2.2
* Too many changes to list, see included NEWS.md file.- Add BR on pkgconfig(openssl), rsync now uses openssl for MD4/MD5- Add BR on libzstd-devel and liblz4-devel to enable lz4 and zstd compression support.- Add BR on xxhash-devel to enable xxhash checksum support.- Refresh rsync-add_back_use_slp_directive.patch- Drop rsync-both-compressions.patch, rsync-send_error_to_sender.patch, rsync-avoid-uploading-after-error.patch, rsync-fix-prealloc-to-keep-file-size-0-when-possible.patch: Fixed upstream.
* Thu Jul 11 2019 antoine.belvireAATTopensuse.org- Remove SuSEfirewall2 service since SuSEfirewall2 has been replaced by firewalld (which already provides a rsyncd service).
* Mon Apr 15 2019 pmonrealgonzalezAATTsuse.com- Fixed bug numbers in spec file
* Sat Apr 13 2019 matwey.kornilovAATTgmail.com- Add patch: rsync-fix-prealloc-to-keep-file-size-0-when-possible.patch (boo#1108562)
* Wed Jul 11 2018 kukukAATTsuse.de- Don\'t require systemd explicit, spec file can handle both cases correct and in containers we don\'t have systemd [bsc#1100786].
* Tue Apr 03 2018 kukukAATTsuse.de- Use %license instead of %doc [bsc#1082318]
* Mon Jan 29 2018 pmonrealgonzalezAATTsuse.com- Update to version 3.1.3 [bsc#1076503]: Protocol: 31 (unchanged)- SECURITY FIXES:
* Fixed a buffer overrun in the protocol\'s handling of xattr names and ensure that the received name is null terminated.
* Fix an issue with --protect-args where the user could specify the arg in the protected-arg list and short-circuit some of the arg-sanitizing code.- BUG FIXES:
* Don\'t output about a new backup dir without appropriate info verbosity.
* Fixed some issues with the sort functions in support/rsyncstats script.
* Added a way to specify daemon config lists (e.g. users, groups, etc)
* that contain spaces (see \"auth users\" in the latest rsyncd.conf manpage).
* If a backup fails (e.g. full disk) rsync exits with an error.
* Fixed a problem with a doubled --fuzzy option combined with --link-dest.
* Avoid invalid output in the summary if either the start or end time had an error.
* We don\'t allow a popt alias to affect the --daemon or --server options.
* Fix daemon exclude code to disallow attribute changes in addition to disallowing transfers.
* Don\'t force nanoseconds to match if a non-transferred, non-checksummed file only passed the quick-check w/o comparing nanosecods.- ENHANCEMENTS:
* Added the ability for rsync to compare nanosecond times in its file-check comparisons, and added support nanosecond times on Mac OS X.
* Added a short-option (-AATT) for --modify-window.
* Added the --checksum-choice=NAME[,NAME] option to choose the checksum algorithms.
* Added hashing of xattr names (with using -X) to improve the handling of files with large numbers of xattrs.
* Added a way to filter xattr names using include/exclude/filter rules (see the --xattrs option in the manpage for details).
* Added \"daemon chroot|uid|gid\" to the daemon config (in addition to the old chroot|uid|gid settings that affect the daemon\'s transfer process).
* Added \"syslog tag\" to the daemon configuration.
* Some manpage improvements.- DEVELOPER RELATED:
* Tweak the \"make\" output when yodl isn\'t around to create the man pages.
* Changed an obsolete autoconf compile macro.
* Support newer yodl versions when converting man pages.- Dropped patches fixed upstream:
* rsync-CVE-2017-16548.patch
* rsync-3.1.2-CVE-2018-5764.patch- Refreshed patches:
* rsync-send_error_to_sender.patch
* Thu Jan 18 2018 pmonrealgonzalezAATTsuse.com- Security fix: Ignore --protect-args when already sent by client [bsc#1076503, CVE-2018-5764]
* Added patch rsync-3.1.2-CVE-2018-5764.patch
* Tue Jan 09 2018 pmonrealgonzalezAATTsuse.com- Fix: Stop file upload after errors [bsc#1062063]- Added patches:
* rsync-send_error_to_sender.patch
* rsync-avoid-uploading-after-error.patch
* Tue Nov 28 2017 pmonrealgonzalezAATTsuse.com- Security fix [bsc#1066644, CVE-2017-16548]
* Missing trailing \'\\0\' character check could lead to remote DoS
* Added rsync-CVE-2017-16548.patch
* Tue Jul 25 2017 tchvatalAATTsuse.com- Try more in supporting all scenarios bsc#1046197#c24
* rsync-both-compressions.patch
* Mon Jul 24 2017 tchvatalAATTsuse.com- Execute tests to ensure the basics are still working
* Mon Jul 24 2017 tchvatalAATTsuse.com- Refresh patch rsync-both-compressions.patch to include fix when using old-compress on new zlib on server too
* Thu Jul 13 2017 tchvatalAATTsuse.com- Add patch to build with both bundled and external zlib to support both compression methods at once bsc#1046197:
* rsync-both-compressions.patch
* Wed Jun 14 2017 tchvatalAATTsuse.com- We no longer need to inject the pid in post as we do not use the iniscript relying on it- Add socket activation service instead of the xinetd service- Verify in services the configuration to run actually exist- Drop sle11 support as it does not autoreconf anymore- Drop patch system-zlib.diff that was never applied- Switch to system popt and zlib:
* This should not cause issues now because upstream states the underlying issue why we used the bundled one was fixed by using more safeguarded error detection
* Wed Jan 06 2016 hskAATTimb-jena.de- update to 3.1.2- drop patches rsync-CVE-2014-9512.patch, rsync-equivalent_of_CVE-2014-8242.patch (applied upstream)
* Wed Oct 07 2015 vcizekAATTsuse.com- better disable slp by default, it doesn\'t seem to be used much and it often caused problems (eg boo#898513, bsc#922710)
* set \"use slp\" in rsyncd.conf to enable
* modified rsync-add_back_use_slp_directive.patch
* Tue Oct 06 2015 vcizekAATTsuse.com- add a compatibility flag to avoid checksum collisions (bsc#900914)
* fixes rsync equivalent of librsync\'s CVE-2014-8242
* added rsync-equivalent_of_CVE-2014-8242.patch- modify rsync-add_back_use_slp_directive.patch
* Tue Aug 11 2015 vcizekAATTsuse.com- reintroduce \"use slp\" directive (bsc#922710)
* added rsync-add_back_use_slp_directive.patch
* Wed Feb 25 2015 crrodriguezAATTopensuse.org- rsync-no-libattr.patch: Use AC_SEARCH_LIBS([getxattr], [attr]) instead of AC_CHECK_LIB(attr,getxattr) so libattr is not injected as a dependency when glibc is enough since several years to use getxattr.
* Mon Feb 02 2015 vcizekAATTsuse.com- fix for CVE-2014-9512 (bnc#915410)
* path spoofing attack vulnerability
* added rsync-CVE-2014-9512.patch
* Fri Nov 14 2014 dimstarAATTopensuse.org- No longer perform gpg validation; osc source_validator does it implicit: + Drop gpg-offline BuildRequires. + No longer execute gpg_verify.
* Sun Oct 19 2014 p.drouandAATTgmail.com- Do not depend on insserv if the system supports systemd; it\'s useless
  
ICM