SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for rsync-3.2.6-3.1.x86_64.rpm :

* Wed Sep 14 2022 David Anes - Use bundled SLP patch now that upstream fixed it:
* Remove rsync-3.2.5-slp.patch
* Mon Sep 12 2022 Dirk Müller - update to 3.2.6:
* More path-cleaning improvements in the file-list validation code to avoid rejecting of valid args.
* A file-list validation fix for a --files-from file that ends without a line-terminating character.
* Added a safety check that prevents the sender from removing destination files when a local copy using --remove-source-files has some files that are shared between the sending & receiving hierarchies, including the case where the source dir & destination dir are identical.
* Fixed a bug in the internal MD4 checksum code that could cause the digest to be sporadically incorrect (the openssl version was/is fine).
* A minor tweak to rrsync added \"copy-devices\" to the list of known args, but left it disabled by default.
* Fri Sep 09 2022 Bernhard Wiedemann - Build SLE version with g++-11 to work around nondeterministic g++-7 (boo#1193895)
* Thu Sep 01 2022 Stefan Schubert - Migration to /usr/etc: Saving user changed configuration files in /etc and restoring them while an RPM update.
* Tue Aug 16 2022 David Anes - Add upstream patch rsync-3.2.5-slp.patch, as the one included in the released tarball doesn\'t fully apply.- Drop patch rsync-CVE-2022-29154.patch, already included upstream.- Update to 3.2.5
* SECURITY FIXES: - Added some file-list safety checking that helps to ensure that a rogue sending rsync can\'t add unrequested top-level names and/or include recursive names that should have been excluded by the sender. These extra safety checks only require the receiver rsync to be updated. When dealing with an untrusted sending host, it is safest to copy into a dedicated destination directory for the remote content (i.e. don\'t copy into a destination directory that contains files that aren\'t from the remote host unless you trust the remote host). Fixes CVE-2022-29154. - A fix for CVE-2022-37434 in the bundled zlib (buffer overflow issue).
* BUG FIXES: - Fixed the handling of filenames specified with backslash-quoted wildcards when the default remote-arg-escaping is enabled. - Fixed the configure check for signed char that was causing a host that defaults to unsigned characters to generate bogus rolling checksums. This made rsync send mostly literal data for a copy instead of finding matching data in the receiver\'s basis file (for a file that contains high-bit characters). - Lots of manpage improvements, including an attempt to better describe how include/exclude filters work. - If rsync is compiled with an xxhash 0.8 library and then moved to a system with a dynamically linked xxhash 0.7 library, we now detect this and disable the XX3 hashes (since these routines didn\'t stabilize until 0.8).
* ENHANCEMENTS: - The [`--trust-sender`](rsync.1#opt) option was added as a way to bypass the extra file-list safety checking (should that be required).
* PACKAGING RELATED: - A note to those wanting to patch older rsync versions: the changes in this release requires the quoted argument change from 3.2.4. Then, you\'ll want every single code change from 3.2.5 since there is no fluff in this release. - The build date that goes into the manpages is now based on the developer\'s release date, not on the build\'s local-timezone interpretation of the date.
* DEVELOPER RELATED: - Configure now defaults GETGROUPS_T to gid_t when cross compiling. - Configure now looks for the bsd/string.h include file in order to fix the build on a host that has strlcpy() in the main libc but not defined in the main string.h file.
* Mon Aug 01 2022 David Anes - Security fix: [bsc#1201840, CVE-2022-29154]
* arbitrary file write vulnerability via do_server_recv function
* Added patch rsync-CVE-2022-29154.patch
* Tue Jun 21 2022 Stefan Schubert - Removed %config flag for files in /usr directory.
* Mon Jun 20 2022 Stefan Schubert - Moved logrotate files from user specific directory /etc/logrotate.d to vendor specific directory /usr/etc/logrotate.d.
* Tue Apr 19 2022 David Anes - Update to 3.2.4
* A new form of arg protection was added that works similarly to the older `--protect-args` (`-s`) option but in a way that avoids breaking things like rrsync.
* A long-standing bug was preventing rsync from figuring out the current locale\'s decimal point character, which made rsync always output numbers using the \"C\" locale.
* Too many changes to list, see included NEWS.md file.- Drop rsync-CVE-2020-14387.patch, already included upstream.
* Tue Nov 16 2021 Johannes Segitz - Added hardening to systemd service(s) (bsc#1181400). Modified:
* rsyncd.service
* Fri Sep 04 2020 Pedro Monreal - Security fix: [bsc#1176160, CVE-2020-14387]
* rsync-ssl: Verify the hostname in the certificate when using openssl.- Add rsync-CVE-2020-14387.patch
* Fri Aug 07 2020 Ismail Dönmez - Updated to version 3.2.3
* Fixes a memory usage regression introduced in 3.2.2
* Too many changes to list, see included NEWS.md file.- acls.diff, time-limit.diff and xattrs.diff are now upstream.- Drop rsync-add_back_use_slp_directive.patch, included in upstream slp.diff
* Wed Aug 05 2020 Ismail Dönmez - Add BR on c++_compiler needed for SIMD support- Add --enable-simd configure option on x86_64
* Wed Aug 05 2020 Ismail Dönmez - Change BR on xxhash-devel to pkgconfig(libxxhash) and depend on xxhash >= 0.8.0 since this is needed for XXH3- Use xxhash only on suse_version >= 1550 since xxhash 0.8.0 is not available elsewhere.
* Tue Jul 07 2020 Ismail Dönmez - Updated to version 3.2.2
* Too many changes to list, see included NEWS.md file.- Add BR on pkgconfig(openssl), rsync now uses openssl for MD4/MD5- Add BR on libzstd-devel and liblz4-devel to enable lz4 and zstd compression support.- Add BR on xxhash-devel to enable xxhash checksum support.- Refresh rsync-add_back_use_slp_directive.patch- Drop rsync-both-compressions.patch, rsync-send_error_to_sender.patch, rsync-avoid-uploading-after-error.patch, rsync-fix-prealloc-to-keep-file-size-0-when-possible.patch: Fixed upstream.
* Thu Jul 11 2019 Antoine Belvire - Remove SuSEfirewall2 service since SuSEfirewall2 has been replaced by firewalld (which already provides a rsyncd service).
* Mon Apr 15 2019 Pedro Monreal Gonzalez - Fixed bug numbers in spec file
* Sat Apr 13 2019 Matwey V. Kornilov - Add patch: rsync-fix-prealloc-to-keep-file-size-0-when-possible.patch (boo#1108562)
* Wed Jul 11 2018 kukukAATTsuse.de- Don\'t require systemd explicit, spec file can handle both cases correct and in containers we don\'t have systemd [bsc#1100786].
* Tue Apr 03 2018 kukukAATTsuse.de- Use %license instead of %doc [bsc#1082318]
* Mon Jan 29 2018 pmonrealgonzalezAATTsuse.com- Update to version 3.1.3 [bsc#1076503]: Protocol: 31 (unchanged)- SECURITY FIXES:
* Fixed a buffer overrun in the protocol\'s handling of xattr names and ensure that the received name is null terminated.
* Fix an issue with --protect-args where the user could specify the arg in the protected-arg list and short-circuit some of the arg-sanitizing code.- BUG FIXES:
* Don\'t output about a new backup dir without appropriate info verbosity.
* Fixed some issues with the sort functions in support/rsyncstats script.
* Added a way to specify daemon config lists (e.g. users, groups, etc)
* that contain spaces (see \"auth users\" in the latest rsyncd.conf manpage).
* If a backup fails (e.g. full disk) rsync exits with an error.
* Fixed a problem with a doubled --fuzzy option combined with --link-dest.
* Avoid invalid output in the summary if either the start or end time had an error.
* We don\'t allow a popt alias to affect the --daemon or --server options.
* Fix daemon exclude code to disallow attribute changes in addition to disallowing transfers.
* Don\'t force nanoseconds to match if a non-transferred, non-checksummed file only passed the quick-check w/o comparing nanosecods.- ENHANCEMENTS:
* Added the ability for rsync to compare nanosecond times in its file-check comparisons, and added support nanosecond times on Mac OS X.
* Added a short-option (-AATT) for --modify-window.
* Added the --checksum-choice=NAME[,NAME] option to choose the checksum algorithms.
* Added hashing of xattr names (with using -X) to improve the handling of files with large numbers of xattrs.
* Added a way to filter xattr names using include/exclude/filter rules (see the --xattrs option in the manpage for details).
* Added \"daemon chroot|uid|gid\" to the daemon config (in addition to the old chroot|uid|gid settings that affect the daemon\'s transfer process).
* Added \"syslog tag\" to the daemon configuration.
* Some manpage improvements.- DEVELOPER RELATED:
* Tweak the \"make\" output when yodl isn\'t around to create the man pages.
* Changed an obsolete autoconf compile macro.
* Support newer yodl versions when converting man pages.- Dropped patches fixed upstream:
* rsync-CVE-2017-16548.patch
* rsync-3.1.2-CVE-2018-5764.patch- Refreshed patches:
* rsync-send_error_to_sender.patch
* Thu Jan 18 2018 pmonrealgonzalezAATTsuse.com- Security fix: Ignore --protect-args when already sent by client [bsc#1076503, CVE-2018-5764]
* Added patch rsync-3.1.2-CVE-2018-5764.patch
* Tue Jan 09 2018 pmonrealgonzalezAATTsuse.com- Fix: Stop file upload after errors [bsc#1062063]- Added patches:
* rsync-send_error_to_sender.patch
* rsync-avoid-uploading-after-error.patch
  
ICM