SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for obs-source_service-2.1.17.2-1.7.x86_64.rpm :

* Fri Mar 30 2012 adrianAATTsuse.de- update to version 2.1.17.2 - yet another place in user editor to fix
* Mon Mar 26 2012 adrianAATTsuse.de- update to version 2.1.17.1 - regression fix, allow to create local users again.
* Mon Mar 05 2012 adrianAATTsuse.de- enforce rubygems < 1.6.0 to avoid runtime errors- update to version 2.1.17 Feature backports: ==================
* Support linking to remote OBS 2.3 package which contains links with vrev attribute Changes: ========
* Added new default targets for SUSE Linux Enterprise SP1 and SP2 builds
* Removed RHEL-4 default target (EOL)
* Additional protection layer against a possible undetect security leak due to mass-assignment handling Bugfixes: =========
* reopen not accepted reviews when re-opening a request
* fixed icon links in distribution list
* fixed execution with rails 2.3.8 on SLE 11 SP 1
* Mon Dec 12 2011 adrianAATTsuse.de- update to version 2.1.16 Feature backports: ==================
* Support linking to remote OBS 2.3 package which links to not existing packages.
* Support upload of build job results via the api for admin users. Changes: ========
* dropped openSUSE 11.3 from default target list
* logrotate files are not installed with .logrotate suffix anymore Bugfixes: =========
* CRITICAL SECURITY FIX: Binary upload of build results was allowed to everybody without permission check (bnc#736243, CVE-2011-4183).
* fixed runtime error when checking sourceaccess of links (introduced in 2.1.15)
* Tue Dec 06 2011 chrisAATTcomputersalat.de- fix install of logrotate scripts
* install -m 0644 and without \"logrotate\" suffix
* Mon Dec 05 2011 adrianAATTsuse.de- fix missing symbol in source server
* Thu Dec 01 2011 adrianAATTsuse.de- update to 2.1.15 Feature backports: ==================
* none Changes: ========
* none Bugfixes: =========
* Do not allow source links to packages with \"sourceaccess\" disabled, if _link xml has no target package attribute. (bnc#734003, CVE-2011-4181)
* Mon Nov 21 2011 adrianAATTsuse.de- update to 2.1.14 Feature backports: ==================
* none Changes: ========
* api: support linking from remote OBS 2.3 instance with active source services (bnc#730768)
* api: update default distribution list Bugfixes: =========
* none
* Wed Oct 19 2011 adrianAATTsuse.de- update to 2.1.13 Feature backports: ==================
* none Changes: ========
* api: updated default build target list Bugfixes: =========
* webui: fixed quoating of URL parameter (CVE-2011-3178, bnc#723788)
* Thu Sep 01 2011 adrianAATTsuse.de- update to 2.1.12 Feature backports: ==================
* none Changes: ========
* backend: support projects with defined devel projects (from OBS 2.3) Bugfixes: =========
* webui: Fix revert to revision button by using the revision to revert to.
* webui: fix link to new forum location of OBS forums.
* Thu May 26 2011 adrianAATTsuse.de- update to 2.1.11 Feature backports: ==================
* none Changes: ========
* backend: support for remote packages on OBS 2.3 with source services running in new style mode. Bugfixes: =========
* backend: build kiwi appliances on local build in same way as on server side build
* Fri May 13 2011 adrianAATTsuse.de- update to 2.1.10 Feature backports: ==================
* none Changes: ========
* backend: support for remote projects on OBS 2.3 using a project kind.
* backend: support for remote packages on OBS 2.3 with source services. Bugfixes: =========
* none
* Thu May 12 2011 adrianAATTsuse.de- update to 2.1.9 Feature backports: ==================
* none Changes: ========
* Removed openSUSE 11.2 from default list since it runs out-of-maintenance Bugfixes: =========
* api: fix handling of source linking/branching packages on a remote server, which are a link/branch there as well.
* Thu May 05 2011 adrianAATTsuse.de- update to 2.1.8.1
* fix runtime error when running under lighttpd fcgi (regression of 2.1.8)
* Wed May 04 2011 adrianAATTsuse.de- update to 2.1.8 Feature backports: ==================
* Support for request notifications when to request has multiple actions Changes: ========
* Remove Ubuntu 9.04 from default targets and added 11.04
* api: strip passwords in log files (when running in debug mode) Bugfixes: =========
* webui: support mod_xforward
* api: fix handling of not permitted PUT/POST commands when use apache with mod_rails
* api: fix crash when accessing attributes on remote projects
* Tue Apr 05 2011 adrianAATTsuse.de- update to 2.1.7 Feature backports: ==================
* bs_admin supports the dump of .solv files now
* EXPERIMENTAL: support apache2-mod_xforward optionally in api
* apache2 vhost config has been added Changes: ========
* Support building against OBS 2.3 using new project features (lock, type and releasetarget) Bugfixes: =========
* api: fix diffing of package meta files
* api: fix history access of deleted packages
* api: fix logging of comment and user on package delete
* backend: Fix argument handling in experimental LXC wrapper for source services
* Tue Mar 01 2011 adrianAATTsuse.de- update to 2.1.6 Security fixes: ===============
* api: fix security leak which allowed to modify packages or projects without write access (CVE-2011-0466)
* api: change password in LDAP mode was possible for foreign user (bnc #648982)
* webui: Fix possible XSS attack leaks in login page (bnc #669909, CVE-2011-0462) Feature backports: ================== None Changes: ========
* openSUSE 11.4 and Debian 6.0 got added as default target.
* adding reviewers or changing the review state is only allowed for requests which are in review state now. Bugfixes: =========
* backend: Allow browsing of repositories of remote projects (fixes advanced webui view for adding repos)
* api and webui: Do not use (and fail) rails 3 environment
* api: allow admins to raise \"sourceaccess\" permissions on existing projects or packages
* api: do not allow to create packages with invalid chars via branch command
* api: do not fail on \"mbranch\" when a package gets found directly and indirectly via project link
* webui: Fix link to moved OBS web forums
* webui: Fix adding of repositories from remote projects in advanced repository interface
* Wed Feb 02 2011 adrianAATTsuse.de- update to 2.1.5.1
* fixing regression of 2.1.5, failing to show requests in webui
* Mon Jan 31 2011 adrianAATTsuse.de- update to 2.1.5: Feature backport: =================
* Support xz compression on srcdiff Changes: ========
* backend: Throw valid error message when running a source service on a linked, but not branched package.
* backend: cleaned up BSConfig template.
* worker: Support new --vm-memory parameter of new build script.
* Outdated OBS book has been removed Bugfixes: =========
* webui: Don\'t crash if package has no debuginfo
* webui: Don\'t crash without session data
* api: fix database of _product: packages, when a request accept of product rename or a new product addition happens.
* backend: fixed storage of incorrect linked data, which could happen when accessing to a package link via a project link under some circumstances.
* backend: useforbuild parameter was not checked when using Exportfilters in prjconf.
* Tue Dec 28 2010 adrianAATTsuse.de- add ReleaseNotes 2.1.4 file
* Thu Dec 23 2010 mlsAATTsuse.de- update to 2.1.4: Bugfixes: =========
* backend: obey sourcaccess setting when publishing
* backend: fix sourceaccess flags forwarding in source server
* webui: fix crasher for attributes#edit when package doesn\'t exist
* Thu Dec 09 2010 adrianAATTsuse.de- update to 2.1.3: Feature backport: =================
* none Changes: ========
* webui: is not offering a download link of files > 4MB, if user is not logged in.
* api: api is not restoring a project object anymore if source server takes too long removing the project (better fix in 2.2 branch)
* backend: services get also executed on \"commitfilelist\" (used by osc 0.130)
* worker: requires bsdtar now for setting up build environment via build script Bugfixes: =========
* webui: OOM error fixes diststats calculation script
* webui: tablesorter element fixes
* api: fix anonymous access, when osc is used on api server
* api: fix listing of history of meta data
* backend: dispatcher priorisation fix
* backend: fix source links to remote OBS instance with specified md5 revision
* Wed Nov 10 2010 adrianAATTsuse.de- update to 2.1.2: Feature backport: =================
* api: Support deletion of binaries in _repository (FATE #310489) Changes: ========
* backend: Make OBS interconnect more reliable by retrying multiple times on not reachable remote instances
* api: XML schema of _link files is not enforcing the element order anymore
* api: submit requests do not modify link target definitions anymore.
* api: updated default build target list
* webui: Removed \"Add as patch\" functionality as it can not work with branched links. Bugfixes: =========
* backend: Security bugfix which allowed access to \"sourceaccess\" protected sources
* backend: XPATH query fix
* api: layout fixes
* webui: fixing new user registration when using iChain (regression introduced in 2.1.1)
* webui: layout fixes
* Fri Oct 29 2010 adrianAATTsuse.de- update to 2.1.1: Changes: ========
* Default build target list got updated
* Support for filtering user base when using LDAP database for authentification
* LDAP support enforces the usage of SSL for authentification now for security reasons Bugfixes: =========
* api got fixes which allowed a cross side scripting attack to change a users password, if he is logged in and clicked on a crafted URL elsewhere. (Affected only OBS 2.1.0)
* api handles request state \"revoked\" also as final state now
* webui received multiple layout fixes and improvements esp. when handling sources.
* webui is CC\'ng now all bugowners if multiple are defined (#513167)
* source service daemon has been fixed to support long running processes
* worker code download is honoring proxy settings now (#630994)
* Mon Oct 18 2010 adrianAATTsuse.de- update to final 2.1.0
* no code changes
* Thu Oct 14 2010 adrianAATTsuse.de- update to current 2.1 branch snapshot, version 2.0.107
* 2.1 RC 2 - Fixing branch by attribute call, supporting also project links - scheduler cleanup for delayed project handling
* Tue Oct 12 2010 adrianAATTsuse.de- update to current 2.1 branch snapshot, version 2.0.106 - 2.1 RC 1
* small fixes only
* Thu Oct 07 2010 adrianAATTsuse.de- update to current 2.1 branch snapshot, version 2.0.105 - 2.1 Beta 3
* source access control fixes
* user authentification fixes
* Fri Oct 01 2010 adrianAATTsuse.de- update to current 2.1 branch snapshot, version 2.0.104 - 2.1 Beta 2
* source access control fixes
* allow admin to control new user registration
* Mon Sep 20 2010 adrianAATTsuse.de- update to current snapshot, version 2.0.102 last before 2.1 beta 1
* Thu Sep 09 2010 adrianAATTsuse.de- update to current snapshot, version 2.0.99
* Mon Sep 06 2010 adrianAATTsuse.de- update to current snapshot, version 2.0.96
* Fri Sep 03 2010 adrianAATTsuse.de- update to current snapshot, version 2.0.95
* Thu Sep 02 2010 adrianAATTsuse.de- update to current snapshot, version 2.0.94
* Fri Aug 27 2010 adrianAATTsuse.de- update to current git, version 2.0.92
* webui switches to MySQL default
* Tue Aug 24 2010 adrianAATTsuse.de- update to current git, version 2.0.91
* Fri Aug 20 2010 adrianAATTsuse.de- update to current git, version 2.0.90
* still alpha state
* webui: source history browser
* webui: submit request creation
* Mon Aug 16 2010 adrianAATTsuse.de- update to current git, version 2.0.89
* Thu Aug 05 2010 adrianAATTsuse.de- update to current git, version 2.0.88
* Fri Jul 30 2010 adrianAATTsuse.de- update to current git, version 2.0.87
* Wed Jul 21 2010 adrianAATTsuse.de- update to current git, version 2.0.86
* Tue Jul 13 2010 adrianAATTsuse.de- update to current git, version 2.0.85
* Mon Jul 05 2010 adrianAATTsuse.de- update to current git, version 2.0.84
* reworked flag handling in api
* switch to rails 2.3.8
* Thu Jul 01 2010 adrianAATTsuse.de- update to current git, version 2.0.83
* lots of fixes after extending test suite
* notification system is now pluggable
* Mon Jun 28 2010 adrianAATTsuse.de- update to current git, version 2.0.82
* Fri Jun 25 2010 adrianAATTsuse.de- update to current git, version 2.0.81
* Mon Jun 14 2010 adrianAATTsuse.de- very first snapshot for 2.1 release
* read permission control feature
* Wed Jun 09 2010 adrianAATTsuse.de- 2.0
* fixed download file support in webui
* fixed package checkout from remote instance
* Mon Jun 07 2010 adrianAATTsuse.de- 1.9.92 (2.0 Beta 3)
* basic proxy support for backend
* signd setup support for appliance
* bugfixes
* Fri May 28 2010 adrianAATTnovell.com- 1.9.91 (2.0 Beta 2)
* New patchinfo editor
* bugfixes
* Sat May 22 2010 adrianAATTsuse.de- 1.9.70 snapshot
* feature complete 2.0 snapshot
* Mon May 17 2010 adrianAATTsuse.de- 1.9.63 snapshot
* Fri May 07 2010 adrianAATTsuse.de- 1.9.61 snapshot
* obs-worker becomes noarch for openSUSE 11.2 and later
* Thu Apr 29 2010 adrianAATTsuse.de- 1.9.60 snapshot
* Tue Mar 16 2010 adrianAATTsuse.de- 1.7.53 snapshot
* Mon Mar 08 2010 adrianAATTsuse.de- 1.7.52 snapshot
* group handling support
* attribute type permission handling
* reworked permission handling
* default reviewer support
* product build cache support
* Thu Mar 04 2010 adrianAATTsuse.de- 1.7.51 snapshot of 2.0(aka 1.8)
* reworked LDAP support by David Greaves- ruby-ldap is used instead of rubygem-net-ldap now
* Thu Feb 18 2010 adrianAATTsuse.de- very first 1.8 snapshot
* first merges for new WEBUI
* LDAP authentification support from Luke Imhoff(Cray)
* Wed Feb 10 2010 adrianAATTsuse.de- apply current 1.7 Branch diff
* fixes kvm check in worker init script
* fix DoS when having binary data in build description files
* fixes possible scheduler crash
* Mon Feb 08 2010 adrianAATTsuse.de- OBS 1.7.0
* Wed Feb 03 2010 adrianAATTsuse.de- OBS 1.7.0 RC 1
* Tue Jan 26 2010 adrianAATTsuse.de- OBS 1.7.0 beta 3
* Tue Jan 19 2010 adrianAATTsuse.de- change SLP nameing theme from obs. to obs: to make obs browseable
* Fri Jan 15 2010 adrianAATTsuse.de- OBS 1.7.0 beta 2- Requires Ruby on Rails 2.3.5 now
* Fri Nov 06 2009 mrueckertAATTsuse.de- added rails_enforce_proper_version.patch: make sure we really require rails 2.1.2. using ~> 2.1 is just wrong.
* Wed Oct 28 2009 chrisAATTcomputersalat.de- added bs_srcserver patch o needed for local obs when using openSUSE.org: projects and you want to do local builds via \'osc build\'
* Tue Aug 11 2009 adrianAATTsuse.de- Really handling the directory -> symlink conversation correctly.
* Thu Jun 25 2009 mrueckertAATTnovell.com- disable the broken part of the pre script- buildrequire \"build\" to avoid dangling symlink warnings
* Fri Jun 19 2009 adrianAATTlocalhost- Update to final 1.6.0 release
* Wed Apr 22 2009 adrianAATTsuse.de- drop own build script version and reuse the version from build package instead. This drops also the unwanted dependency to bash-static again
* Wed Apr 15 2009 adrianAATTsuse.de- update to version 1.6 beta 2
* Thu Apr 09 2009 frohAATTsuse.de- take sysconfig template from svn to fix #490258 in the package.
  
ICM