From fded29deeb441745f9f704f626cff8464f312c98aa33c6ee3db37086f9e76fbb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= <adrian@suse.de>
Date: Wed, 19 Mar 2025 17:28:41 +0100
Subject: [PATCH] Sync from SUSE:SLFO:Main rubygem-rack revision
 18f77b8829b4543f6d89d8800f078151

---
 rack-3.1.12.gem      |  3 +++
 rack-3.1.8.gem       |  3 ---
 rubygem-rack.changes | 21 +++++++++++++++++++++
 rubygem-rack.spec    |  4 ++--
 4 files changed, 26 insertions(+), 5 deletions(-)
 create mode 100644 rack-3.1.12.gem
 delete mode 100644 rack-3.1.8.gem

diff --git a/rack-3.1.12.gem b/rack-3.1.12.gem
new file mode 100644
index 0000000..363a0f0
--- /dev/null
+++ b/rack-3.1.12.gem
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:00d83055c89273eb13679ab562767b8826955aa6c4371d7d161deb975c50c540
+size 112128
diff --git a/rack-3.1.8.gem b/rack-3.1.8.gem
deleted file mode 100644
index 293bc78..0000000
--- a/rack-3.1.8.gem
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d3fbcbca43dc2b43c9c6d7dfbac01667ae58643c42cea10013d0da970218a1b1
-size 111616
diff --git a/rubygem-rack.changes b/rubygem-rack.changes
index aad880d..e4d835d 100644
--- a/rubygem-rack.changes
+++ b/rubygem-rack.changes
@@ -1,3 +1,24 @@
+-------------------------------------------------------------------
+Tue Mar 11 10:32:49 UTC 2025 - Aleksei Burlakov <aburlakov@suse.com>
+
+- New upstream release 3.1.12, see bundled CHANGELOG.md
+- removed patches
+  fix CVE-2025-25184 [bsc#1237141], Rack::CommonLogger can be exploited by crafting input
+  - rubygem-rack-CVE-2025-25184.patch
+  fix CVE-2025-27111 [bsc#1238607], Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
+  - rubygem-rack-CVE-2025-27111.patch
+
+
+-------------------------------------------------------------------
+Sun Mar  9 11:30:48 UTC 2025 - Aleksei Burlakov <aburlakov@suse.com>
+
+- security update
+- added patches
+  fix CVE-2025-25184 [bsc#1237141], Rack::CommonLogger can be exploited by crafting input
+  + rubygem-rack-CVE-2025-25184.patch
+  fix CVE-2025-27111 [bsc#1238607], Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection
+  + rubygem-rack-CVE-2025-27111.patch
+
 -------------------------------------------------------------------
 Mon Nov  4 17:17:57 UTC 2024 - Dan Čermák <dan.cermak@posteo.net>
 
diff --git a/rubygem-rack.spec b/rubygem-rack.spec
index 112570c..fe51e57 100644
--- a/rubygem-rack.spec
+++ b/rubygem-rack.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package rubygem-rack
 #
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -24,7 +24,7 @@
 #
 
 Name:           rubygem-rack
-Version:        3.1.8
+Version:        3.1.12
 Release:        0
 %define mod_name rack
 %define mod_full_name %{mod_name}-%{version}