java-packages/ongres-scram
SHA256
6
0
Fork 1
forked from pool/ongres-scram
Code Pull Requests Activity

Update to 3.2 for CVE-2025-59432 #1

Merged
fstrba merged 1 commits from thomas.florio/ongres-scram:for/main/CVE-2025-59432 into main 2025-10-29 12:00:51 +01:00
Conversation 1 Commits 1 Files Changed 4 +14 -4
4 changed files with 14 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
ongres-scram.changes
View File

@@ -1,3 +1,12 @@
------------------------------------------------------------------
Tue Oct 28 08:51:14 UTC 2025 - Thomas Florio <thomas.florio@suse.com>
- Version 3.2
* Fix Timing Attack Vulnerability in SCRAM Authentication
(bsc#1250399, CVE-2025-59432)
* Updated dependencies and maven plugins
* Use central-publishing-maven-plugin to deploy to Maven Central.
-------------------------------------------------------------------
Thu Jul 3 15:05:32 UTC 2025 - Fridrich Strba <fstrba@suse.com>

3
ongres-scram.spec
View File

@@ -17,12 +17,13 @@
%global upstream_name scram
%global upstream_version 3.1
%global upstream_version 3.2
Name: ongres-%{upstream_name}
Version: %(echo %{upstream_version} | sed 's/-/~/g')
Release: 0
Summary: Salted Challenge Response Authentication Mechanism - Java Implementation
License: BSD-2-Clause
Group: Development/Libraries/Java
URL: https://github.com/ongres/%{upstream_name}
Source0: https://github.com/ongres/%{upstream_name}/archive/%{upstream_version}/%{upstream_name}-%{upstream_version}.tar.gz
BuildRequires: fdupes

BIN
scram-3.1.tar.gz LFS
View File

Binary file not shown.

BIN
scram-3.2.tar.gz LFS Normal file
View File

Binary file not shown.