Accepting request 823631 from home:elimat:branches:security

- Update to 0.16.2 Bug fixes: * Fix handling of directory-restricted negative rules * Don't lock '/dev/null' when used as output database * Fix parsing of rules containing '?' quantifier * Fix extended attributes support (xattrs) * Fix processing of go files Please note: * The addition of the "trusted.*", "user.*" and the "security.*" namespaces to the xattrs attribute might lead to a vast amount of reported changed entries during your next AIDE run. You can use the `report_ignore_changed_attrs` option (see aide.conf(5)) to ignore changes of the xattrs attribute; but be aware that this will exclude the expected but also the unexpected (potentially malicious) changes. - Run spec-cleaner OBS-URL: https://build.opensuse.org/request/show/823631 OBS-URL: https://build.opensuse.org/package/show/security/aide?expand=0&rev=36
2020-07-31 05:47:39 +00:00 · 2020-07-31 05:47:39 +00:00 · d8d45d3889
commit d8d45d3889
parent 6279709cc9
6 changed files with 40 additions and 23 deletions
--- a/aide-0.16.1.tar.gz
+++ b/aide-0.16.1.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:0f2b7cecc70c1a27d35c06c98804fcdb9f326630de5d035afc447122186010b7
-size 391531
--- a/aide-0.16.1.tar.gz.asc
+++ b/aide-0.16.1.tar.gz.asc
@ -1,14 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQGzBAABCgAdFiEEVJXNoXyawXqyOEGnGO6GOGAi71cFAlx1oEIACgkQGO6GOGAi
-71dV5gv+Io9Qw73FxRmY6G7BmMlmiULmwjPW/ouU/8eVvFEmYxbUmPKg0YcesWE3
-MkmNBSE1QbeIOw+vQriPrz5guqxaA1oBl0JsZMiSbgnsQ23AA2/29ryrOsYflLuM
-9/18sEpBsrtY+VCM3PBGZ3r63s4EeUwibRsB9Iv4CcZFwC30KLS6xi0tnfbrt4s+
-JSFAdYc4VBXvl2+jy8B2etnWMsIMUfhuiwdtXNxcJZBTM7a9159osv5kOub8qe2j
-VJey38sAbcuN2VhhduHZZW6QkGTR4FRuubr+LBMCpLYKT0Z+2FJ45fer99eJYxh8
-Z8/08qKINFffczN/G6MBUPup/YbBP+PVEc5E0pXc++t/OXUYuQ3CgVy5Aq7nqrdV
-s61eKORrOJo3aF5HBvw6cxOi05QNfUiNRl6j2l+XfBO+kO5vzQVpoWEOHD5w4cEy
-MiqNUdvFGULtRHxnGq5XZJTcYtNyJqngXILP1JC8IPW1kzqvhi4bCb6Aj+mzIHyo
-sdF5WFml
-=vHd0
-----END PGP SIGNATURE-----
--- a/aide-0.16.2.tar.gz
+++ b/aide-0.16.2.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:17f998ae6ae5afb9c83578e4953115ab8a2705efc50dee5c6461cef3f521b797
+size 398895
--- a/aide-0.16.2.tar.gz.asc
+++ b/aide-0.16.2.tar.gz.asc
@ -0,0 +1,14 @@
+-----BEGIN PGP SIGNATURE-----
+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+=mHB7
+-----END PGP SIGNATURE-----
--- a/aide.changes
+++ b/aide.changes
@ -1,3 +1,22 @@
+-------------------------------------------------------------------
+Thu Jul 30 20:13:39 UTC 2020 - Matthias Eliasson <elimat@opensuse.org>
+
+- Update to 0.16.2
+  Bug fixes:
+  * Fix handling of directory-restricted negative rules
+  * Don't lock '/dev/null' when used as output database
+  * Fix parsing of rules containing '?' quantifier
+  * Fix extended attributes support (xattrs)
+  * Fix processing of go files
+  Please note:
+  * The addition of the "trusted.*", "user.*" and the "security.*"
+	namespaces to the xattrs attribute might lead to a vast amount of
+	reported changed entries during your next AIDE run. You can use the
+	`report_ignore_changed_attrs` option (see aide.conf(5)) to ignore
+	changes of the xattrs attribute; but be aware that this will exclude
+	the expected but also the unexpected (potentially malicious) changes.
+- Run spec-cleaner
+
 -------------------------------------------------------------------
 Thu Jul 11 13:03:25 UTC 2019 -  <abergmann@suse.com>

--- a/aide.spec
+++ b/aide.spec
@ -1,7 +1,7 @@
 #
 # spec file for package aide
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -17,11 +17,10 @@


 Name:           aide
-Version:        0.16.1
+Version:        0.16.2
 Release:        0
 Summary:        Advanced Intrusion Detection Environment
 License:        GPL-2.0-or-later
-Group:          Productivity/Security
 URL:            https://aide.github.io/
 Source0:        https://github.com/aide/aide/releases/download/v%{version}/aide-%{version}.tar.gz
 Source1:        aide.conf
@ -48,7 +47,6 @@ AIDE is an intrusion detection system that checks file integrity.

 %package test
 Summary:        Simple AIDE testing
-Group:          Productivity/Security

 %description test
 Simple AIDE test script for externalized testing.
@ -75,7 +73,7 @@ autoreconf -fiv
    --with-gcrypt \
    --without-mhash
 # --enable-forced_configmd
-make %{?_smp_mflags}
+%make_build

 %install
 %make_install
@ -89,7 +87,7 @@ cp -a %{SOURCE2} doc/examples%{_sysconfdir}/cron.daily/aide.sh
 %check
 mkdir %{_localstatedir}/tmp/aide-test
 export TESTDIR=%{_localstatedir}/tmp/aide-test
-make %{?_smp_mflags} DESTDIR=$TESTDIR install
+%make_build DESTDIR=$TESTDIR install
 install -m 700 -d $TESTDIR%{_localstatedir}/lib/aide
 install -m 700 -d $TESTDIR%{_sysconfdir}
 install -m 600    %{SOURCE1} $TESTDIR%{_sysconfdir}/aide.conf.new