pool/hsqldb
SHA256
2
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
factory
hsqldb/harden_hsqldb.service.patch
David Anes ba46ac4a2f Accepting request 1030922 from home:david.anes:branches:Java:packages 
- Upgrade to upstream version 2.7.1: (bsc#1204521, CVE-2022-41853)
  * version 2.7.1 jar requires JRE 11 or later - tested up to Java 17
  * version 2.7.1 alternative jar requires JRE 8 or later
  * CVE-2022-41853 disallow calling java methods - setting the 
    hsqldb.java_method_names is required for accessing java methods
  * enhancements to RECURSIVE CTE's
- Upgrade to upstream version 2.7.0
  * version 2.7.0 jar requires JRE 11 or later - tested up to Java 17
  * version 2.7.0 alternative jar requires JRE 8 or later
  * added support for JSON constructor functions
  * added support for microsecond precision CURRENT_TIMESTAMP and similar functions
  * added support for GRANT and REVOKE on all objects in a schema
  * added support for CSV file data import and export
  * added support for regional time zones such as 'America/New_York' in conversions
  * added SET DATABASE SQL MAX RECURSIVE (sql.max_recursive) setting
  * changed the default for SET DATABASE SQL SYS INDEX NAMES (sql.sys_index_names) to true
  * changed the properties reported by JDBC DatabaseMetaDat::getClientInfoProperties() method
  * improved  JDBC DatabaseMetaDat::getTablePrivileges() method to cover fine-grained privileges
  * improved error messages for SQL settings statements
  * improved documentation
  * added some minor enhancements
  * fixed a number of reported regressions and bugs (see tracker)
- Refreshed/rebased patches with quilt:
  * hsqldb-apidocs.patch
  * hsqldb-mdescriptor.patch (downgraded to build as 1.7)
  * harden_hsqldb.service.patch

- Upgrade to upstream version 2.6.1

OBS-URL: https://build.opensuse.org/request/show/1030922
OBS-URL: https://build.opensuse.org/package/show/Java:packages/hsqldb?expand=0&rev=47
2022-10-24 16:52:26 +00:00

25 lines
829 B
Diff
Raw Permalink Blame History

Index: hsqldb/sample/hsqldb.service
===================================================================
--- hsqldb.orig/sample/hsqldb.service
+++ hsqldb/sample/hsqldb.service
@@ -17,6 +17,19 @@ Description=HyperSQL Database Server
After=socket.service
[Service]
+# added automatically, for details please see
+# https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
+ProtectSystem=full
+ProtectHome=true
+PrivateDevices=true
+ProtectHostname=true
+ProtectClock=true
+ProtectKernelTunables=true
+ProtectKernelModules=true
+ProtectKernelLogs=true
+ProtectControlGroups=true
+RestrictRealtime=true
+# end of automatic additions
# TODO! Change these paths to point to the absolute path of the "hsqldb.init"
# script in your HyperSQL distribution:
ExecStart=/local/hsqldb-2.3.4/sample/hsqldb.init start
Reference in New Issue View Git Blame Copy Permalink