Accepting request 830069 from home:dirkmueller:branches:network

- update to 1.3.1:
  * The most important change of this release is the fix of CVE-2017-5603. QXmpp is
not vulnerable to roster push attacks (CVE-2016-9928).
 - QXmppRosterIq: Set subscriptionType to NotSet correctly (#293, @melvo)
 - Fix `QXMPP_EXPORT` define when linking statically (#299, @leobasilio)
 - QXmppMessageReceiptManager: Ignore all error messages (#300, @lnjX)
 - QXmppCarbonManager: Fix CVE-2017-5603 (missing sender check) (#304, @lnjX)
QXmpp complys with the XMPP Compliance Suites 2020 (XEP-0423) for client
development in the Core, IM and Advanced Mobile suites now. For this prupose it
has been updated to RFC6120 and RFC6121. ABI compatibility was kept with this
release (apart from classes marked as 'NOT FINALIZED').
 - Port QXmppCallManager to GStreamer (#207, @olesalscheider)
 - Add XEP-0245: The /me Command (#276, @lnjX)
 - Add XEP-0357: Push Notifications: Enable/disable IQ (#271, @jbbgameich,
   @zatroxde)
 - Add XEP-0359: Unique and Stable Stanza IDs (#256, @lnjX)
 - Add XEP-0428: Fallback Indication (#253, @lnjX)
 - Update from RFC3920 to RFC6120:
   * Deprecate PaymentRequired stanza error condition as it was not adopted in
     RFC6120 (#277, @lnjX)
   * Add PolicyViolation stanza error condition added in RFC6120 (#279, @lnjX)
   * Add redirection URI from RFC6120 for Gone and Redirect conditions (#280,
     @lnjX)
   * Add 'by' attribute to QXmppStanza::Error from RFC6120 (#283, @lnjX)
 - Update from RFC3921 to RFC6121:
   * Add pre-approved presence subscriptions (#285, @lnjX):
     - Add 'approved' attribute to QXmppRosterIq
     - Add stream feature for pre-approved presence subscriptions
   * Add stream feature for roster versioning (#286, @lnjX)
 - Use QUuid by default to generate unique stanza IDs (#255, @lnjX)

OBS-URL: https://build.opensuse.org/request/show/830069
OBS-URL: https://build.opensuse.org/package/show/network/libqxmpp?expand=0&rev=28

libqxmpp-1.2.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:f83eb44e2b21b070a7568b2b234e269a6ab7c64007728d62b01487de843688ee
-size 312945

libqxmpp-1.3.1.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:812e718a2dd762ec501a9012a1281b9b6c6d46ec38adbc6eec242309144e1c55
+size 302843

libqxmpp.changes

@@ -1,3 +1,54 @@
+-------------------------------------------------------------------
+Thu Aug 27 18:55:57 UTC 2020 - Dirk Mueller <dmueller@suse.com>
+
+- update to 1.3.1:
+  * The most important change of this release is the fix of CVE-2017-5603. QXmpp is
+not vulnerable to roster push attacks (CVE-2016-9928).
+ - QXmppRosterIq: Set subscriptionType to NotSet correctly (#293, @melvo)
+ - Fix `QXMPP_EXPORT` define when linking statically (#299, @leobasilio)
+ - QXmppMessageReceiptManager: Ignore all error messages (#300, @lnjX)
+ - QXmppCarbonManager: Fix CVE-2017-5603 (missing sender check) (#304, @lnjX)
+QXmpp complys with the XMPP Compliance Suites 2020 (XEP-0423) for client
+development in the Core, IM and Advanced Mobile suites now. For this prupose it
+has been updated to RFC6120 and RFC6121. ABI compatibility was kept with this
+release (apart from classes marked as 'NOT FINALIZED').
+ - Port QXmppCallManager to GStreamer (#207, @olesalscheider)
+ - Add XEP-0245: The /me Command (#276, @lnjX)
+ - Add XEP-0357: Push Notifications: Enable/disable IQ (#271, @jbbgameich,
+   @zatroxde)
+ - Add XEP-0359: Unique and Stable Stanza IDs (#256, @lnjX)
+ - Add XEP-0428: Fallback Indication (#253, @lnjX)
+ - Update from RFC3920 to RFC6120:
+   * Deprecate PaymentRequired stanza error condition as it was not adopted in
+     RFC6120 (#277, @lnjX)
+   * Add PolicyViolation stanza error condition added in RFC6120 (#279, @lnjX)
+   * Add redirection URI from RFC6120 for Gone and Redirect conditions (#280,
+     @lnjX)
+   * Add 'by' attribute to QXmppStanza::Error from RFC6120 (#283, @lnjX)
+ - Update from RFC3921 to RFC6121:
+   * Add pre-approved presence subscriptions (#285, @lnjX):
+     - Add 'approved' attribute to QXmppRosterIq
+     - Add stream feature for pre-approved presence subscriptions
+   * Add stream feature for roster versioning (#286, @lnjX)
+ - Use QUuid by default to generate unique stanza IDs (#255, @lnjX)
+ - Add roster extension for MIX-PAM (XEP-0405) (#175, @lnjX)
+ - Update MAM to v0.6 (including namespace bump to `urn:xmpp:mam:2`) (#254,
+   #257, @lnjX)
+ - Add not-authorized stream error condition in QXmppOutgoingClient (#191,
+   @henry61024)
+ - Add missing static service discovery features for supported message
+   extensions (#287, @lnjX)
+ - Add utility constructor to QXmppDataForm and QXmppDataForm::Field to make
+   creation of forms easier (#273, @lnjX)
+ - Make QXmpp work with projects using `QT_NO_KEYWORDS` (#258, @tomcucinotta)
+ - Add hyperlinks to XEP references in the documentation (@lnjX)
+ - Move from Travis-CI to GitHub Actions (#265, @jlaine)
+ - Replace deprecated `qsrand()` and `qrand()` by QRandomGenerator (#267,
+   @melvo)
+ - Add tests for QXmppStanza::Error parsing (#279, @lnjX)
+ - `QXmppStanza::Error::Condition::PaymentRequired`: The error condition was
+   unused and not adopted in RFC6120
+
 -------------------------------------------------------------------
 Tue May 19 10:00:23 UTC 2020 - Wolfgang Bauer <wbauer@tmo.at>
 

libqxmpp.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package libqxmpp
 #
-# Copyright (c) 2019 SUSE LLC.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,7 +18,7 @@
 
 %define sover 3
 Name:           libqxmpp
-Version:        1.2.1
+Version:        1.3.1
 Release:        0
 Summary:        Qt XMPP Library
 License:        LGPL-2.1-or-later