Accepting request 523818 from GNOME:Factory

Update to 3.26.0 (forwarded request 523816 from dimstar)

OBS-URL: https://build.opensuse.org/request/show/523818
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libsoup?expand=0&rev=99

libsoup-2.58.2.tar.xz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:442300ca1b1bf8a3bbf2f788203287ff862542d4fc048f19a92a068a27d17b72
-size 1815256

libsoup-2.60.0.tar.xz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b324edbecda0884143c0853b4a2bd5bd37fb3761f12f293c621ff34b9acdc84c
+size 1826560

libsoup.changes

@@ -1,3 +1,46 @@
+-------------------------------------------------------------------
+Tue Sep 12 20:07:03 UTC 2017 - dimstar@opensuse.org
+
+- Update to version 2.60.0:
+  + Updated translations.
+
+-------------------------------------------------------------------
+Tue Aug 15 07:50:16 UTC 2017 - zaitor@opensuse.org
+
+- Update to version 2.59.90.1:
+  + Fixed a chunked decoding buffer overrun that could be exploited
+    against either clients or servers (bgo#785774, CVE-2017-2885).
+- Changes from version 2.59.90:
+  + Several SoupAuthNegotiate compatibility fixes (bgo#783780,
+    bgo#783781).
+  + Include a payload in SoupWebsocketConnection's "ping" messages
+    (to avoid problems with certain buggy server implementations),
+    and emit a signal when receiving a "pong" (to allow apps to
+    notice when the remote peer has disconnected them)
+    (bgo#785660).
+  + Fix the interpretation of wss:// URIs, which previously mostly
+    didn't work (bgo#784766).
+  + Fixed SoupContentSniffer behavior on XML files with no
+    Content-Type (webkit#173923).
+  + Fixed a bug with cancelling async requests (bgo#773257).
+  + Reverted the (undocumented) change in 2.58.0 to call
+    soup_session_abort() after changing SoupSession:proxy-resolver;
+    while this made its behavior more consistent with :proxy-uri,
+    it ended up breaking things (bgo#781590).
+  + Allow HTTP responses that have no trailing CRLF after the
+    response headers (and no body) (bgo#780352).
+  + Fixed an out-of-bounds read in SoupURI parsing (bgo#785042).
+  + Fixed a spurious (debug-level) error message in
+    SoupWebsocketConnection (bgo#784935).
+  + Fixed introspection annotations on
+    soup_message_headers_get_content_range().
+  + Fixed a flake in tests/header-parsing (bgo#777258).
+  + Update tests/test-cert.pem to use stronger algorithms to avoid
+    problems with newer gnutls (bgo#784949).
+  + Fixed examples/get to not accidentally break https certificate
+    validation (bgo#784259).
+  + Misc updates to apache/php stuff in unit tests.
+
 -------------------------------------------------------------------
 Mon Aug 14 12:22:57 UTC 2017 - zaitor@opensuse.org
 

libsoup.spec

@@ -20,10 +20,10 @@ Name:           libsoup
 Summary:        HTTP client/server library for GNOME
 License:        LGPL-2.1+
 Group:          Development/Libraries/GNOME
-Version:        2.58.2
+Version:        2.60.0
 Release:        0
 Url:            http://www.gnome.org
-Source:         https://download.gnome.org/sources/libsoup/2.58/%{name}-%{version}.tar.xz
+Source:         http://download.gnome.org/sources/libsoup/2.60/%{name}-%{version}.tar.xz
 Source99:       baselibs.conf
 BuildRequires:  glib-networking
 BuildRequires:  glib2-devel >= 2.38.0