From 3d5bf2cc0986bb2209fc93ea1da9a1f0ed1f98b6af8a2a5815826afb0e7cc190 Mon Sep 17 00:00:00 2001
From: Marcus Rueckert <mrueckert@suse.com>
Date: Tue, 31 Oct 2023 20:07:10 +0000
Subject: [PATCH] Accepting request 1121496 from home:darix:apps
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Update to 1.95.1
  - Security:
    - GHSA-mp92-3jfm-3575 / CVE-2023-43796 — Moderate Severity
      Cached device information of remote users can be queried from
      Synapse. This can be used to enumerate the remote users known
      to a homeserver.

OBS-URL: https://build.opensuse.org/request/show/1121496
OBS-URL: https://build.opensuse.org/package/show/network:messaging:matrix/matrix-synapse?expand=0&rev=296
---
 _service                      |  2 +-
 cargo_config                  |  2 +-
 matrix-synapse-1.95.0.obscpio |  3 ---
 matrix-synapse-1.95.1.obscpio |  3 +++
 matrix-synapse-test.spec      |  2 +-
 matrix-synapse.changes        | 10 ++++++++++
 matrix-synapse.obsinfo        |  6 +++---
 matrix-synapse.spec           |  2 +-
 vendor.tar.zst                |  4 ++--
 9 files changed, 22 insertions(+), 12 deletions(-)
 delete mode 100644 matrix-synapse-1.95.0.obscpio
 create mode 100644 matrix-synapse-1.95.1.obscpio

diff --git a/_service b/_service
index 99b390a..ee8ade3 100644
--- a/_service
+++ b/_service
@@ -4,7 +4,7 @@
     <param name="versionformat">@PARENT_TAG@</param>
     <param name="url">https://github.com/matrix-org/synapse.git</param>
     <param name="scm">git</param>
-    <param name="revision">v1.95.0</param>
+    <param name="revision">v1.95.1</param>
     <param name="versionrewrite-pattern">v(.*)</param>
     <param name="versionrewrite-replacement">\1</param>
     <!--
diff --git a/cargo_config b/cargo_config
index 6fb4ff4..97852b5 100644
--- a/cargo_config
+++ b/cargo_config
@@ -2,4 +2,4 @@
 replace-with = "vendored-sources"
 
 [source.vendored-sources]
-directory = "vendor"
\ No newline at end of file
+directory = "vendor"
diff --git a/matrix-synapse-1.95.0.obscpio b/matrix-synapse-1.95.0.obscpio
deleted file mode 100644
index ca04b8b..0000000
--- a/matrix-synapse-1.95.0.obscpio
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:712472d51f9f68f89a426bf372e67a6d818e7606cc7cbf3e6dd21d7a006d12cb
-size 35669005
diff --git a/matrix-synapse-1.95.1.obscpio b/matrix-synapse-1.95.1.obscpio
new file mode 100644
index 0000000..7c23c8e
--- /dev/null
+++ b/matrix-synapse-1.95.1.obscpio
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:041f292933b6feedb3543e0bc638526bf7e93b91f50c2f3f2dc077f35eb4e10c
+size 35670029
diff --git a/matrix-synapse-test.spec b/matrix-synapse-test.spec
index 23bdb7c..d4a49a3 100644
--- a/matrix-synapse-test.spec
+++ b/matrix-synapse-test.spec
@@ -27,7 +27,7 @@
 
 %define         pkgname matrix-synapse
 Name:           %{pkgname}-test
-Version:        1.95.0
+Version:        1.95.1
 Release:        0
 Summary:        Test package for %{pkgname}
 License:        Apache-2.0
diff --git a/matrix-synapse.changes b/matrix-synapse.changes
index fc537b1..50f29b9 100644
--- a/matrix-synapse.changes
+++ b/matrix-synapse.changes
@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Tue Oct 31 20:03:55 UTC 2023 - Marcus Rueckert <mrueckert@suse.de>
+
+- Update to 1.95.1
+  - Security:
+    - GHSA-mp92-3jfm-3575 / CVE-2023-43796 — Moderate Severity
+      Cached device information of remote users can be queried from
+      Synapse. This can be used to enumerate the remote users known
+      to a homeserver.
+
 -------------------------------------------------------------------
 Tue Oct 24 19:56:22 UTC 2023 - Marcus Rueckert <mrueckert@suse.de>
 
diff --git a/matrix-synapse.obsinfo b/matrix-synapse.obsinfo
index 63ddb09..6236c5b 100644
--- a/matrix-synapse.obsinfo
+++ b/matrix-synapse.obsinfo
@@ -1,4 +1,4 @@
 name: matrix-synapse
-version: 1.95.0
-mtime: 1698148862
-commit: 79f48b2b4fd6a90d919dc64f5a8d393c50cd5652
+version: 1.95.1
+mtime: 1698760952
+commit: a11511954a58975d2e5400257a0cecfd27413447
diff --git a/matrix-synapse.spec b/matrix-synapse.spec
index 6bdb2f8..3a18cac 100644
--- a/matrix-synapse.spec
+++ b/matrix-synapse.spec
@@ -157,7 +157,7 @@
 %define         pkgname matrix-synapse
 %define         eggname matrix_synapse
 Name:           %{pkgname}
-Version:        1.95.0
+Version:        1.95.1
 Release:        0
 Summary:        Matrix protocol reference homeserver
 License:        Apache-2.0
diff --git a/vendor.tar.zst b/vendor.tar.zst
index 78685e2..14b82d6 100644
--- a/vendor.tar.zst
+++ b/vendor.tar.zst
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:8413f1a6ef71c0121011162f855a83c0fafe121acf5bfc448ad31362a1453489
-size 5797853
+oid sha256:10792ca089a92fec2bfc2095b07011204951ee99e97b28092120d43254becdff
+size 5781892