From f3d6e6dbbc423f07bc35da1892a4742e29b4f50d9d09bec26722b7de7bcb8df6 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Aeneas=20Jai=C3=9Fle?= Date: Sun, 7 May 2017 15:10:07 +0000 Subject: [PATCH 1/2] Accepting request 492713 from home:stroeder:branches:server:php:applications Update to 1.2.5 which fixes vulnerability in the virtualmin and sasl drivers of the password plugin (CVE-2017-8114) OBS-URL: https://build.opensuse.org/request/show/492713 OBS-URL: https://build.opensuse.org/package/show/server:php:applications/roundcubemail?expand=0&rev=109 --- roundcubemail-1.2.4.tar.gz | 3 --- roundcubemail-1.2.4.tar.gz.asc | 16 ---------------- roundcubemail-1.2.5.tar.gz | 3 +++ roundcubemail-1.2.5.tar.gz.asc | 16 ++++++++++++++++ roundcubemail.changes | 6 ++++++ roundcubemail.spec | 2 +- 6 files changed, 26 insertions(+), 20 deletions(-) delete mode 100644 roundcubemail-1.2.4.tar.gz delete mode 100644 roundcubemail-1.2.4.tar.gz.asc create mode 100644 roundcubemail-1.2.5.tar.gz create mode 100644 roundcubemail-1.2.5.tar.gz.asc diff --git a/roundcubemail-1.2.4.tar.gz b/roundcubemail-1.2.4.tar.gz deleted file mode 100644 index 9b95f85..0000000 --- a/roundcubemail-1.2.4.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:76b52a6405e0fc36b6829bf21200badbc681b18c95c7b3d9098e90f9de7ed9cc -size 3602288 diff --git a/roundcubemail-1.2.4.tar.gz.asc b/roundcubemail-1.2.4.tar.gz.asc deleted file mode 100644 index 4540af5..0000000 --- a/roundcubemail-1.2.4.tar.gz.asc +++ /dev/null @@ -1,16 +0,0 @@ ------BEGIN PGP SIGNATURE----- - -iQIcBAABCAAGBQJYwyXXAAoJEMKUapYJzVa0oAoP/iMKjGDhWVfFQszL1DgMO8pp -bG5WugfUEUP9uQkwZrWZafPL80cXAJB65eJbB2gpdeZVddtwHxyt3wwSGcvMdrnU -OywkVPUJq73fi/efYSMQjYZe1Z8w8ccAfaCimo3JO9IOzUe78/mAdpjNdBuvNe4l -yguitKXASRGvKjiJdqhVqlEmGm07/Z8jRRHkooAYIGJYi4QcQsGuaEYIZynbCXGZ -KEtemNF7Tle3sbHeULtUEarns+VAwNndLQUhJsZfMgPcUVwZ4LzBFsJeP4TGV1No -duejzqTu+84ntgDnmxJqmmNErkeCVZC9FrHDoRy76WYjg6+ZrlSjetqIc+ePGekf -5Swo86kNnfvKRoctjr12OL6y2KsR+i+JcFdA7AJYxJaZC9AIMiiRgM0/3c1Dv61u -UcjmI+uZF5ghLdxfub/mAOVCt+9fM9JxvK2vt4morDt8EVrxi1WHQ6tmSNl87SjR -NTgPTxVYF5oNbNgk0mHOG0rjgqZ050w36SjFRV6OEskTHQ/atBC7dHpipnwUcBnA -WCQt0olbBizmKBZdj0EiZcSBqhCbxEDEZqzQfoXTn4lCwU/DA12bv9MrjoQvuJWK -0iIgGt0F0ghB48B3x7YIfBNpudzKc0yl/dU90P6QDIXsFgjXgrxZEP40bbwSoJlN -WeqHgN+W5D3bX0ljPq1F -=5owX ------END PGP SIGNATURE----- diff --git a/roundcubemail-1.2.5.tar.gz b/roundcubemail-1.2.5.tar.gz new file mode 100644 index 0000000..00bc02b --- /dev/null +++ b/roundcubemail-1.2.5.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:9c4d65951cc636d0e2e2296bfdf55fb53e23a4611fa96f17fb5d354db91bec38 +size 3602701 diff --git a/roundcubemail-1.2.5.tar.gz.asc b/roundcubemail-1.2.5.tar.gz.asc new file mode 100644 index 0000000..39ea304 --- /dev/null +++ b/roundcubemail-1.2.5.tar.gz.asc @@ -0,0 +1,16 @@ +-----BEGIN PGP SIGNATURE----- + +iQIcBAABCAAGBQJZAvxDAAoJEMKUapYJzVa0JDwP/REjcCxdFt2O4yj0GSWGKge4 +d/A4VVnap/0rm4EP65yytb2Q6CkCeBsB5LycewSOXX73HuK3i9d1EI/+BI6h7Uxs +FUxhLdKLxAm129z/Dmlq+k9WVcNx2mhukqaRBJDpG86519LPNpk1dNwHEigcLXPf +eZZaCJjw7u3C02zFoR3JvETPnz+ciL/+pzDLvkMW8X7RZu0hrZo5AQZgvG4E9vSr +wBvh1PUN+ogIt3zLiL+6+n/sXPk5dw2iYSYGv8TtFa8cdBwLt8xVlbSAAdXR1pUD +vRgM9/vaWVu8lbwIjD2wx9iqa8mhVbGzJe4gge9WVyBsm1JNYeqGeWXKxtsFb8u4 +6vBWvwIxK3muJmeoUKsRyGNuMPwdkuAbyFuDMWkSp8LTkvMwAPklbeW5JZiYUvVD +E/JnoG2qavPYw6t8NjysSeq9Sm2unRk4xCyT2PWBY8yTU2L52ymFhPpUkPvKO0+3 +2K6D9dLygU5/PzcD/JAYdgP+6qbhC1Oxs2bXkK6IW+2sMLckC7GeJEu+zs7ZCLXH +/sDpvAlphHHVb7z5r5PiEkffIUR+XPKFje0PzjL6kHvNWgIcKr5NgwYHkayWE/DQ +8P14I5eFC7VBJ+QvTkEA0PxPQN4zOIap2vrsMfqyc10qwUoDjBDF/wBgDbA0myVe +j5orcUJKjtaJZn4Y8Do2 +=RoxT +-----END PGP SIGNATURE----- diff --git a/roundcubemail.changes b/roundcubemail.changes index 481edb1..ce11a03 100644 --- a/roundcubemail.changes +++ b/roundcubemail.changes @@ -1,3 +1,9 @@ +------------------------------------------------------------------- +Wed May 3 18:19:03 UTC 2017 - michael@stroeder.com + +- Update to 1.2.5 which fixes vulnerability in the + virtualmin and sasl drivers of the password plugin (CVE-2017-8114) + ------------------------------------------------------------------- Thu Mar 16 18:20:18 UTC 2017 - aj@ajaissle.de diff --git a/roundcubemail.spec b/roundcubemail.spec index ce9ec45..dff9b8f 100644 --- a/roundcubemail.spec +++ b/roundcubemail.spec @@ -17,7 +17,7 @@ Name: roundcubemail -Version: 1.2.4 +Version: 1.2.5 Release: 0 Summary: A modern browser-based multilingual IMAP client License: GPL-3.0+ and GPL-2.0 and BSD-3-Clause From a336002b4bc0fd81cf67ce10f9e44a83de6685803aa50920d608928eb4612ff1 Mon Sep 17 00:00:00 2001 From: Wolfgang Rosenauer Date: Mon, 8 May 2017 10:06:20 +0000 Subject: [PATCH 2/2] Accepting request 493416 from home:AndreasStieger:branches:server:php:applications add bsc reference OBS-URL: https://build.opensuse.org/request/show/493416 OBS-URL: https://build.opensuse.org/package/show/server:php:applications/roundcubemail?expand=0&rev=110 --- roundcubemail.changes | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/roundcubemail.changes b/roundcubemail.changes index ce11a03..141acfa 100644 --- a/roundcubemail.changes +++ b/roundcubemail.changes @@ -1,8 +1,8 @@ ------------------------------------------------------------------- Wed May 3 18:19:03 UTC 2017 - michael@stroeder.com -- Update to 1.2.5 which fixes vulnerability in the - virtualmin and sasl drivers of the password plugin (CVE-2017-8114) +- Update to 1.2.5 which fixes vulnerability in the virtualmin and + sasl drivers of the password plugin (CVE-2017-8114, bsc#1036955) ------------------------------------------------------------------- Thu Mar 16 18:20:18 UTC 2017 - aj@ajaissle.de