Accepting request 1316454 from Apache:Shibboleth

OBS-URL: https://build.opensuse.org/request/show/1316454 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/shibboleth-sp?expand=0&rev=26
- Update to 3.5.1:
2025-11-07 17:24:10 +00:00 · 2025-11-07 14:17:56 +00:00
6 changed files with 29 additions and 22 deletions
--- a/shibboleth-sp-3.5.0.tar.bz2
+++ b/shibboleth-sp-3.5.0.tar.bz2
--- a/shibboleth-sp-3.5.0.tar.bz2.asc
+++ b/shibboleth-sp-3.5.0.tar.bz2.asc
@@ -1,16 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQIzBAABCgAdFiEE3KoVAHvtneaQzZUjN4uEVAIneWIFAmcPtzUACgkQN4uEVAIn
-eWKBUBAAwL+ce9b9RoxH51KicisZo3rwJu/UUU55jbRa96Cqoev37I9ibRXaElRG
-5ALoFwzcLGLnHUVH6XooPYTTK70UsmUUZUhV0BwdIkYeKUZcjp/08Xo3S4EqKGxM
-YHc13iueDRksRIKpma0JaEdzp0QMVdNqb6laLn+v7QoVoBjKS50WGk9eIudw9Sb9
-vMfxTjfez1ObFEOwk1+PeceaBKz8kciK5p3V4++GtEYvPg47va4TgAVOIuFFKSUp
-BuNDtwNs3RbZe2ZuuOU7zOeCBUEeA82qBttjVh0EWLczZkRA39oTkGi+FpTQRBOz
-vgppYmvQ1qDQ0gAQ65M+dLoNUEvPA/yTlbXIHIYrWrEpOMqWR1/eRiM3xi984mdc
-/GswbWb7rQAj7Up06oiX9HDw/3C2jrP+pxdsJVZBtIQsjSpeAnRYziQi0YTRwq4j
-GmedAXyPfbRc4hlXWz0f9jOXl49+ObQmXXNZ5bDzv9TjNe4tYQHiUOiZ1bCcdKQr
-+OVB7RMBLKzAQkYOMkbkWrPKxytRYMoGPqdT8joqL8LquE/cxj9OJb9bdRX5Ehe9
-FZ+4YmfQ/hN7771pIa1TWgiP1TsCEfm304coDoHwwohpxgNpibVvNZwJpBtoeIIa
-TnmOETpOcm+71KhCFUaGMSz/ZCuycerdHkyrDY3C6XPm1bRm9Qo=
-=asUQ
-----END PGP SIGNATURE-----
--- a/shibboleth-sp-3.5.1.tar.bz2
+++ b/shibboleth-sp-3.5.1.tar.bz2
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:05da3a09d76c3ba1a5ddd7f919fd942be2d87025f214aba139c2b64b804f9a99
+size 837446
--- a/shibboleth-sp-3.5.1.tar.bz2.asc
+++ b/shibboleth-sp-3.5.1.tar.bz2.asc
@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=kqCd
+-----END PGP SIGNATURE-----
--- a/shibboleth-sp.changes
+++ b/shibboleth-sp.changes
@@ -1,3 +1,10 @@
+-------------------------------------------------------------------
+Fri Nov  7 14:12:33 UTC 2025 - Marius Grossu <marius.grossu@suse.com>
+
+- Update to 3.5.1:
+  * This is a patch release to address a security vulnerability in the ODBC storage plugin/extension. 
+  (CVE-2025-9943, bsc#1249394)
+
 -------------------------------------------------------------------
 Thu May 29 10:17:16 UTC 2025 - Marius Grossu <marius.grossu@suse.com>

--- a/shibboleth-sp.spec
+++ b/shibboleth-sp.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package shibboleth-sp
 #
-# Copyright (c) 2025 SUSE LLC
+# Copyright (c) 2025 SUSE LLC and contributors
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -22,7 +22,7 @@
 %define realname shibboleth
 %define pkgdocdir %{_docdir}/%{realname}
 Name:           shibboleth-sp
-Version:        3.5.0
+Version:        3.5.1
 Release:        0
 Summary:        System for attribute-based Web Single Sign On
 License:        Apache-2.0
@@ -118,7 +118,7 @@ This package includes files needed for development with Shibboleth.
 %build
 export CXXFLAGS="%{optflags} --std=c++11"
 autoreconf -f -i
-%configure --with-gssapi --enable-systemd --with-memcached
+%configure --with-gssapi --enable-systemd --with-memcached --with-apxs
 %make_build pkgdocdir=%{pkgdocdir}

 %install