Accepting request 874103 from home:asvetter:branches:security:Stunnel

- Update to 5.58: * Security bugfixes - The "redirect" option was fixed to properly handle unauthenticated requests (thx to Martin Stein). And more bugfixes and new features. OBS-URL: https://build.opensuse.org/request/show/874103 OBS-URL: https://build.opensuse.org/package/show/security:Stunnel/stunnel?expand=0&rev=126
2021-02-21 07:21:31 +00:00 · 2021-02-21 07:21:31 +00:00 · e03236a509
commit e03236a509
parent 354106f0c2
6 changed files with 45 additions and 23 deletions
--- a/stunnel-5.57.tar.gz
+++ b/stunnel-5.57.tar.gz
@ -1,3 +0,0 @@
 version https://git-lfs.github.com/spec/v1
 oid sha256:af5ab973dde11807c38735b87bdd87563a47d2fa1c72a07929fcfce80a600fe1
 size 985763
--- a/stunnel-5.57.tar.gz.asc
+++ b/stunnel-5.57.tar.gz.asc
@ -1,18 +0,0 @@
 -----BEGIN PGP SIGNATURE-----
 iQKTBAABCgB9FiEEK8fk5n48wMG+py+MLvx/8NQW4BQFAl+DRNhfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDJC
 QzdFNEU2N0UzQ0MwQzFCRUE3MkY4QzJFRkM3RkYwRDQxNkUwMTQACgkQLvx/8NQW
 4BQfzQ/+PGuXp1yOqp7azbtvC6HxJXaL6wjAUbl5CMeaIE11KVON9SSp463l3Svj
 l1dRGuPvIg16IDMOqQyX0+9Pqnpjz9YA7ZJPgLC+/sbFo9sXAaesP+JHfdU7yUMc
 ke+oEBUOuwsor+wYHJUPKePUJv1vGhS+xDxpg91K4+lOJYunOOJWyvoLS10FZmIK
 9pGFjwqsyzuZQ3G4JA+3z7YtBdq+PcUbJSa0VAjvg0BLWA3Eg0B0PvZGBCHVhb4b
 1xOe/HAI1oDQSlu2vlDFJKN8/W4AEHD2de3iWXi6UUf3GZ9TMebmf5is8dzdJjXF
 k7Xi6JCsEM/FQIuvhk7LLeUHigM3FO4lazMdNhOTobtXMEm0gSOCJLco6WkgwxmB
 hccmVFSYSvyG2GObE3twBvrd4cx6veUOQ6SyhAICaVljBpBii3VOpAHKCT+6mw2z
 SHTkYu8z1XJ7twjB7vw21lkMuAFDRFXmbuj9qf6w69FjUXmFW00e7iJ6wnCSTsgM
 zaxy3jITALuGGvY4WDPLTENTegN4M5sEcsM7CaSFTp1p09qIedIkFHS6PmSgVvTI
 Okm4qXhDRXms+BTMe3h0z77iYKYpjC56aQuIZ+wOD6WrbIT9ll4r9PIAXJ/mg6BB
 HbIceaabD/MrC0BNqEMn2rvkNRCxfnXVWWKaTfumJo8QMvHFE0o=
 =H8r1
 -----END PGP SIGNATURE-----
--- a/stunnel-5.58.tar.gz
+++ b/stunnel-5.58.tar.gz
@ -0,0 +1,3 @@
 version https://git-lfs.github.com/spec/v1
 oid sha256:d4c14cc096577edca3f6a2a59c2f51869e35350b3988018ddf808c88e5973b79
 size 988551
--- a/stunnel-5.58.tar.gz.asc
+++ b/stunnel-5.58.tar.gz.asc
@ -0,0 +1,18 @@
 -----BEGIN PGP SIGNATURE-----
 iQKTBAABCgB9FiEEK8fk5n48wMG+py+MLvx/8NQW4BQFAmAxUhNfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDJC
 QzdFNEU2N0UzQ0MwQzFCRUE3MkY4QzJFRkM3RkYwRDQxNkUwMTQACgkQLvx/8NQW
 4BTjnw//WxZJR4No++ri5S4amhfYpLPY3Zr9qUGQ5hepESCWTYf/K+b24fPtKsiU
 x/qn1jneQWw/dzPsD1e3UuPH+4d4ryzLzxVW9T8T+6cFQlaU89m5h0Epdd/LjwhF
 YECEawGU3dA+pgrNrumgyUTzYtsWGCAkylS02eDrD3auYL3mllarAuXmOpjFxIRB
 zod4HILm5fKggZ9++GsIeTFLz+q8Q1Y6QdELLje5p9wrqgP/N2Misc6yrYN8ZdOV
 HvFirN/M/Zb0AYknYNe6GHu06u8SM5bZpbwqrrMGaY95mL0lYDn5mi8quel0dnBv
 sI9rrflo1G9NMymSPN1knV9UeTKSnpSSr9HFxl1Y5eH2DcLIhfQZ9STBzrRPivxb
 JC0gNE51K36Komd4VhfYA2RPtih+YeGi7bADSMoH3UOZDsMJ9YitO9NAsFS/MaY7
 EkxKcqisfccZ69ruykHVxfYHujdby/EOXIUZVmmkrV7BWudhnDmukFg6k6uOq7LT
 k1ABoNhqfQx3f/daR0oluNgdOPz6bkt/9fa1RjFHqVLo+YOMBrHAEUv6eSQ2V0z5
 Lh5UCQQmPk7M6JWta1Bs9Ftv+H+CR6k6Ix9oF3lMjAjcJu4oj7zeRN4yH4KlGltP
 SfWgOEK0SqwZZL8yE7Fp61WiDlTW3b02U7iESj/OJK6Z1CpCxtE=
 =EoHl
 -----END PGP SIGNATURE-----
--- a/stunnel.changes
+++ b/stunnel.changes
@ -1,3 +1,25 @@
 -------------------------------------------------------------------
 Sun Feb 21 07:29:45 UTC 2021 - Andreas Vetter <vetter@physik.uni-wuerzburg.de>
 - Update to 5.58:
  *  Security bugfixes
     -  The "redirect" option was fixed to properly handle unauthenticated requests (thx to Martin Stein).
     -  Fixed a double free with OpenSSL older than 1.1.0 (thx to Petr Strukov).
  *  New features
     -  New 'protocolHeader' service-level option to insert custom 'connect' protocol negotiation headers.
        This feature can be used to impersonate other software (e.g. web browsers).
     -  'protocolHost' can also be used to control the client SMTP protocol negotiation HELO/EHLO value.
     -  Initial FIPS 3.0 support.
  *  Bugfixes
     -  X.509v3 extensions required by modern versions of OpenSSL are added to generated self-signed test certificates.
     -  Fixed a tiny memory leak in configuration file reload error handling (thx to Richard Könning).
     -  Merged Debian 05-typos.patch (thx to Peter Pentchev).
     -  Merged with minor changes Debian 06-hup-separate.patch (thx to Peter Pentchev).
     -  Merged Debian 07-imap-capabilities.patch (thx to Ansgar).
     -  Merged Debian 08-addrconfig-workaround.patch (thx to Peter Pentchev).
     -  Fixed engine initialization (thx to Petr Strukov).
     -  FIPS TLS feature is reported when a provider or container is available, and not when FIPS control API is available.
 -------------------------------------------------------------------
 Tue Jan 26 14:01:11 UTC 2021 - Dirk Stoecker <opensuse@dstoecker.de>
--- a/stunnel.spec
+++ b/stunnel.spec
@ -1,7 +1,7 @@
 #
 # spec file for package stunnel
 #
-# Copyright (c) 2020 SUSE LLC
+# Copyright (c) 2021 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -38,7 +38,7 @@ Requires(pre):  /usr/sbin/useradd
  %define _fillupdir %{_localstatedir}/adm/fillup-templates
 %endif
 Name:           stunnel
-Version:        5.57
+Version:        5.58
 Release:        0
 Summary:        Universal TLS Tunnel
 License:        GPL-2.0-or-later