Accepting request 807296 from server:dns

update to 1.10.1 with security fixes

OBS-URL: https://build.opensuse.org/request/show/807296
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/unbound?expand=0&rev=45

libunbound-devel-mini.changes

@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Tue May 19 10:45:19 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- update to 1.10.1 with security fixes
+  * CVE-2020-12662 Unbound can be tricked into amplifying an incoming
+    query into a large number of queries directed to a target.
+  * CVE-2020-12663 Malformed answers from upstream name servers can be
+    used to make Unbound unresponsive.
+- removed unused unbound-1.10.1.tar.gz.asc for now
+
 -------------------------------------------------------------------
 Thu Feb 20 21:40:10 UTC 2020 - Michael Ströder <michael@stroeder.com>
 

libunbound-devel-mini.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package libunbound-devel-mini
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -24,7 +24,7 @@
 
 #
 Name:           libunbound-devel-mini
-Version:        1.10.0
+Version:        1.10.1
 Release:        0
 #
 #
@@ -40,7 +40,7 @@ Conflicts:      unbound-devel
 Conflicts:      libunbound8
 Provides:       libunbound-devel = %{version}-%{release}
 #
-Url:            https://www.unbound.net/
+URL:            https://www.unbound.net/
 Source:         https://www.unbound.net/downloads/unbound-%{version}.tar.gz
 Source1:        libunbound-devel-mini-rpmlintrc
 Source5:        root.key

unbound-1.10.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:152f486578242fe5c36e89995d0440b78d64c05123990aae16246b7f776ce955
-size 5727902

unbound-1.10.1.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b73677c21a71cf92f15cc8cfe76a3d875e40f65b6150081c39620b286582d536
+size 5729334

unbound.changes

@@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Tue May 19 10:45:19 UTC 2020 - Michael Ströder <michael@stroeder.com>
+
+- update to 1.10.1 with security fixes
+  * CVE-2020-12662 Unbound can be tricked into amplifying an incoming
+    query into a large number of queries directed to a target.
+  * CVE-2020-12663 Malformed answers from upstream name servers can be
+    used to make Unbound unresponsive.
+- removed unused unbound-1.10.1.tar.gz.asc for now
+
 -------------------------------------------------------------------
 Thu Feb 20 21:40:10 UTC 2020 - Michael Ströder <michael@stroeder.com>
 

unbound.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package unbound
 #
-# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2020 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -36,7 +36,7 @@
 %define piddir /run
 
 Name:           unbound
-Version:        1.10.0
+Version:        1.10.1
 Release:        0
 #
 #
@@ -71,7 +71,7 @@ BuildRequires:  pkgconfig(libsystemd)
 %{?systemd_requires}
 %endif
 #
-Url:            https://www.unbound.net/
+URL:            https://www.unbound.net/
 Source:         https://www.unbound.net/downloads/unbound-%{version}.tar.gz
 Source1:        unbound.service
 Source2:        unbound.conf