Accepting request 1298110 from security

OBS-URL: https://build.opensuse.org/request/show/1298110
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/yubico-piv-tool?expand=0&rev=26

yubico-piv-tool-2.6.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:d4efd2d7c5baca49ffc070dea5fb64c17239095e0e54b10766a8a156b0c09285
-size 2411956

yubico-piv-tool-2.7.2.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:b84ade3c35d4949db008e6cda7b6cc70ff98858598b3f09bc46fd24a3d5f7461
+size 1364476

yubico-piv-tool.changes

@@ -1,3 +1,34 @@
+-------------------------------------------------------------------
+Thu Aug  7 09:31:45 UTC 2025 - Wolfgang Frisch <wolfgang.frisch@suse.com>
+
+- update to 2.7.2:
+  * ykcs11: Handle a silent verification failure when opening a PKCS11 session.
+    No impact on authentication enforcement for the usage of credentials on the
+    YubiKey
+  * ykcs11: Use "VERIFY_NONE" as PIN to skip verification when using keys with
+    PIN policy "never"
+  * ykcs11: Use "VERIFY_BIO" as PIN to trigger bio verification on the YubiKey
+  * cmd: Get public key of an existing private key
+  * cmd: Improve output of the status command to include slots with only a
+    private key stored
+  * cmd: Fix OID for attestation cross-signature extensions 
+  * cmd: Deprecate the --scp11 flag and rename it to --enc
+
+-------------------------------------------------------------------
+Sun Feb  9 21:30:04 UTC 2025 - Dirk Müller <dmueller@suse.com>
+
+- update to 2.7.1:
+  * ykpiv: Fix type casting issues affecting systems using
+    Big-endian architecture
+
+-------------------------------------------------------------------
+Thu Dec 19 14:49:32 UTC 2024 - Wolfgang Frisch <wolfgang.frisch@suse.com>
+
+- update to 2.7.0:
+  * ykpiv: cmd: Add support for communication over a secure channel according
+                to SCP11b specifications
+  * ykpiv: cmd: Add support for device global reset
+
 -------------------------------------------------------------------
 Thu Sep 12 14:56:39 UTC 2024 - Wolfgang Frisch <wolfgang.frisch@suse.com>
 
@@ -20,14 +51,14 @@ Tue May  7 09:05:14 UTC 2024 - Wolfgang Frisch <wolfgang.frisch@suse.com>
 
 - update to 2.5.2:
   * cmd: Fix signing selfsigned certificate for ED25519 key.
-- update cmake-flags-upstream-issue-474.patch 
+- update cmake-flags-upstream-issue-474.patch
 
 -------------------------------------------------------------------
 Wed Feb 14 09:05:14 UTC 2024 - Wolfgang Frisch <wolfgang.frisch@suse.com>
 
 - update to 2.5.1:
   * ykpiv: cmd: ykcs11: Fix buffer size for key import.
-- add cmake-flags-upstream-issue-474.patch: 
+- add cmake-flags-upstream-issue-474.patch:
   proper fix for the cmake flags issue
 - remove temporary-cmake-flags-fix.patch
 

yubico-piv-tool.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package yubico-piv-tool
 #
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC and contributors
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,7 +18,7 @@
 
 %define sover  2
 Name:           yubico-piv-tool
-Version:        2.6.1
+Version:        2.7.2
 Release:        0
 Summary:        Yubico YubiKey NEO CCID Manager
 License:        BSD-2-Clause
@@ -104,7 +104,9 @@ make test
 
 %files
 %license COPYING
-%doc NEWS README
+# README removed in 2.7.2, maybe by accident. Check again in future releases.
+# %doc NEWS README
+%doc NEWS
 %{_bindir}/%{name}
 %{_mandir}/man1/*