python/python-python-rpm-spec
SHA256
14
0
Fork 0
forked from pool/python-python-rpm-spec
Code Pull Requests Activity

Accepting request 1110811 from home:mschreiner:branches:devel:languages:python

Browse Source 
- Add avoid-ddos-on-carefully-crafted-spec-files.patch.
  - This patch fixes an endless loop that could be triggered by carefully crafting
    a malicious RPM spec file.
  - Issue was reported by David Anes, who also contributed the patch.
  - More details on the .spec file.
- Update to v0.14.1.
  - For a full changelog here, please check the .changes file.

OBS-URL: https://build.opensuse.org/request/show/1110811
OBS-URL: https://build.opensuse.org/package/show/devel:languages:python/python-python-rpm-spec?expand=0&rev=12
This commit is contained in:
Dirk Mueller
2023-09-13 07:38:28 +00:00
committed by Git OBS Bridge
parent 28043f85ee
commit c0d86b66b9
5 changed files with 83 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
python-python-rpm-spec.changes
View File

@@ -1,3 +1,41 @@
-------------------------------------------------------------------
Wed Sep 13 06:08:44 UTC 2023 - Martin Schreiner <martin.schreiner@suse.com>
- Add avoid-ddos-on-carefully-crafted-spec-files.patch.
- Update to v0.14.1:
- Changes from v0.14.1:
- Fix replace_macro's behavior with user-defined conditional
macros.
- The parsing of package names was wrong when tab characters where
used in %package.
- Implement parsing of spec files where sub-packages (%package)
have their own sources and patches defined. Previously, the
parser would just fail with an error message like
AttributeError: 'Package' object has no attribute
'sources'. This is now fixed.
- Use SemVer for versioning. git tags are now prefixed with v,
e.g. v0.15.0 instead of 0.15.0.
- Changes from v0.14:
- Teach replace_macro how to deal with macros that are not wrapped
in curly braces.
- Add type annotations for tools like mypy, your IDE, and your
brain.
- Changes from v0.13:
- Fix parsing of BuildRequires:, Requires:, Conflicts:,
Obsoletes:, Provides: with comments at end of line..
- Add CI for Python 3.11.
- Changes from v0.12:
- Fix %description and %changelog with multi-line strings.
- Changes from v0.11:
- Add type annotations for tools like mypy, your IDE, and your
brain.
- replace_macros() function now always expects a Spec instance as
second argument. Does not make much sense without.
- Add support for parsing %description and %changelog.
- Add support for ExcludeArch and ExclusiveArch.
- Add warnings_enabled knob to issue warnings of type UserWarning
during spec file parsing.
-------------------------------------------------------------------
Tue Nov 17 04:47:01 UTC 2020 - John Vandenberg <jayvdb@gmail.com>