From 9a0cdbdc2e881b414464a62c504f157d9fa00373017c0354af6078597235c8f5 Mon Sep 17 00:00:00 2001
From: Marcus Meissner <meissner@suse.com>
Date: Tue, 29 Mar 2022 11:21:30 +0000
Subject: [PATCH 1/2] Accepting request 965589 from
 home:polslinux:branches:security

- Update to 0.17.4:
  * fix CVE-2021-45417: precalculate buffer size in base64 functions

OBS-URL: https://build.opensuse.org/request/show/965589
OBS-URL: https://build.opensuse.org/package/show/security/aide?expand=0&rev=46
---
 aide-0.17.3.tar.gz     |  3 ---
 aide-0.17.3.tar.gz.asc | 14 --------------
 aide-0.17.4.tar.gz     |  3 +++
 aide-0.17.4.tar.gz.asc | 14 ++++++++++++++
 aide.changes           |  6 ++++++
 aide.spec              |  4 ++--
 6 files changed, 25 insertions(+), 19 deletions(-)
 delete mode 100644 aide-0.17.3.tar.gz
 delete mode 100644 aide-0.17.3.tar.gz.asc
 create mode 100644 aide-0.17.4.tar.gz
 create mode 100644 aide-0.17.4.tar.gz.asc

diff --git a/aide-0.17.3.tar.gz b/aide-0.17.3.tar.gz
deleted file mode 100644
index d23e916..0000000
--- a/aide-0.17.3.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:a2eb1883cafaad056fbe43ee1e8ae09fd36caa30a0bc8edfea5d47bd67c464f8
-size 330386
diff --git a/aide-0.17.3.tar.gz.asc b/aide-0.17.3.tar.gz.asc
deleted file mode 100644
index 2ade1e4..0000000
--- a/aide-0.17.3.tar.gz.asc
+++ /dev/null
@@ -1,14 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQGzBAABCgAdFiEEVJXNoXyawXqyOEGnGO6GOGAi71cFAmAkT9kACgkQGO6GOGAi
-71ejJwwAj8ZxtcD7+LCnc2zJD4niB3gy1Jl50ocISgCq0do1xE9Gehs9HYSasCQY
-61+kKM22/3Wr0Io/p3SrqoWm6zDQVchULK9YQsu1HEEU5KaePI3kvUKnJx1GCMVR
-G16G6fDJ6irRhG2x7QTmolnp0jxp30p9z/ZUIySxY1FGfW00px8kl/Y1qrlxcejU
-JEjV2aztW7ONTEmGIQF6iGPLxrF9CHP86FSX1WjtxF5f95wyAlVnD3/+CNew8ib4
-HXcCSbTbIgWIt+8/t2eq+dOEwaWI//h3RMkHnhDwxHcB+L5lXtkFlvr20w3eRKzG
-SQOdOnUzlTkX6qZcWZTYNFymfpMp0z1Lp1UmI4APtjkGomkpz/e/+nlJxUT3Ycvh
-Ed+FJCKDlOjKVAGIuaqT6pS2fo8qvhTWnsSBsxXXpi07BcYYx56JMj752ZzIxSGF
-EMjlfJa7gX/qceMHMEWSQG8O3w9FSGpIg0Ww5KFghXDaqbJy4mcsgnn62Zt4WS4C
-gVyhKy4h
-=VCaY
------END PGP SIGNATURE-----
diff --git a/aide-0.17.4.tar.gz b/aide-0.17.4.tar.gz
new file mode 100644
index 0000000..fc7748c
--- /dev/null
+++ b/aide-0.17.4.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:c81505246f3ffc2e76036d43a77212ae82895b5881d9b9e25c1361b1a9b7a846
+size 331783
diff --git a/aide-0.17.4.tar.gz.asc b/aide-0.17.4.tar.gz.asc
new file mode 100644
index 0000000..bf05fb3
--- /dev/null
+++ b/aide-0.17.4.tar.gz.asc
@@ -0,0 +1,14 @@
+-----BEGIN PGP SIGNATURE-----
+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+=K19s
+-----END PGP SIGNATURE-----
diff --git a/aide.changes b/aide.changes
index 36d7d53..e883060 100644
--- a/aide.changes
+++ b/aide.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Tue Mar 29 09:19:54 UTC 2022 - Paolo Stivanin <info@paolostivanin.com>
+
+- Update to 0.17.4:
+  * fix CVE-2021-45417: precalculate buffer size in base64 functions
+
 -------------------------------------------------------------------
 Thu Nov  4 10:51:25 UTC 2021 - Stefan Schubert <schubi@suse.de>
 
diff --git a/aide.spec b/aide.spec
index 56cd877..266a739 100644
--- a/aide.spec
+++ b/aide.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package aide
 #
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 Name:           aide
-Version:        0.17.3
+Version:        0.17.4
 Release:        0
 Summary:        Advanced Intrusion Detection Environment
 License:        GPL-2.0-or-later

From 6ae10dbd5e7390933f9089aafb2745545e0062e1319a476830bf16422331da0b Mon Sep 17 00:00:00 2001
From: Marcus Meissner <meissner@suse.com>
Date: Tue, 29 Mar 2022 11:22:19 +0000
Subject: [PATCH 2/2] * fix CVE-2021-45417: precalculate buffer size in base64
 functions (bsc#1194735)

OBS-URL: https://build.opensuse.org/package/show/security/aide?expand=0&rev=47
---
 aide.changes | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/aide.changes b/aide.changes
index e883060..8acb2ac 100644
--- a/aide.changes
+++ b/aide.changes
@@ -2,7 +2,7 @@
 Tue Mar 29 09:19:54 UTC 2022 - Paolo Stivanin <info@paolostivanin.com>
 
 - Update to 0.17.4:
-  * fix CVE-2021-45417: precalculate buffer size in base64 functions
+  * fix CVE-2021-45417: precalculate buffer size in base64 functions (bsc#1194735)
 
 -------------------------------------------------------------------
 Thu Nov  4 10:51:25 UTC 2021 - Stefan Schubert <schubi@suse.de>