Accepting request 1061853 from home:mnhauke

- Update to version 1.19.0
  Security:
  * Low. Stack overflow in ares_set_sortlist() which is used
    during c-ares initialization and typically provided by an
    administrator and not an end user.
  Changes:
  * Add ARES_OPT_HOSTS_FILE similar to ARES_OPT_RESOLVCONF for
    specifying a custom hosts file location.
  Bug fixes:
  * Fix memory leak in reading /etc/hosts when using localhost
    fallback.
  * Fix chain building c-ares when libresolv is already included by
    another project.
  * File lookup should not immediately abort as there may be other
    tries due to search criteria.
  * Asterisks should be allowed in host validation as CNAMEs may
    reference wildcard domains.
  * AutoTools build system referenced bad STDC_HEADERS macro.
  * Even if one address class returns a failure for
    ares_getaddrinfo() we should still return the results we have.
  * Fix ares_getaddrinfo() numerical address resolution with
    AF_UNSPEC
  * Fix tools and help information.
  * Various documentation fixes and cleanups.
  * Add include guards to ares_data.h
  * c-ares could try to exceed maximum number of iovec entries
    supported by system.
  * The RFC6761 6.3 states localhost subdomains must be offline too

OBS-URL: https://build.opensuse.org/request/show/1061853
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/c-ares?expand=0&rev=46

c-ares-1.18.1.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:1a7d52a8a84a9fbffb1be9133c0f6e17217d91ea5a6fa61f6b4729cda78ebbcf
-size 1560165

c-ares-1.18.1.tar.gz.asc

@@ -1,11 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQEzBAABCgAdFiEEJ+3q8i86vOtQ25oSXMkI/bceEsIFAmF47KIACgkQXMkI/bce
-EsKuvwf9Ef0HL1yhrA80nUSxQvgGNFhYQO1eEeH5LzV/UPGydOOSXuoVU+YZKjnr
-XUMCYcW8gCLACd4wBab/1gHBa9YeSVJpeJRdyrtIiAhiOPixmwSDCQMMixI526zd
-q40YK+M/YROJgYyp4E1t6rK5UK+sSwkKePXLLPUW5IXjj3vyCNz6TANINv3KoQqC
-mXVmUx0kr1U58fjzp0DB8jz1bixVllD7PpGPsR8pkFTCltVFZmKrvxRy4MHB7/Zs
-5JAElYhR/H+NKY1+2S9A4pKPfN/orGkVyeZlw9A/XdMF+Tjr2YT5FDPair6DQuvI
-Dp24pB2pYTFRfdjZj2b5l568UiujHQ==
-=mcGJ
------END PGP SIGNATURE-----

c-ares-1.19.0.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:bfceba37e23fd531293829002cac0401ef49a6dc55923f7f92236585b7ad1dd3
+size 1572210

c-ares-1.19.0.tar.gz.asc

@@ -0,0 +1,11 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEzBAABCgAdFiEEJ+3q8i86vOtQ25oSXMkI/bceEsIFAmPVjzMACgkQXMkI/bce
+EsKcWQf/UfT56Om5KDRDDrPkqwQ/jW3fIg2XCr3sI0UWYTeA8pSuMBIqCshVPc9k
+OWKDjS3rBHYRO2TVl5z/diAvzyEpjC2SpI1NS13i4lPvP3fDNHPpVyavIbCr9rGI
+u+njUCVpEtS1H8zdYMN54sp4NtN9Md0A2Tp3o+4OxMZfFFR7+XiXg2MgEx04pnHO
+5guPDrgzwGKM9s3pdyw0I8YbA25gDXrffFG5Ezs4sLsBOmhkUSbH9wuqubqHnBZ/
+1V4KKeeNLHR5fWthOEQ7yQ8zKac8DCsmW54t7wD7rdDVSMxSSS0i2oq4ZDqEJooA
+NMrQRjBlISiAghwE8sIp/fmeSCmJ4A==
+=q9oj
+-----END PGP SIGNATURE-----

c-ares.changes

@@ -1,3 +1,35 @@
+-------------------------------------------------------------------
+Sun Jan 29 09:31:00 UTC 2023 - Martin Hauke <mardnh@gmx.de>
+
+- Update to version 1.19.0
+  Security:
+  * Low. Stack overflow in ares_set_sortlist() which is used
+    during c-ares initialization and typically provided by an
+    administrator and not an end user.
+  Changes:
+  * Add ARES_OPT_HOSTS_FILE similar to ARES_OPT_RESOLVCONF for
+    specifying a custom hosts file location.
+  Bug fixes:
+  * Fix memory leak in reading /etc/hosts when using localhost
+    fallback.
+  * Fix chain building c-ares when libresolv is already included by
+    another project.
+  * File lookup should not immediately abort as there may be other
+    tries due to search criteria.
+  * Asterisks should be allowed in host validation as CNAMEs may
+    reference wildcard domains.
+  * AutoTools build system referenced bad STDC_HEADERS macro.
+  * Even if one address class returns a failure for
+    ares_getaddrinfo() we should still return the results we have.
+  * Fix ares_getaddrinfo() numerical address resolution with
+    AF_UNSPEC
+  * Fix tools and help information.
+  * Various documentation fixes and cleanups.
+  * Add include guards to ares_data.h
+  * c-ares could try to exceed maximum number of iovec entries
+    supported by system.
+  * The RFC6761 6.3 states localhost subdomains must be offline too
+
 -------------------------------------------------------------------
 Tue Dec  7 16:57:20 UTC 2021 - Adam Majer <adam.majer@suse.de>
 

c-ares.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package c-ares
 #
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2023 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,13 +18,11 @@
 
 %define sonum   2
 %define libname libcares%{sonum}
-
 %if 0%{!?cmake_build:1}
 %define cmake_build make -O VERBOSE=1 %{?_smp_mflags}
 %endif
-
 Name:           c-ares
-Version:        1.18.1
+Version:        1.19.0
 Release:        0
 Summary:        Library for asynchronous name resolves
 License:        MIT
@@ -37,9 +35,9 @@ Patch0:         0001-Use-RPM-compiler-options.patch
 Patch1:         disable-live-tests.patch
 BuildRequires:  cmake
 BuildRequires:  gcc-c++
-BuildRequires:  pkg-config
 # Needed for getservbyport_r function to work properly.
 BuildRequires:  netcfg
+BuildRequires:  pkgconfig
 
 %description
 c-ares is a C library that performs DNS requests and name resolves