From 39a28e9088613e619b84c28893287aa5be428f5e9dea91d026eecf3b074d19fa Mon Sep 17 00:00:00 2001
From: Jan Engelhardt <jengelh@inai.de>
Date: Mon, 4 Apr 2016 19:01:00 +0000
Subject: [PATCH] Accepting request 384195 from
 home:kstreitova:branches:Archiving

- Update to new upstream release 0.3.1
  * This release fixes an integer underflow vulnerability in the
    code for doing LZH level 3 header decodes (TALOS-CAN-0095)
    [bnc#973790] [CVE-2016-2347]

OBS-URL: https://build.opensuse.org/request/show/384195
OBS-URL: https://build.opensuse.org/package/show/Archiving/lhasa?expand=0&rev=19
---
 lhasa-0.3.0.tar.gz     |  3 ---
 lhasa-0.3.0.tar.gz.asc | 17 -----------------
 lhasa-0.3.1.tar.gz     |  3 +++
 lhasa-0.3.1.tar.gz.asc | 17 +++++++++++++++++
 lhasa.changes          |  8 ++++++++
 lhasa.spec             |  4 ++--
 6 files changed, 30 insertions(+), 22 deletions(-)
 delete mode 100644 lhasa-0.3.0.tar.gz
 delete mode 100644 lhasa-0.3.0.tar.gz.asc
 create mode 100644 lhasa-0.3.1.tar.gz
 create mode 100644 lhasa-0.3.1.tar.gz.asc

diff --git a/lhasa-0.3.0.tar.gz b/lhasa-0.3.0.tar.gz
deleted file mode 100644
index af8d95a..0000000
--- a/lhasa-0.3.0.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b5c3666032330eb03ace733407500b02c31623166570da1ecff7c912c89941c3
-size 2921183
diff --git a/lhasa-0.3.0.tar.gz.asc b/lhasa-0.3.0.tar.gz.asc
deleted file mode 100644
index a932edc..0000000
--- a/lhasa-0.3.0.tar.gz.asc
+++ /dev/null
@@ -1,17 +0,0 @@
------BEGIN PGP SIGNATURE-----
-Comment: GPGTools - http://gpgtools.org
-
-iQIcBAABCAAGBQJVNI02AAoJEPbC7pwjNUNEwJ8P/10Py6hX1H/aQMTEt4FzR8j4
-52yCC10qI1NF/vGOAOkMg3aK4Jhafj1nDWyM7DSMQOGltxQmjcijEpXGAk9RUoji
-dCeKDpu9vbValYIP2DG4M5FkxV4fuVyNC+DhwS41h2JzzX/Bu82etwh4n1Md2ubT
-tpc8SF6cD3+CyAaqLGK2+g0kmsCAXbE2N0oMxLnKPpme3G1ISgYj40BRff70X2VV
-X0EqaUlJj5lQGYbzji00QfkInnM9ZKNakqd9f1AliaQMX26oD1lF7XZW9iDg+uyQ
-GgkCfQv+Ddse9JCsyeDI/nqpulXYNMN5c6O/oL95zr0qEcU36a8i8t1IAP7gRFYt
-HDfNTZU2/UMbIDzEhirmy/xkIgqQ0dRyaMb6iSiiwNosk+k/T784/Bfu7/TBgfA4
-0kKakaBnpQ3NPqQ1WdIlev4SZ/IhgP7MK6EbBuraXzYTuAycBLW9bmkd/VIv5na6
-1QlQpTC1o2s65ZeGRJoTFxoVDWaTCmulOgUuWTcM3U5Eai+soZWPp0L9MLUBHzQX
-KXhT+gzezWG+yQPdQQlxQU4aHkdRvEaYS3EYWBUMWcg77DMRLboykGDDdc4RuIPv
-fGcUZKlg0kFA+Q6byV+lHKj6u2oyRe2uiPzVwk/Pi2/ePJzA+mm06oMbnzCUvx+g
-h/AHUf+dsg9MbHzIPdTk
-=JDiE
------END PGP SIGNATURE-----
diff --git a/lhasa-0.3.1.tar.gz b/lhasa-0.3.1.tar.gz
new file mode 100644
index 0000000..e56f2cb
--- /dev/null
+++ b/lhasa-0.3.1.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3fb08e5f85a9b9dd023922896be9157d5fb5c0448424681810aaa2b0558a5f24
+size 2933084
diff --git a/lhasa-0.3.1.tar.gz.asc b/lhasa-0.3.1.tar.gz.asc
new file mode 100644
index 0000000..cd59fed
--- /dev/null
+++ b/lhasa-0.3.1.tar.gz.asc
@@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Comment: GPGTools - http://gpgtools.org
+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+=jno4
+-----END PGP SIGNATURE-----
diff --git a/lhasa.changes b/lhasa.changes
index e23077c..6631933 100644
--- a/lhasa.changes
+++ b/lhasa.changes
@@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Mon Apr  4 17:32:33 UTC 2016 - kstreitova@suse.com
+
+- Update to new upstream release 0.3.1
+  * This release fixes an integer underflow vulnerability in the
+    code for doing LZH level 3 header decodes (TALOS-CAN-0095)
+    [bnc#973790] [CVE-2016-2347]
+
 -------------------------------------------------------------------
 Sat Nov  7 09:38:52 UTC 2015 - jengelh@inai.de
 
diff --git a/lhasa.spec b/lhasa.spec
index 8a826e4..c07acd1 100644
--- a/lhasa.spec
+++ b/lhasa.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package lhasa
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,7 +18,7 @@
 
 Name:           lhasa
 %define lname	liblhasa0
-Version:        0.3.0
+Version:        0.3.1
 Release:        0
 Summary:        Program to unpack LHARC archives
 License:        ISC