Accepting request 384204 from Archiving

- Update to new upstream release 0.3.1 * This release fixes an integer underflow vulnerability in the code for doing LZH level 3 header decodes (TALOS-CAN-0095) [bnc#973790] [CVE-2016-2347] (forwarded request 384195 from kstreitova) OBS-URL: https://build.opensuse.org/request/show/384204 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/lhasa?expand=0&rev=13
2016-04-06 09:52:41 +00:00 · 2016-04-06 09:52:41 +00:00 · 71101a7f42
commit 71101a7f42
parent 9e4853e352 39a28e9088
6 changed files with 30 additions and 22 deletions
--- a/lhasa-0.3.0.tar.gz
+++ b/lhasa-0.3.0.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b5c3666032330eb03ace733407500b02c31623166570da1ecff7c912c89941c3
-size 2921183
--- a/lhasa-0.3.0.tar.gz.asc
+++ b/lhasa-0.3.0.tar.gz.asc
@ -1,17 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-Comment: GPGTools - http://gpgtools.org
-
-iQIcBAABCAAGBQJVNI02AAoJEPbC7pwjNUNEwJ8P/10Py6hX1H/aQMTEt4FzR8j4
-52yCC10qI1NF/vGOAOkMg3aK4Jhafj1nDWyM7DSMQOGltxQmjcijEpXGAk9RUoji
-dCeKDpu9vbValYIP2DG4M5FkxV4fuVyNC+DhwS41h2JzzX/Bu82etwh4n1Md2ubT
-tpc8SF6cD3+CyAaqLGK2+g0kmsCAXbE2N0oMxLnKPpme3G1ISgYj40BRff70X2VV
-X0EqaUlJj5lQGYbzji00QfkInnM9ZKNakqd9f1AliaQMX26oD1lF7XZW9iDg+uyQ
-GgkCfQv+Ddse9JCsyeDI/nqpulXYNMN5c6O/oL95zr0qEcU36a8i8t1IAP7gRFYt
-HDfNTZU2/UMbIDzEhirmy/xkIgqQ0dRyaMb6iSiiwNosk+k/T784/Bfu7/TBgfA4
-0kKakaBnpQ3NPqQ1WdIlev4SZ/IhgP7MK6EbBuraXzYTuAycBLW9bmkd/VIv5na6
-1QlQpTC1o2s65ZeGRJoTFxoVDWaTCmulOgUuWTcM3U5Eai+soZWPp0L9MLUBHzQX
-KXhT+gzezWG+yQPdQQlxQU4aHkdRvEaYS3EYWBUMWcg77DMRLboykGDDdc4RuIPv
-fGcUZKlg0kFA+Q6byV+lHKj6u2oyRe2uiPzVwk/Pi2/ePJzA+mm06oMbnzCUvx+g
-h/AHUf+dsg9MbHzIPdTk
-=JDiE
-----END PGP SIGNATURE-----
--- a/lhasa-0.3.1.tar.gz
+++ b/lhasa-0.3.1.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3fb08e5f85a9b9dd023922896be9157d5fb5c0448424681810aaa2b0558a5f24
+size 2933084
--- a/lhasa-0.3.1.tar.gz.asc
+++ b/lhasa-0.3.1.tar.gz.asc
@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+Comment: GPGTools - http://gpgtools.org
+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+=jno4
+-----END PGP SIGNATURE-----
--- a/lhasa.changes
+++ b/lhasa.changes
@ -1,3 +1,11 @@
+-------------------------------------------------------------------
+Mon Apr  4 17:32:33 UTC 2016 - kstreitova@suse.com
+
+- Update to new upstream release 0.3.1
+  * This release fixes an integer underflow vulnerability in the
+    code for doing LZH level 3 header decodes (TALOS-CAN-0095)
+    [bnc#973790] [CVE-2016-2347]
+
 -------------------------------------------------------------------
 Sat Nov  7 09:38:52 UTC 2015 - jengelh@inai.de

--- a/lhasa.spec
+++ b/lhasa.spec
@ -1,7 +1,7 @@
 #
 # spec file for package lhasa
 #
-# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2016 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -18,7 +18,7 @@

 Name:           lhasa
 %define lname	liblhasa0
-Version:        0.3.0
+Version:        0.3.1
 Release:        0
 Summary:        Program to unpack LHARC archives
 License:        ISC