From f7a228ee6dd0bef57e0f7bf52b3165ae6c4c28730a654bc3d234d0dab17e1914 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= <adrian.schroeter@suse.com>
Date: Thu, 12 Mar 2015 18:39:17 +0000
Subject: [PATCH 1/2] fix

OBS-URL: https://build.opensuse.org/package/show/openSUSE:Tools/osc?expand=0&rev=194
---
 PKGBUILD           | 4 ++--
 _service           | 4 ++--
 debian.changelog   | 2 +-
 osc-0.150.1.tar.gz | 3 ---
 osc-0.151.0.tar.gz | 3 +++
 osc.changes        | 9 +++++++++
 osc.dsc            | 2 +-
 osc.spec           | 4 ++--
 8 files changed, 20 insertions(+), 11 deletions(-)
 delete mode 100644 osc-0.150.1.tar.gz
 create mode 100644 osc-0.151.0.tar.gz

diff --git a/PKGBUILD b/PKGBUILD
index b022ae1..879ec3a 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -1,5 +1,5 @@
 pkgname=osc
-pkgver=0.150.1
+pkgver=0.151.0
 pkgrel=0
 pkgdesc="Open Build Service client"
 arch=('i686' 'x86_64')
@@ -8,7 +8,7 @@ license=('GPL-2.0+' 'GPL-2.0')
 groups=('base-devel')
 depends=('python2' 'python2-m2crypto' 'urlgrabber')
 source=(osc-${pkgver}.tar.gz)
-md5sums=('24a5313d364d46a1a03c443c50bfbc2b')
+md5sums=('4b0a673f695b7512f5297f80eadc55cf')
 
 package() {
   msg "Installing osc ..."
diff --git a/_service b/_service
index 80c9b9a..ff228b1 100644
--- a/_service
+++ b/_service
@@ -1,7 +1,7 @@
 <services>
   <service name="tar_scm" mode="disabled">
-    <param name="version">0.150.1</param>
-    <param name="revision">0.150</param>
+    <param name="version">0.151.0</param>
+    <param name="revision">0.151.0</param>
     <param name="url">git://github.com/openSUSE/osc.git</param>
     <param name="scm">git</param>
   </service>
diff --git a/debian.changelog b/debian.changelog
index f22836c..4b602e2 100644
--- a/debian.changelog
+++ b/debian.changelog
@@ -1,4 +1,4 @@
-osc (0.150.1) unstable; urgency=low
+osc (0.151.0) unstable; urgency=low
   - Update to 0.135.0
 
  -- Adrian Schroeter <adrian@suse.de>  Wed, 28 Jun 2012 10:00:00 +0200
diff --git a/osc-0.150.1.tar.gz b/osc-0.150.1.tar.gz
deleted file mode 100644
index 181c46a..0000000
--- a/osc-0.150.1.tar.gz
+++ /dev/null
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:a6ebb67cfe2b878f51dfa3a725cda176d28bef586bc23e4255d35fc830823386
-size 329415
diff --git a/osc-0.151.0.tar.gz b/osc-0.151.0.tar.gz
new file mode 100644
index 0000000..037b7e4
--- /dev/null
+++ b/osc-0.151.0.tar.gz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e332f076d2e14bb4947198f205660ced85fbd777aa8402b2156123a5036d7b05
+size 330258
diff --git a/osc.changes b/osc.changes
index d51194a..b60302d 100644
--- a/osc.changes
+++ b/osc.changes
@@ -1,3 +1,12 @@
+-------------------------------------------------------------------
+Thu Mar 12 09:36:27 UTC 2015 - adrian@suse.de
+
+- 0.151.0
+  - fixed shell command injection via crafted _service files CVE-2015-0778 boo#901643
+  - fix times when data comes from OBS backend
+  - support updateing the link in target package for submit requests
+  - various minor bugfixes
+
 -------------------------------------------------------------------
 Tue Jan 13 15:53:11 UTC 2015 - adrian@suse.de
 
diff --git a/osc.dsc b/osc.dsc
index b037f83..f4efc4d 100644
--- a/osc.dsc
+++ b/osc.dsc
@@ -1,6 +1,6 @@
 Format: 1.0
 Source: osc
-Version: 0.150.1
+Version: 0.151.0
 Binary: osc
 Maintainer: Adrian Schroeter <adrian@suse.de>
 Architecture: any
diff --git a/osc.spec b/osc.spec
index 1ddcd88..790e457 100644
--- a/osc.spec
+++ b/osc.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package osc
 #
-# Copyright (c) 2015 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 Name:           osc
-Version:        0.150.1
+Version:        0.151.0
 Release:        0
 Summary:        openSUSE Build Service Commander
 License:        GPL-2.0+

From a2f01d92f8efd34a381775b1a0ba3de4edbb00b915eff3af3126051bd7cb9583 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Adrian=20Schr=C3=B6ter?= <adrian.schroeter@suse.com>
Date: Thu, 12 Mar 2015 18:52:07 +0000
Subject: [PATCH 2/2] go

OBS-URL: https://build.opensuse.org/package/show/openSUSE:Tools/osc?expand=0&rev=195
---
 PKGBUILD           | 2 +-
 osc-0.151.0.tar.gz | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/PKGBUILD b/PKGBUILD
index 879ec3a..1f18d21 100644
--- a/PKGBUILD
+++ b/PKGBUILD
@@ -8,7 +8,7 @@ license=('GPL-2.0+' 'GPL-2.0')
 groups=('base-devel')
 depends=('python2' 'python2-m2crypto' 'urlgrabber')
 source=(osc-${pkgver}.tar.gz)
-md5sums=('4b0a673f695b7512f5297f80eadc55cf')
+md5sums=('877b9e4fc2c55b8950d3e642241ff6aa')
 
 package() {
   msg "Installing osc ..."
diff --git a/osc-0.151.0.tar.gz b/osc-0.151.0.tar.gz
index 037b7e4..40f3d6f 100644
--- a/osc-0.151.0.tar.gz
+++ b/osc-0.151.0.tar.gz
@@ -1,3 +1,3 @@
 version https://git-lfs.github.com/spec/v1
-oid sha256:e332f076d2e14bb4947198f205660ced85fbd777aa8402b2156123a5036d7b05
-size 330258
+oid sha256:0c941d956aca0cd342dd12d4885943f5383684ad4f0c8af6e14210672c4716c7
+size 330115