Accepting request 622158 from network

- Update to version 1.4.1:
  Security:
    * CVE-2018-10895: Fix CSRF issue on the qute://settings page,
      leading to possible arbitrary code execution.
      See the related GitHub issue for details:
      https://github.com/qutebrowser/qutebrowser/issues/4060
  Fixed:
    * Rare crash when an error occurs in downloads.
    * Newlines are now stripped from the :version pastebin URL.
    * Worked around a Qt issue which redirects to a
      chrome-error:// page when trying to use U2F.
    * The link_pyqt.py script now works correctly with PyQt 5.11.

OBS-URL: https://build.opensuse.org/request/show/622158
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/qutebrowser?expand=0&rev=23

qutebrowser-1.4.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:ff76cba67fcbe95ba11cfd0749283b20ccb066cfb250dac16b7726fe237f3d99
-size 3550874

qutebrowser-1.4.0.tar.gz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCAAdFiEE4E5WAAJAG47w528KkW6wyP1VoHIFAls7fqEACgkQkW6wyP1V
-oHKP+A/+JsAz1IJMQJvQ5nSD0q0ndZbv3P5+kaH+9uzQilfMJWbMbaRPv+kmqmkn
-MjIL6e3PK+R8w3ChvArYM+PdLfc6e4dLmg/tijegm/rZYZIgRB26BnoofTi4fMkr
-fOyQyj7h/fgzzHB12kXa7QRxIVjD+r/DqbrONYSjDj2o2kS2zAO4+OquuKBfOeFR
-GdVFheEXSMr/2f3zty7KhQ1c7kpx7rx+cUDbKhMmd8cUbZvhZwwiI76r3AeRXF3c
-NHBKkPm7KuDYlV2GtFcsKqgox9e9F3TfGflJHu6zcZTF2AFkohoUneNeQO93uswv
-n4wO7k8+Rs/XzUY7ib+VUqp00oVPh0fdd7EjmB7QMmYexpATbjLI6fBb6jaRw5lb
-ROtf68v1nvUkuBZvliNqQ+bE7E39C50i2vAyjZWCqPnZY4HboFNH1SnS275J+Cmx
-gNC0OlZMbGIzERh3az0TNsO08bZfhVluTSl1n41xC4DUXSmC7jCYLkQINmNR0BSk
-Qyfo5ptAUKbcRtUklEdAp68h0Zf+KxUvaZhhcgYI0YnZy+ryaVT1STv4p8Vdk5zt
-Lbvkk4Q/g8z3ekSaJPbEj8ViuDNo6MwSBNn/6aZtoO0iw6QPUf9KKzyHSRhlBMB4
-TQ85KXefNlVQEzrX3DPF3wt8xbc3U7myaNh/x95oVHhYqHPnuBw=
-=GHTx
------END PGP SIGNATURE-----

qutebrowser-1.4.1.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a3f2de0e1178d9c00abd96dcc6fb5ef9a52cc2a99aa7da2073f785b4b6485f58
+size 3552660

qutebrowser-1.4.1.tar.gz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=kGDy
+-----END PGP SIGNATURE-----

qutebrowser.changes

@@ -1,3 +1,19 @@
+-------------------------------------------------------------------
+Wed Jul 11 17:46:59 UTC 2018 - 9+suse@cirno.systems
+
+- Update to version 1.4.1:
+  Security:
+    * CVE-2018-10895: Fix CSRF issue on the qute://settings page,
+      leading to possible arbitrary code execution.
+      See the related GitHub issue for details:
+      https://github.com/qutebrowser/qutebrowser/issues/4060
+  Fixed:
+    * Rare crash when an error occurs in downloads.
+    * Newlines are now stripped from the :version pastebin URL.
+    * Worked around a Qt issue which redirects to a
+      chrome-error:// page when trying to use U2F.
+    * The link_pyqt.py script now works correctly with PyQt 5.11.
+
 -------------------------------------------------------------------
 Tue Jul  3 16:29:33 UTC 2018 - 9+suse@cirno.systems
 

qutebrowser.spec

@@ -17,7 +17,7 @@
 
 
 Name:           qutebrowser
-Version:        1.4.0
+Version:        1.4.1
 Release:        0
 Summary:        Keyboard-driven vim-like browser based on Qt5
 License:        GPL-3.0-or-later