From 2f45f4d85c463d015280ada30d42999e968d857b936b0514be131131098c2772 Mon Sep 17 00:00:00 2001 From: Alexandre Vicenzi Date: Tue, 17 Jan 2023 10:58:45 +0000 Subject: [PATCH] Accepting request 1058863 from home:avicenzi:branches:devel:kubic Update to version 2.9.6 CVE-2022-41717 - bsc#1207208 OBS-URL: https://build.opensuse.org/request/show/1058863 OBS-URL: https://build.opensuse.org/package/show/devel:kubic/traefik?expand=0&rev=16 --- _service | 2 +- _servicedata | 2 +- traefik-2.9.5.tar.gz | 3 - traefik-2.9.5.webui.tar.gz | 3 - traefik-2.9.6.tar.gz | 3 + traefik-2.9.6.webui.tar.gz | 3 + traefik.changes | 139 +++++++++++++++---------------------- traefik.spec | 4 +- vendor.tar.gz | 4 +- 9 files changed, 69 insertions(+), 94 deletions(-) delete mode 100644 traefik-2.9.5.tar.gz delete mode 100644 traefik-2.9.5.webui.tar.gz create mode 100644 traefik-2.9.6.tar.gz create mode 100644 traefik-2.9.6.webui.tar.gz diff --git a/_service b/_service index a20f1b6..cd68bd1 100644 --- a/_service +++ b/_service @@ -3,7 +3,7 @@ https://github.com/traefik/traefik.git git .git - v2.9.5 + v2.9.6 @PARENT_TAG@ enable v(.*) diff --git a/_servicedata b/_servicedata index 45c8a2f..4940032 100644 --- a/_servicedata +++ b/_servicedata @@ -1,4 +1,4 @@ https://github.com/traefik/traefik.git - f6b7940b761abe0d16ee4b03588a0318481d86d8 \ No newline at end of file + d97d3a6726ad6e50110dd2ff2b552a8b17eeed55 \ No newline at end of file diff --git a/traefik-2.9.5.tar.gz b/traefik-2.9.5.tar.gz deleted file mode 100644 index 4c0dcf5..0000000 --- a/traefik-2.9.5.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:80e1374287cb5111295271b03b4d3fea1d0819a6f1aa07c201848e58765e7b9b -size 8835045 diff --git a/traefik-2.9.5.webui.tar.gz b/traefik-2.9.5.webui.tar.gz deleted file mode 100644 index 9dca4d4..0000000 --- a/traefik-2.9.5.webui.tar.gz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:5f230bb5f9f48b403ca8529a7cd2e6fcded445ea62154c92faf46a8388877a00 -size 1889104 diff --git a/traefik-2.9.6.tar.gz b/traefik-2.9.6.tar.gz new file mode 100644 index 0000000..4fb7986 --- /dev/null +++ b/traefik-2.9.6.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:6981903df81c0cffdcafae7b8f89d90be18e50bcde76c6ceba3b6f027ac01a85 +size 8828544 diff --git a/traefik-2.9.6.webui.tar.gz b/traefik-2.9.6.webui.tar.gz new file mode 100644 index 0000000..5da7d22 --- /dev/null +++ b/traefik-2.9.6.webui.tar.gz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:5a6a3d5110e52cf08de9a57011ad3e661669afdf1c962c58c0aa20d29791f872 +size 1886418 diff --git a/traefik.changes b/traefik.changes index 8071031..90750f8 100644 --- a/traefik.changes +++ b/traefik.changes @@ -1,89 +1,64 @@ +------------------------------------------------------------------- +Tue Jan 17 09:48:46 UTC 2023 - alexandre.vicenzi@suse.com + +- Update to version 2.9.6: + * CVEs + * CVE-2022-23469 + * CVE-2022-46153 + * CVE-2022-41717 + * Bug fixes + * [acme] Update go-acme/lego to v4.9.1 + * [k8s/crd] Support of allowEmptyServices in TraefikService + * [logs] Remove logs of the request + * [plugins] Increase the timeout on plugin download + * [server] Update golang.org/x/net (CVE-2022-41717, bsc#1207208) + * [tls] Handle broken TLS conf better + * [tracing] Update DataDog tracing dependency to v1.43.1 + * [webui] Add missing serialNumber passTLSClientCert option to middleware panel + ------------------------------------------------------------------- Mon Nov 28 12:10:58 UTC 2022 - alexandre.vicenzi@suse.com - Update to version 2.9.5: - * Prepare release v2.9.5 (#9513) - * Create a new capture instance for each incoming request - * docs(contributing): enhance wording of building-testing page - * docs(contributing): add link descriptions and update wording - * docs: update helm repository - * Removes the experimental tag on the Traefik Hub header - * Update vulcand/oxy to v1.4.2 - * chore: update github.com/opencontainers/runc - * Prepare release v2.9.4 - * Prepare release v2.9.3 - * Prepare release v2.9.2 - * Handle capture on redefined http.responseWriters - * Update Yaegi to v0.14.3 - * Remove side effect on default transport tests - * chore: bump github.com/BurntSushi/toml to v1.2.1 - * chore: update actions/cache to v3 - * Simplify dashboard rule example - * chore: update linter - * Fix links to gateway API guides - * Remove unnecessary linting exclusions - * Add v2.9 to release page - * fix: redis configuration type - * Remove raw cert escape in PassTLSClientCert middleware - * chore: update misspell - * ISSUE_TEMPLATE: clarify maintainers involvement in issues closing - * chore: update linter - * updated go-acme/lego to v4.9.0 - * prepare-release-v2.9.1 (#9410) - * Prepare release v2.9.0 (#9409) - * Prepare release v2.9.0-rc5 - * Prepare release v2.8.8 - * Fix autoDiscoverClusters option documentation for ECS provider - * Fix watch option description for Docker provider - * Update golang.org/x/net to latest version - * Improve documentation for publishedService and IP options - * Prepare release v2.8.7 - * Prepare release v2.9.0-rc4 - * Prepare release v2.8.6 - * fix: query parameter matching with equal - * Rework metrics overview page - * fix: acme panic - * Optimize websocket headers handling - * providers: simplify AddServer algorithms - * fix: UDP loadbalancer tags not being used with Consul Catalog - * Add documentation for ECS constraints option - * docs: fix link to RouteNamespaces - * Prepare release v2.9.0-rc3 - * Add a note on case insensitive regex matching - * Add documentation for json schema usage to validate config in the FAQ - * plugins: allow empty config - * Prepare release v2.9.0-rc2 - * chore: drop Windows arm v5/6/7 - * Prepare release v2.9.0-rc1 (#9334) - * Add support for ECS Anywhere - * fix: shellcheck - * Make the loadbalancers servers order random - * Quiet down TCP RST packet error on read operation - * Remove Pilot support - * ACME Default Certificate - * Prepare release v2.8.5 - * Update Yaegi to v0.14.2 - * docs: update Docker Swarm link - * Update valkeyrie to v1.0.0 - * Add traffic size metrics - * Add Datadog GlobalTags support - * docs: update Docker Swarm Load Balancer link - * Added resources for businesses - * Display default TLS options in the dashboard - * fix: IPv6 addr in square brackets - * Update deprecation notes about Pilot - * Use IPv6 address - * Change default TLS options for more security - * doc: add healthcheck timeout seconds to value - * Add a method option to the service Health Check - * Support Nomad canary deployment - * Add support for reaching containers using host networking on Podman - * Upgrade quic-go to v0.28.0 - * Support ALPN for TCP + TLS routers - * Add allowEmptyServices for Docker provider - * Move consulcatalog provider to only use health apis - * Start polling HTTP provider at the beginning - * Load plugin configuration field value from Kubernetes Secret + * Enhancements + * [acme,tls] ACME Default Certificate + * [consul,etcd,zk,kv,redis] Update valkeyrie to v1.0.0 + * [consulcatalog,nomad] Support Nomad canary deployment + * [consulcatalog] Move consulcatalog provider to only use health apis + * [docker] Add support for reaching containers using host networking on Podman + * [docker] Use IPv6 address + * [docker] Add allowEmptyServices for Docker provider + * [ecs] Add support for ECS Anywhere + * [healthcheck] Add a method option to the service Health Check + * [http3] Upgrade quic-go to v0.28.0 + * [http] Start polling HTTP provider at the beginning + * [k8s/crd,plugins] Load plugin configuration field value from Kubernetes Secret + * [logs,tcp] Quiet down TCP RST packet error on read operation + * [metrics] Add traffic size metrics + * [middleware,pilot] Remove Pilot support + * [rules,tcp] Support ALPN for TCP + TLS routers + * [tcp,service,udp] Make the loadbalancers servers order random + * [tls] Change default TLS options for more security + * [tracing] Add Datadog GlobalTags support + * Bug fixes + * [logs,middleware] Create a new capture instance for each incoming request + * [acme] Update go-acme/lego to v4.9.0 + * [kv,redis] Fix Redis configuration type + * [logs,middleware,metrics] Handle capture on redefined http.responseWriters + * [middleware,k8s] Remove raw cert escape in PassTLSClientCert middleware + * [plugins] Update Yaegi to v0.14.3 + * Remove side effect on default transport tests + * [acme] Fix ACME panic + * [server] Update golang.org/x/net to latest version + * [consulcatalog] Fix UDP loadbalancer tags not being used with Consul Catalog + * [docker,rancher,ecs,provider] Simplify AddServer algorithm + * [plugins] Allow empty plugin configuration + * [rules] Fix query parameter matching with equal + * [server] Optimize websocket headers handling + * [plugins] Update Yaegi to v0.14.2 + * [server] Fix IPv6 addr with square brackets + * [webui,api] Display default TLS options in the dashboard + ------------------------------------------------------------------- Wed Sep 07 10:11:41 UTC 2022 - alexandre.vicenzi@suse.com diff --git a/traefik.spec b/traefik.spec index 53c2805..4479b34 100644 --- a/traefik.spec +++ b/traefik.spec @@ -1,7 +1,7 @@ # # spec file for package traefik # -# Copyright (c) 2022 SUSE LLC +# Copyright (c) 2023 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -19,7 +19,7 @@ %define project github.com/traefik/traefik Name: traefik -Version: 2.9.5 +Version: 2.9.6 Release: 0 Summary: The Cloud Native Application Proxy License: MIT diff --git a/vendor.tar.gz b/vendor.tar.gz index 6795958..adfaf74 100644 --- a/vendor.tar.gz +++ b/vendor.tar.gz @@ -1,3 +1,3 @@ version https://git-lfs.github.com/spec/v1 -oid sha256:ef94216f9174be3f0760cde43da30ef8d1100df0134d7c2b5be8989ec5259f05 -size 21091409 +oid sha256:21292068e2ccfbe8089441d55a04f4ef441c7be1efb6240e48d2bc88c541e1c5 +size 27359615