Overview Repositories Revisions Requests Users Attributes Meta

Revisions of cyrus-sasl

Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 1062130 from Factory Maintainer's avatar Factory Maintainer (factory-maintainer) (revision 67) 
Automatic submission by obs-autosubmit
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 963371 from Dirk Mueller's avatar Dirk Mueller (dirkmueller) (revision 64) 
- update to 2.1.28 (bsc#1196036, CVE-2022-24407):
  * https://www.cyrusimap.org/sasl/sasl/release-notes/2.1/index.html#new-in-2-1-28 
- drop cyrus-sasl-bug587.patch (upstream)

- update to 2.1.28 (bsc#1196036, CVE-2022-24407):
  * https://www.cyrusimap.org/sasl/sasl/release-notes/2.1/index.html#new-in-2-1-28 
- drop cyrus-sasl-bug587.patch (upstream)

- update to 2.1.28 (bsc#1196036, CVE-2022-24407):
  * https://www.cyrusimap.org/sasl/sasl/release-notes/2.1/index.html#new-in-2-1-28 
- drop cyrus-sasl-bug587.patch (upstream)

- update to 2.1.28 (bsc#1196036, CVE-2022-24407):
  * https://www.cyrusimap.org/sasl/sasl/release-notes/2.1/index.html#new-in-2-1-28 
- drop cyrus-sasl-bug587.patch (upstream)
Richard Brown's avatar Richard Brown (RBrownSUSE) accepted request 875610 from Peter Varkoly's avatar Peter Varkoly (varkoly) (revision 61) 
- Fix build: Do not build libsasl2-3 in the bdb package. This will
  not be linked to berkely db. libsasl2-3 is now defined as
  %BuildRequires and %Requires

  The packages cyrus-sasl and cyrus-sasl-saslauthd are built
  The packages cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are built
  The packages cyrus-sasl and cyrus-sasl-saslauthd are built
  The packages cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are built
- CVE-2020-8032: cyrus-sasl: Local privilege escalation to root
  due to insecure tmp file usage. (bsc#1180669)
  Use /var/adm/update-scripts/ instead of /tmp. Clean up temporary
  files.

  The packages cyrus-sasl and cyrus-sasl-saslauthd are built
  The packages cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are built
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 858433 from Peter Varkoly's avatar Peter Varkoly (varkoly) (revision 60) 
- Remove Berkeley DB dependency (JIRA#SLE-12190)
  The pacakges cyrus-sasl and cyrus-sasl-saslauthd are build
  without Berkely DB support. gdbm will be used instead of BDB.
  The pacakges cyrus-sasl-bdb and cyrus-sasl-saslauthd-bdb are build
  with Berkely DB support.
- Update to 2.1.27
  * Added support for OpenSSL 1.1
  * Added support for lmdb
  * Lots of build fixes
  * Treat SCRAM and DIGEST-MD5 as more secure than PLAIN when selecting client mech
  * DIGEST-MD5 plugin:
        Fixed memory leaks
        Fixed a segfault when looking for non-existent reauth cache
        Prevent client from going from step 3 back to step 2
        Allow cmusaslsecretDIGEST-MD5 property to be disabled
  * GSSAPI plugin:
        Added support for retrieving negotiated SSF
        Fixed GSS-SPNEGO to use flags negotiated by GSSAPI for SSF
        Properly compute maxbufsize AFTER security layers have been set
  * SCRAM plugin:
        Added support for SCRAM-SHA-256
  * LOGIN plugin:
        Don’t prompt client for password until requested by server
  * NTLM plugin:
        Fixed crash due to uninitialized HMAC context
- Replace references to /var/adm/fillup-templates with new
  %_fillupdir macro (boo#1069468)
- bsc#983938 `After=syslog.target` left-overs in several unit files
- added patches:
  fix_libpq-fe_include.diff  for fixing including libpq-fe.h
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 760381 from Tomáš Chvátal's avatar Tomáš Chvátal (scarabeus_iv) (revision 59) 
  (see CVE-2019-19906 bsc#1159635)
  (see CVE-2019-19906 bsc#1159635)
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 655748 from Marcus Meissner's avatar Marcus Meissner (msmeissn) (revision 57) 
- removed patches obsoleted by upstream changes:
  * shared_link_on_ppc.patch
  * fix-sasl-header.diff
  * cyrus-sasl-revert_gssapi_flags.patch
  * cyrus-sasl-issue-402.patch
  * cyrus-sasl-2.1.27-openssl-1.1.0.patch
- replaced cumlocal/ with m4/ in patches
- added fix_libpq-fe_include.diff for fixing including libpq-fe.h
- Update to 2.1.27
  * cache.c:
      Don’t use cached credentials if timeout has expired
      Fixed debug logging output
  * ipc_doors.c:
      Fixed potential DoS attack (from Oracle)
  * ipc_unix.c:
      Prevent premature closing of socket
  * auth_rimap.c:
      Added support LOGOUT command
      Added support for unsolicited CAPABILITY responses in LOGIN reply
      Properly detect end of responses (don’t needlessly wait)
      Properly handle backslash in passwords
  * auth_httpform:
      Fix off-by-one error in string termination
      Added support for 204 success response
  * auth_krb5.c:
      Added krb5_conv_krb4_instance option
      Added more verbose error logging

- removed patches obsoleted by upstream changes:
  * shared_link_on_ppc.patch
Dominique Leuenberger's avatar Dominique Leuenberger (dimstar_suse) accepted request 507330 from Peter Varkoly's avatar Peter Varkoly (varkoly) (revision 53) 
- added cyrus-sasl-issue-402.patch to fix
  SASL GSSAPI mechanism acceptor wrongly returns zero maxbufsize #402
  (see https://github.com/cyrusimap/cyrus-sasl/issues/402)

- bnc#1026825 saslauthd: :set_auth_mech : unknown authentication mechanism: kerberos5

  is neither sysconfig or init file
- bnc#1026825 saslauthd: :set_auth_mech : unknown authentication mechanism: kerberos5

- really use SASLAUTHD_PARAMS variable (bnc#938657)

  is neither sysconfig or init file
Displaying revisions 1 - 20 of 70
openSUSE Build Service is sponsored by
Places