pull
- Use bundled SLP patch now that upstream fixed it:
  * Remove rsync-3.2.5-slp.patch

- update to 3.2.6:
  * More path-cleaning improvements in the file-list validation code to avoid
    rejecting of valid args.
  * A file-list validation fix for a --files-from file that ends without a
    line-terminating character.
  * Added a safety check that prevents the sender from removing destination
    files when a local copy using --remove-source-files has some files that are
    shared between the sending & receiving hierarchies, including the case
    where the source dir & destination dir are identical.
  * Fixed a bug in the internal MD4 checksum code that could cause the digest
    to be sporadically incorrect (the openssl version was/is fine).
  * A minor tweak to rrsync added "copy-devices" to the list of known args, but
    left it disabled by default.

- Build SLE version with g++-11
  to work around nondeterministic g++-7 (boo#1193895)

- Migration to /usr/etc: Saving user changed configuration files
  in /etc and restoring them while an RPM update. 

- Add upstream patch rsync-3.2.5-slp.patch, as the one included in
  the released tarball doesn't fully apply.
- Drop patch rsync-CVE-2022-29154.patch, already included upstream.
- Update to 3.2.5
  * SECURITY FIXES:
    - Added some file-list safety checking that helps to ensure that a rogue
      sending rsync can't add unrequested top-level names and/or include recursive

• Files Changed
• Browse Source