Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15-SP2:GA
xmltooling
xmltooling.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File xmltooling.changes of Package xmltooling
------------------------------------------------------------------- Wed Jun 21 11:07:14 UTC 2023 - Danilo Spinella <danilo.spinella@suse.com> - Fix server-side request forgery (SSRF) vulnerability [bsc#1212359] [CVE-2023-36661] * bsc1212359.patch ------------------------------------------------------------------- Fri Jun 5 16:38:00 UTC 2020 - Kristyna Streitova <kstreitova@suse.com> - add xmltooling-1.6.4-fix_build_openssl_111.patch to fix build with openSSL 1.1.1 [bsc#1172351] ------------------------------------------------------------------- Thu Mar 21 13:15:46 UTC 2019 - Kristýna Streitová <kstreitova@suse.com> - add xmltooling-1.6.4-CVE-2019-9628.patch to fix a security bug where XML parser class fails to trap exceptions on malformed XML declaration [bsc#1129537] [CVE-2019-9628] ------------------------------------------------------------------- Wed Feb 28 11:13:56 UTC 2018 - kstreitova@suse.com - update to 1.6.4 * [CPPXT-128] - Additional nodes can be added to XML without breaking signature [bsc#1083247] [CVE-2018-0489] ------------------------------------------------------------------- Mon Jan 15 12:00:19 UTC 2018 - kstreitova@suse.com - update to 1.6.3 * [CPPXT-127] - DTD-defined entities can be added to XML without breaking signature [CVE-2018-0486], [bsc#1075975] - 'Url' -> 'URL' ------------------------------------------------------------------- Wed Nov 15 13:05:17 UTC 2017 - kstreitova@suse.com - update to 1.6.2 * 1.6.2: [CPPXT-124] - Regression caused by CPPXT-116 * 1.6.1: [CPPXT-107] - Issues compiling with Boost and VC15 ------------------------------------------------------------------- Thu Nov 9 16:43:11 UTC 2017 - vcizek@suse.com - add upstream patches to support building with openssl 1.1 (bsc#1067419) * 0023-CPPXT-110-OpenSSL-1.1-removes-BIO_s_file_internal.patch * 0011-CPPXT-110-Clean-up-some-collateral-damage-from-previ.patch * 0005-CPPXT-110-OpenSSL-1.1-removes-BIO_s_file_internal.patch * 0026-CPPXT-110-OpenSSL-1.1-library-names-have-changes.patch * 0027-Commit-a-xmltoolingtest.vcxproj.user.patch * 0010-CPPXT-110-Start-to-add-tests-to-exercise-XSEC-paths-.patch * 0003-CPPXT-110-OpenSSL-1.1-makes-DSA-opaque.patch * 0002-CPPXT-110-Add-new-OpenSSL-support-files-to-Unix-buil.patch * 0012-CPPXT-110-Add-test-path-for-RSA-loadXXXBigNums.patch * 0009-CPPXT-110-Start-to-add-tests-to-exercise-XSEC-paths-.patch * 0020-CPPXT-110-Add-new-OpenSSL-support-files-to-Unix-buil.patch * 0024-CPPXT-110-OpenSSL-1.1-internalizes-locking.patch * 0006-CPPXT-110-OpenSSL-1.1-internalizes-locking.patch * 0028-CPPXT-110-OpenSSL-1.1-OpenSSL1.1-changes-to-newly-in.patch * 0025-CPPXT-110-OpenSSL-1.1-Fix-some-signatures-and-names.patch * 0016-CPPXT-110-Round-trip-verify-test-for-OpenSSLCryptoKe.patch * 0021-CPPXT-110-OpenSSL-1.1-makes-DSA-opaque.patch * 0007-Unwind-previous.patch * 0013-CPPXT-110-Used-Named-curves-for-EC-testing.patch * 0030-CPPXT-110-OpenSSL-1.1-New-build-mechanisms.patch * 0031-Missed-file-for-OpenSSL1.1-support.patch * 0029-CPPXT-110-OpenSSL-1.1-Cleanup-tests.patch * 0022-CPPXT-110-OpenSSL-1.1-makes-EVP_PKEY-opaque.patch * 0017-CPPXT-110-Inverted-parameters-to-TSM_ASSERT-in-DSA-t.patch * 0008-CPPXT-110-Checkin-prototypical-vcxproj.user-file-for.patch * 0019-CPPXT-110-OpenSSL-1.1-makes-X509_STORE_CTX-and-X509_.patch * 0001-CPPXT-110-OpenSSL-1.1-makes-X509_STORE_CTX-and-X509_.patch * 0018-CPPXT-110-Test-for-OpenSSL-part-of-ExplicitKeyTrustE.patch * 0004-CPPXT-110-OpenSSL-1.1-makes-EVP_PKEY-opaque.patch * 0015-CPPXT-110-test-for-code-changes-to-OpenSSLCryptoKeyE.patch * 0014-CPPXT-110-test-for-code-changes-to-OpenSSLCryptoKeyD.patch ------------------------------------------------------------------- Thu Sep 21 14:43:12 UTC 2017 - kstreitova@suse.com - update to 1.6.0 * [CPPXT-108] - Potential nullpointer dereference in InlineCredential::getKeyInfo * [CPPXT-109] - XSECCryptoX509CRL::loadX509CRLPEM() can read past unterminated buffer - update soname for libxmltooling library from 6 to 7 - add version for boost-devel buildrequires - add %{opensaml_version} macro - run spec-cleaner ------------------------------------------------------------------- Sat Feb 11 22:17:24 UTC 2017 - jengelh@inai.de - Update RPM groups ------------------------------------------------------------------- Thu Feb 2 15:42:04 UTC 2017 - adam.majer@suse.de - use individual libboost-*-devel packages instead of boost-devel ------------------------------------------------------------------- Mon Sep 7 14:39:36 UTC 2015 - kstreitova@suse.com - update to xmltooling 1.5.6 * [CPPXT-105] - PKIX revocation checking calls OpenSSL's X509_verify_cert in an unsupported way (breaks with OpenSSL 1.0.1p/1.0.2d and later) ------------------------------------------------------------------- Wed Aug 5 18:04:11 UTC 2015 - mpluskal@suse.com - Add gpg signature ------------------------------------------------------------------- Thu Jul 30 09:40:32 UTC 2015 - kstreitova@suse.com - adjust Summary in the specfile - remove unused conditionals ------------------------------------------------------------------- Mon Jul 27 08:33:52 UTC 2015 - kstreitova@suse.com - use spec-cleaner - package cleaning - add xmltooling-1.5.5-doxygen_timestamp.patch to remove timestamps in a documentation generated by Doxygen and avoid RPMLINT warnings (file-contains-date-and-time). ------------------------------------------------------------------- Fri Jul 24 15:15:45 UTC 2015 - kstreitova@suse.com - initial revision
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor