Overview
Request 816877 declined
- Protocol v2 in_vain fixes (bsc#1170741, bsc#1170939).
Dropped: Revert-fetch-default-to-protocol-version-2.patch
Added: 0001-fetch-pack-return-enum-from-process_acks.patch
0002-fetch-pack-in-protocol-v2-in_vain-only-after-ACK.patch
0003-fetch-pack-in-protocol-v2-reset-in_vain-upon-ACK.patch
- Add back SuSEfirewall2 support needed for SLE12 (bsc#1170302).
- With recent switch to protocol v2 people are reporting fetches transferring
unreasonable amount of data. Upstream proposes switching the protocol back
until the issue is properly diagnosed. The regression is problematic for
people with lower network connection speed (bsc#1170741).
Added: Revert-fetch-default-to-protocol-version-2.patch
- git 2.26.2:
* CVE-2020-11008: Specially crafted URLs may have tricked the
credentials helper to providing credential information that
is not appropriate for the protocol in use and host being
contacted (boo#1169936)
- Submit to SLE15 / resubmit to Factory (bsc#1169786, jsc#SLE-12396, bsc#1149792)
- Fix git-daemon not starting after conversion from sysvinit to systemd service
(bsc#1169605).
- git 2.26.1:
* CVE-2020-5260: Specially crafted URLs with newline characters
could have been used to make the Git client to send credential
information for a wrong host to the attacker's site boo#1168930
- Created by msmeissn
- In state declined
- Open review for factory-staging
- Open review for origin-reviewers
Request History
msmeissn created request
- Protocol v2 in_vain fixes (bsc#1170741, bsc#1170939).
Dropped: Revert-fetch-default-to-protocol-version-2.patch
Added: 0001-fetch-pack-return-enum-from-process_acks.patch
0002-fetch-pack-in-protocol-v2-in_vain-only-after-ACK.patch
0003-fetch-pack-in-protocol-v2-reset-in_vain-upon-ACK.patch
- Add back SuSEfirewall2 support needed for SLE12 (bsc#1170302).
- With recent switch to protocol v2 people are reporting fetches transferring
unreasonable amount of data. Upstream proposes switching the protocol back
until the issue is properly diagnosed. The regression is problematic for
people with lower network connection speed (bsc#1170741).
Added: Revert-fetch-default-to-protocol-version-2.patch
- git 2.26.2:
* CVE-2020-11008: Specially crafted URLs may have tricked the
credentials helper to providing credential information that
is not appropriate for the protocol in use and host being
contacted (boo#1169936)
- Submit to SLE15 / resubmit to Factory (bsc#1169786, jsc#SLE-12396, bsc#1149792)
- Fix git-daemon not starting after conversion from sysvinit to systemd service
(bsc#1169605).
- git 2.26.1:
* CVE-2020-5260: Specially crafted URLs with newline characters
could have been used to make the Git client to send credential
information for a wrong host to the attacker's site boo#1168930
licensedigger accepted review
ok
factory-auto accepted review
Check script succeeded
origin-manager added origin-reviewers as a reviewer
Changing to a higher priority origin, but unknown direction.
origin: SUSE:SLE-15-SP2:GA
origin_old: SUSE:SLE-15-SP2:GA~
origin-manager accepted review
origin: SUSE:SLE-15-SP2:GA
origin_old: SUSE:SLE-15-SP2:GA~
lkocman-factory declined request
Hello openSUSE contributor
this submission didn't make it to the openSUSE Leap 15.2 Gold Master
Please submit it as a maintenance update instead.
https://en.opensuse.org/openSUSE:Maintenance_update_process
Thank you for your understanding
openSUSE Release team