import CS fence-agents-4.10.0-86.el9_6

2025-03-31 09:45:38 +00:00 · 2025-03-31 09:45:38 +00:00 · 7508f9e9a2
commit 7508f9e9a2
parent 1a39ce8340
3 changed files with 8 additions and 4 deletions
--- a/.fence-agents.metadata
+++ b/.fence-agents.metadata
@ -35,7 +35,7 @@ dc553afa7a3f23b92ee9ecd27d0b15153c0e9f75 SOURCES/googleapis_common_protos-1.53.0
 74ec77d2e2ef6b2ef8503e6e398faa6f3ba298ae SOURCES/httplib2-0.19.1-py3-none-any.whl
 08c0449533fc94462f78652dea209099754d9ee4 SOURCES/idna-3.3.tar.gz
 ea36ce1c780dd44f01225dca7f9995a6685a60cc SOURCES/isodate-0.6.1.tar.gz
-6399fa2cf3e71269d1b0e6b59434616fd4c9d142 SOURCES/jinja2-3.1.5.tar.gz
+41fdca818f95b8f0d35298eaab42f4e714dedf19 SOURCES/jinja2-3.1.6.tar.gz
 68904717c48e95adb47d815178fff8d80f39b2ab SOURCES/jmespath-0.7.1-py2.py3-none-any.whl
 d06a9547b1a87e9c51b0a7c708189d993f2e3d89 SOURCES/kubernetes-12.0.1.tar.gz
 346d0213ff6527435a2a04c07c21a80accd7fdf7 SOURCES/msal-1.31.1.tar.gz
--- a/.gitignore
+++ b/.gitignore
@ -35,7 +35,7 @@ SOURCES/googleapis_common_protos-1.53.0-py2.py3-none-any.whl
 SOURCES/httplib2-0.19.1-py3-none-any.whl
 SOURCES/idna-3.3.tar.gz
 SOURCES/isodate-0.6.1.tar.gz
-SOURCES/jinja2-3.1.5.tar.gz
+SOURCES/jinja2-3.1.6.tar.gz
 SOURCES/jmespath-0.7.1-py2.py3-none-any.whl
 SOURCES/kubernetes-12.0.1.tar.gz
 SOURCES/msal-1.31.1.tar.gz
--- a/SPECS/fence-agents.spec
+++ b/SPECS/fence-agents.spec
@ -38,7 +38,7 @@
 %global websocketclient 	websocket-client
 %global websocketclient_version 1.2.1
 %global jinja2			jinja2
-%global jinja2_version		3.1.5
+%global jinja2_version		3.1.6
 %global markupsafe		MarkupSafe
 %global markupsafe_version	2.0.1
 %global stringutils		string-utils
@ -57,7 +57,7 @@
 Name: fence-agents
 Summary: Set of unified programs capable of host isolation ("fencing")
 Version: 4.10.0
-Release: 85%{?alphatag:.%{alphatag}}%{?dist}
+Release: 86%{?alphatag:.%{alphatag}}%{?dist}
 License: GPLv2+ and LGPLv2+
 URL: https://github.com/ClusterLabs/fence-agents
 Source0: https://fedorahosted.org/releases/f/e/fence-agents/%{name}-%{version}.tar.gz
@ -1534,6 +1534,10 @@ are located on corosync cluster nodes.
 %endif

 %changelog
+* Tue Mar 11 2025 Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.10.0-86
+- bundled jinja2: fix CVE-2025-27516
+  Resolves: RHEL-82713
+
 * Fri Jan 31 2025 Oyvind Albrigtsen <oalbrigt@redhat.com> - 4.10.0-85
 - fence_azure_arm: use azure-identity instead of msrestazure, which has
  been deprecated