new upstream version 3.20.0

Resolves: CVE-2022-1348 - potential DoS from unprivileged users via the state file

logrotate.spec

@@ -1,7 +1,7 @@
 Summary: Rotates, compresses, removes and mails system log files
 Name: logrotate
-Version: 3.19.0
+Version: 3.20.0
-Release: 3%{?dist}
+Release: 1%{?dist}
 License: GPLv2+
 URL: https://github.com/logrotate/logrotate
 Source0: https://github.com/logrotate/logrotate/releases/download/%{version}/logrotate-%{version}.tar.xz
@@ -115,6 +115,10 @@ fi
 %config(noreplace) %{_sysconfdir}/rwtab.d/logrotate
 
 %changelog
+* Wed May 25 2022 Kamil Dudka <kdudka@redhat.com> - 3.20.0-1
+- new upstream version 3.20.0, which fixes the following security issue:
+    CVE-2022-1348 - potential DoS from unprivileged users via the state file
+
 * Tue Mar 15 2022 Kamil Dudka <kdudka@redhat.com> - 3.19.0-3
 - verify GPG signature of upstream tarball when building the package
 

sources

@@ -1,2 +1,2 @@
-SHA512 (logrotate-3.19.0.tar.xz) = 7838e14a5b147f6e5edf6efdf743deeca39fdb563fc6f14aa010ac5b7bdef9c2bb8005415481d1b042b31975052d5ed6e75c4bcd7e378003427ebe5ec02a1f2c
+SHA512 (logrotate-3.20.0.tar.xz) = 2e2a6f29dfe8606202962a18b0262b6f56c6dbd3cacef10381ee2ae31ba1ba3166ad7f6b13e5a88dd7628b0048d8ab146951676be273dbe0bc6bfc4e8c67d65e
-SHA512 (logrotate-3.19.0.tar.xz.asc) = 94cc6f255170e78690ac2a034abae2a593053278a4acd77b44a7ae8b9fcb76d428881ee6f45f28ebb0c2290a83615fc1a143d0d896dce385a37376d460732ed7
+SHA512 (logrotate-3.20.0.tar.xz.asc) = 9bff8dbdbf0c241a00191dc24c8c218c4f52b1f0bffc698446e10ac98d1ac5d8f108dc6aeec0c4729e7bf171d0b32b97419d83f3b8f64ec71f71e7fc54b3b034