From 79c2c346a9a4fe05ef8aace6e70dffb050b16d93 Mon Sep 17 00:00:00 2001 From: Lokesh Mandvekar Date: Thu, 24 Mar 2022 18:41:23 -0400 Subject: [PATCH] Bump to v1.7.0 Resolves: #2045880, #2067418 - Security fix for CVE-2022-21698 Skopeo is likely not impacted itself but still has an indirect dependency on the vulnerable code. Signed-off-by: Lokesh Mandvekar --- .gitignore | 1 + skopeo.spec | 6 +++--- sources | 2 +- 3 files changed, 5 insertions(+), 4 deletions(-) diff --git a/.gitignore b/.gitignore index 18b3c9c..1e58128 100644 --- a/.gitignore +++ b/.gitignore @@ -297,3 +297,4 @@ /v1.5.2.tar.gz /v1.6.0.tar.gz /v1.6.1.tar.gz +/v1.7.0.tar.gz diff --git a/skopeo.spec b/skopeo.spec index 81f3d12..e553698 100644 --- a/skopeo.spec +++ b/skopeo.spec @@ -21,7 +21,7 @@ %global import_path %{provider}.%{provider_tld}/%{project}/%{repo} %global git0 https://%{import_path} -%global built_tag v1.6.1 +%global built_tag v1.7.0 %global built_tag_strip %(b=%{built_tag}; echo ${b:1}) %global gen_version %(b=%{built_tag_strip}; echo ${b/-/"~"}) @@ -146,6 +146,6 @@ cp -pav systemtest/* %{buildroot}/%{_datadir}/%{name}/test/system/ %changelog #%%autochangelog -* Fri Mar 18 2022 Lokesh Mandvekar - 1:1.6.1 -- bump to v1.6.1 +* Thu Mar 24 2022 Lokesh Mandvekar - 1:1.7.0 +- bump to v1.7.0 - autospec misbehaves if the git logs ever used an unescaped rpm macro diff --git a/sources b/sources index ddc8ac8..668b3c5 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -SHA512 (v1.6.1.tar.gz) = 92ebe121ae41b2f192e52e24ae05a2f12fedf3483f8d342f6bdde9cb902a291e0297b187c614a64a5c1a62098c7dc59d8a5e5fd1f61b48e4030b163822b47a2b +SHA512 (v1.7.0.tar.gz) = 7d17f98e86677150fb2ddba9edae18d8b1ac8f06fba575268e6ba54c60f7b371b5e5a9eab1a4fe19da6c7e85eb79c1eef169ad2a39eff979130ee8d141bd8d6b