libmunge2-0.5.15-150600.25.6.1<>,7ip9|7o,>}&PX䞖 Mq@tUhcG#xm<'7<63(xn"1<%<ا~l158yȾ^ij*fGsU XGM)C!X?!Hd  ! H  0MS\d h l t   T   (89p:S> @F+G@HHIPXTYd\]^bcudeflu v w x y z      !!DClibmunge20.5.15150600.25.6.1Libraries for applications using MUNGEA shared library for applications using the MUNGE authentication service.ih01-ch5apSUSE Linux Enterprise 15SUSE LLC GPL-3.0-or-later AND LGPL-3.0-or-laterhttps://www.suse.com/System/Librarieshttps://dun.github.io/munge/linuxx86_64piid7cde477066e5de0d961b4bba4d79bdd2fd6f2cb05faaab763e135de4c2d705alibmunge.so.2.0.0rootrootrootrootmunge-0.5.15-150600.25.6.1.src.rpmlibmunge.so.2()(64bit)libmunge2libmunge2(x86-64)munge-libs@@@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6()(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.33)(64bit)libc.so.6(GLIBC_2.38)(64bit)libc.so.6(GLIBC_2.4)(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3i@h@by@aaim@a^@aV@^^y@^8 @^r]µ[.[(@[$ZZ'Z@XXXk@Xk@XN@XIK@XAb@X`@X@X@X@Xeich@suse.comeich@suse.comnmoreychaisemartin@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comaguerrero@suse.comdimstar@opensuse.orgeich@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comcgoll@suse.comeich@suse.comrbrown@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comvetter@physik.uni-wuerzburg.devetter@physik.uni-wuerzburg.deeich@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.comeich@suse.com- Fix buffer overflow in message unpacking that allows local users to leak the MUNGE cryptographic key and forge arbitrary credentials (bsc#1257651, CVE-2026-25506) Added: * munge-0001-oob-read-fix.patch * munge-0002-buffer-overflow-fix.patch.- Make logrotate work on munge log as user munge. This prevents a local privilege escalation (bsc#1246088).- Update to version 0.5.15: - Added support for OpenSSL 3.0. - Fixed "make install" conflict with systemd RuntimeDirectory. - Fixed big-endian bug causing failures on s390x. - Fixed systemd service unit conf to wait until network is online. - Fixed excessive logging of "suspended new connections". - Fixed gcry_check_version(GCRYPT_VERSION) bug reported by Debian. - Fixed sending repeated SIGTERMs to signal stop. (dbe6dcc) - Fixed failure to clean up socket or create seedfile having relative path. - Fixed test suite to clean up errant processes from failed tests. - Re-enable build for s390*- Disable s390*-builds. On s390x the test suite fails.- Typo fix to sysuser file.- Restore tmpfiles.d handling which was deleted for no good reason. - Make sure the product specific run-directory is used which is taken from the RPM macro %_rundir (bsc#1191336).- Utilize sysuser infrastructure to set user/group munge.- Use 'mungekey' to generate munge key, Change permission of 'mungekey' from 0400 to 0600 - Remove munge key on uninstall - Add a bit of QA by running 'make check' - Consolidate 'rundir'-handling: * fixed the location using %_rundir * %ghost-ed %_rundir/munge - Pinned down configuration by adding more configure options - Consolidated the file attribute setting - Consolidated handline of /etc/sysconfig/munge - Remove tmpfiles.d/munge.conf: the runtime directory is created by systemd itself.- Update to version 0.5.14, most relevant changes: * Added mungekey command for key generation via HKDF. * Added negative caching of user lookups for processing supplementary groups. * Added munged --origin and --stop cmdline opt. * Added unmunge --numeric cmdline opt. * Added several new configuration options. * Added systemd EnvironmentFile to set sysconfig options. * Added systemd RuntimeDirectory to replace tmpfiles.d conf. * Changed logging of non-existent users to only log once for a given user. * Changed default name of munged seedfile. * Fixed pidfile corruption when starting new daemon while socket still in use. * Fixed munged signal handlers to be async-signal-safe. * Fixed "Logging stopped due to error" behavior for transient errors. * Fixed misleading "Lockfile not found" error message. * Fixed conversion-specifier / argument mismatch in error message. * Removed autotools-generated files from version control. - Update patch: * Make-SUSE-specific-adjustments.patch - Spec cleanup - Update package description to match upstream's - Add logrotate file and Requires in logrotate - Run bootstrap to create autotools files.- BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut through the -mini flavors.- Add Provides for 'munge-libs' to package libmunge for compatibility with the upstream spec file (bsc#1160075).- Fix possible LPE during installation (bsc#1155075, CVE-2019-3691). - Remove special %license treatment for SLE-12 as this has been fixed.- Add coreutils to the Requires(post/postun).- Handle license file using %license where applicable.- Package sysconfig.munge only on non-systemd systems. - Fix group settings for non-systemd systems in spec file: group 'munge' is used there as well. - Some macro cleanup.- added README.SUSE file (bsc#1085665)- Update to 0.5.13: * Added support for OpenSSL 1.1.0. * Added support for UID/GID values >= 2^31. * Added support for getentropy() and getrandom(). * Added --trusted-group cmdline opt to munged. * Added --log-file and --seed-file cmdline opts to munged. * Changed default MAC algorithm to SHA-256. * Fixed autoconf installation directory variable substitution. * Fixed all gcc, clang, and valgrind warnings. * Improved resilience and unpredictability of PRNG. * Improved hash table performance. * Removed libmissing dependency from libmunge.- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- Fix BuildRequires for zlib-devel.- Replace group/user add macros with function calls. - Make sure we update the user/group of files/directories correctly when updating - in case they have changed.- Use user 'munge', group 'munge' for systemd and user 'daemon', group 'root' for non-systemd by setting the appropriate macros '%munge_u' and '%munge_g'. - Create user/group munge if they don't exist. - Add 'BuildRequires: libbz2-devel' - Fix typo.- Add 'Recommends: munge' to libmunge: This library requires the munge service to run on the local system to be useful.- Fix typo in init script (SLE11) introduced by last change - Fix rpm preun/postun-scripts (SLE11) - Fix empty /etc/sysconfig/munge after update (SLE11)- change USER from munge to daemon for non-systemd OSes- Switch to user 'munge', group 'munge'.- Adding to SLE12 SP2 FATE#321706.- Setting 'download_files' service to mode='localonly' and adding source tarball. (Required for Factory).- Add baselib.conf as Source to spec file. - Remove tar ball of version 0.5.11.- version 0.5.12 * Changed project homepage to . * Changed RPM specfile from sysvinit to systemd. (#33) * Added --max-ttl cmdline opt to munged. (#28) * Added --pid-file cmdline opt to munged. (#41)- Add source service to download sources. - Remove static libraries: If they are needed, they should be packaged separately. - Add a %define have_systemd to clearer identify systemd relevant parts. - Add define of lversion insead of hard conding this. - remove README.MULTILIB: Package is built already. - Add BuildRequires: for bzip2-devel, systemd-rpm-macros. - Spell out files under %{_sysconfdir}/ - Fix symlink to %{_sbindir}/rcmunge for initV and systemd./sbin/ldconfig/sbin/ldconfigh01-ch5a 17707142900.5.15-150600.25.6.10.5.15-150600.25.6.10.5.15libmunge.so.2libmunge.so.2.0.0/usr/lib64/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:42629/SUSE_SLE-15-SP6_Update/05d11a5f3dedff66282fc7d0dfa4d3a3-munge.SUSE_SLE-15-SP6_Updatedrpmxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=3ae9ec3372d1ef04b4abe9ee472306a6f7c638e6, strippedPRRRRRRR? 2͟n4mungeutf-88d4864df94e95a51adb12267e5ef676a2f7807303deedd9aa7b357c216ac0fcc?7zXZ !t/ +]"k%dMB O(05ߍ36 GyVPh߀9tQ$1UĝWr `9]E6a% # UINǾֵd!2GB8v~ʌR>հC;ʜ:)7#uN?uSlޤ'|+Ďhl=*/~ZU@(dmuLaG8,X X$l D]:՜AK5-ړ?~Zb td)"0U%%VOShgJ=2س@˭`>Ld4NȆU 5/ *Eۮ6L,ݻ~"IjTF FnFM?Zn8X(T*@eާ1 ,y^")zO3)gо.;Ȧ 輮;s\ߝ8ʥ=LC5\4H<(bꏌrEzG7i zo')ೕPno®CMG΋a6^?)g'{rd@hڈ+.൑r*En/٨Og Ckxv4a1?Kb`vô 0K ]"ƣ!wV*$19ˆ & Zf YGKv+^vXi9x,Xwy< %9!%#8 eJ]WzTgqO CSx7TN ƤlUU.윃8-!).jn(~tC+/rz؜˃$ 6tUgh%)hl#_\#>qt􇜎߰c6VV6|#36.WuLEHnӀEl ӄnzXJhlm "R) "2m@ʹG0=ͨ79SbU{e4V^I7V=ws5=iH@ƨEl,w94LQܤzPMsv;3I3P.4j!^ n-kug3, wŁ~?bL^cԭjP3kx[s5 藅S^ bqjq?E+$? _+_^OfC7zܨKuCA **=ʗjo61gQ&-kzԃfuu*@ B+BOZ>(/W n>v {zYF]9OTy֞k9(Q죿F] &~X[MUSz Z~Ң&m7jn- w mNYRRO*Hո !,~dL1Qw0IHaSX`!㖪MP:9iBE_jx :]19_#i-Tw9R~F^,+ wX{r)K4>=}31{ʦ ܔL"HS>N5ʊroo(5 C!y+Q}]Y7="U5|#Xax ۸F=MbGYQAܝo!8te/H LňC:z.nq>ԔPr^*Ijp"pT eL.RAa;<)vGN )=Mn~=E:>:]*ۖ@ۄ.T{dV*`Շ<xE0g1g{t‰]ięꀙ$CYI ce f?w\гf0'l#oQÏQSu̓I\v.q:-Ɏ [5._,!ЮyOZK.T7R8JcطocCp.Ħ{“b M]ufg4L\T||m-,[VFX:'fP䀩[p~&|QE9Sy༌( jO`@p+LgI K kRn2TC|sg1瀵N!JF> Q0$%/ܮL!K0%b\нCr&|;|_|!FuXê#ԋ7e,`5O>GIDQ9,YV3Dop?P tr+ O7"$ cjCsn!Q/lۂczi_QO0ۍ"Xmg|Cx*EўI͐r=4^pFHƸ7/U QPnD $!k 6a,/ɜllI,qMWagA}-ur,-ߍtO U'8r4Ihc?F\&kNN/)Кhx5P7!$/}Q zۯ:*߇' 0C*բ (~1?ћx&ir86xxhMexYZ7Ps`;k7c~tON?^R KV2Rr>RݛrmحjA e'f |蝨/ڗMװ=6IM& si<||aM5t<@"8Q-rR5=26agTR2ZRů/َ^eO*7pN^0qCR< B>ayJT|F>ӕ@񡏾$[uq e1a; J&-?c⩦xH<L$V""R;89Zfƥ Kݼo436TCnHmnq4ZV֮X2GlZ5IV4ر(/$5JׁE7+)PX54ӣ+6V":I7y=a+U~V1D+Id׏a?Bg'c$)Ku$HrW4aDП'IDD:faGITx Z#;n5OĔ T"A' YZ