log4j-jcl-2.13.0-lp152.3.6.1 4>$  Apa/=„$myv>]+;bqjG? 0"M6U1#WAz(6FK 0R [&)]NVXgeEp&S瞘M$'p@_ea?ǓS hQNp_kIRJԔf,0BFI')IHV[Үp= \?0DM,[cةp>d?Td   Chlx|      4  -Fh| (8(9l:rFKG`HtIXY\]^bc2defluvwxyzPClog4j-jcl2.13.0lp152.3.6.1Apache Log4j Commons Logging BridgeApache Log4j Commons Logging Bridge.a~cloud127?,openSUSE Leap 15.2openSUSEApache-2.0http://bugs.opensuse.orgUnspecifiedhttp://logging.apache.org/log4jlinuxnoarch(A큤A큤ahahahahah9bf9c672a668cc079e3928d016afc8ba0484ba9253face93d874f60d8286372882cedb3015fe308e5cba804e025b83027d95a049537bc5f4c9e281a5228b08d5f30d6ae1cb5c041805d2057c112f25451fbdb00162a49adc5bdd2e9812a83287rootrootrootrootrootrootrootrootrootrootlog4j-2.13.0-lp152.3.6.1.src.rpmlog4j-jclmvn(org.apache.logging.log4j:log4j-jcl)mvn(org.apache.logging.log4j:log4j-jcl:pom:)osgi(org.apache.logging.log4j.jcl)@ @@@    java-headlessjavapackages-filesystemmvn(commons-logging:commons-logging)mvn(org.apache.logging.log4j:log4j-api)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.82.13.03.0.4-14.6.0-14.0-15.2-14.14.1a@aA@^@^V]^&^!@]]?\G\=@\I[u[Xf@ZV@Y@TPTPPeter Simons Peter Simons Pedro Monreal Gonzalez Fridrich Strba Pedro Monreal Gonzalez Fridrich Strba Fridrich Strba Fridrich Strba Fridrich Strba Fridrich Strba Fridrich Strba Fridrich Strba fstrba@suse.combwiedemann@suse.comfstrba@suse.comtchvatal@suse.comtchvatal@suse.com- Apply "disable-jndi-by-default.patch" to disable JNDI support by default. There is evidence that the previous upstream fix for CVE-2021-44228 did not solve the vulnerability entirely. Since JNDI support is ususally not required, upstream recommends this route to be completely safe. [bsc#1193611, CVE-2021-44228]- Apply "CVE-2021-44228.patch" to fix a remote code execution vulnerability that existed in the LDAP JNDI parser. [bsc#1193611, CVE-2021-44228]- Security fix: [bsc#1170535, CVE-2020-9488] * Improper validation of certificate with host mismatch in SMTP appender. - Add log4j-CVE-2020-9488.patch- Added patches: * logging-log4j-LOG4J2-2745-LOG4J2-2744-slf4j.patch * logging-log4j-Remove-unsupported-EventDataConverter.patch + fix build with newer slf4j- Update to 2.13.0 [bsc#1159646, CVE-2019-17571] * Bugfixes and minor enhancements: - CVE-2019-17571: Remote code execution: Deserialization of untrusted data in SocketServer - Log4j 2 now requires Java 8 or higher to build and run. - Better integration with Spring Boot by providing access to Spring variables in Log4j 2 configuration files and allowing Log4j 2 system properties to be defined in the Spring configuration. - Support for accessing Kubernetes information via a Log4j 2 Lookup. - The Gelf Layout now allows the message to be formatted using a PatternLayout pattern. - Due to a break in compatibility in the SLF4J binding, Log4j now ships with two versions of the SLF4J to Log4j adapters. - log4j-slf4j-impl should be used with SLF4J 1.7.x and earlier and log4j-slf4j18-impl should be used with SLF4J 1.8.x and later. - Note that the XML, JSON and YAML formats changed in the 2.11.0 release: they no longer have the "timeMillis" attribute and instead have an "Instant" element with "epochSecond" and "nanoOfSecond" attributes. - The Log4j 2.13.0 API, as well as many core components, maintains binary compatibility with previous releases. * New Features - Add ThreadContext.putIfNotNull method. - Add a Level Patttern Selector. - Add experimental support for Log4j 1 configuration files. - Add the ability to lookup Kubernetes attributes in the Log4j configuration. Allow Log4j properties to be retrieved from the Spring environment if it is available. - Allow Spring Boot application properties to be accessed in the Log4j 2 configuration. Add lower and upper case Lookups. - Add builder pattern to Logger interface. * Fixed Bugs - Prevent recursive calls to java.util.LogManager.getLogger(). - Added try/finally around event.execute() for RingBufferLogEventHandler to clear memory correctly in case of exception/error. - Wrong java version check in ThreadNameCachingStrategy. - Use a less confusing name for the CompositeConfiguration source. - Add setKey method to Kafka Appender Builder. - ArrayIndexOutOfBoundsException could occur with MAC address longer than 6 bytes. - The rolling file appenders would fail to compress the file after rollover if the file name matched the file pattern. - @PluginValue does not support attribute names besides "value". - Validation blocks definition of script in properties configuration. - Set result of rename action to true if file was copied. - Add automatic module names where missing. - OutputStreamAppender.Builder ignores setFilter(). - Prevent a memory leak when async loggers throw errors. * Changes - Update Jackson to 2.9.10. - Allow message portion of GELF layout to be formatted using a PatternLayout. - Allow ThreadContext attributes to be explicitly included or excluded in the GelfLayout.- Obsolete log4j-mini, since on systems where this package is installed, the log4j-mini is not supposed to exist, but the compatibility version log4j12-mini/log4j12- Run fdupes on the javadoc- Upgrade to apache-log4j-2.11.1 - Drop the log4j vs. log4j-mini split * the bootstrapping is done using the log4j12/log4j12-mini compatibility packages - Removed patches: * log4j-javadoc-xlink.patch * log4j-logfactor5-userdir.patch * log4j-mx4j-tools.patch * log4j-reproducible.patch + unnecessary with this version- Build against a generic javamail provider instead of against classpathx-mail- Let log4j provide the log4j-mini and obsolete it too. - Remove conflicts on each other- Depend on the generic xml-apis- Install and package the maven pom and metadata files for the non-bootstrap log4j- Require at least java 8 for build- Add log4j-reproducible.patch to drop javadoc timestamps to make package builds more reproducible (boo#1047218)- Specify java source and target level 1.6 to allow building with jdk9- Version bump to 1.2.17 latest 1.2 series: * No short changelog provided - many small changes - Try to avoid cycle between log4j and apache-common-loggings - Remove obsoleted patch: * log4j-jmx-Agent.patch - Refresh patch to apply to new source: * log4j-mx4j-tools.patch- Cleanup with a spec-cleaner so I can understand what is going around here.cloud127 16395098862.13.0-lp152.3.6.12.13.02.13.02.13.0log4jlog4j-jcl.jarlog4j-jcl.xmllog4jlog4j-jcl.pom/usr/share/java//usr/share/java/log4j//usr/share/maven-metadata//usr/share/maven-poms//usr/share/maven-poms/log4j/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17277/openSUSE_Leap_15.2_Update/c6e2bb28f674e4b4113bc5985edd8c74-log4j.openSUSE_Leap_15.2_Updatecpioxz5noarch-suse-linuxdirectoryASCII text, with CRLF line terminators (Zip archive data, at least v2.0 to extract Zip archive data, at least v2.0 to extract)XML 1.0 document, ASCII textXML 1.0 document textPPPRRRRve]9NDpu Nutf-8ab7f1ed0384fb96c2af98533832bc6232d9a1fff4878a109117fcdf48d12225b? 7zXZ !t/B] crt:bLL 29OΜ%T4%<l4w<"]a-|u3N0߉S\2CS%V xp1?ֵ;@ԳDI'n vj0ً.=iح3@ n}2}ґ”@!5N#-jb2K l>ӻ0&Mo7̏uooD''p:CS_Y V]0ldd1o>vXvM{, 7ϲ?mBZ_mT5Է|qsj1:ŃP~uYTXT& 517{D3]w4_$fIBN*+3!o^81Sԅ#I"pL,sLe~7 ] `)|t.xEuo֦6pn͇_ޘȶ y۟7$r 56apJ3t oH:28ML2YA]2U]l# h,mn$4/;fsG1^{kd7|RTMׅP"`S…=^q,Ef$Pb.jfΥ?~_VU( @IM*!Υ·5 X|ym \fe^rJe7TAFxؙ6KEڭR˷n1Su8#n5C9vSЕ{~)BOm4yt7j!@g&JY.> fF eXHCCQnGӪ9bSEPXT?b_!'|MPKQ~ALH #7oަ)5w8?vYރē,K+@G\n3oanBׂܘ++?1("kAF;ɀz ;x?VMJ.|pt,.~&ق8`>1i)+.NQ I&~ /ygl%||PL`&iI>l[5W_ ?MS~^I`4[ F3ˢ 3ZzvQgf쐤ZrklgF˳Qq J?OÝ4ЦPŇىY6!SC. y|PvZ$z՛qטbEzfezCk`r d5`պpRn-;hY<* {BҊfTk4(*P :j LZߒ)Xرwۥo?ڈj<ҩ>GJ3 m p.~f/\jne(&1><ʗF/#/;ًgNٓnj|`6\ %D%S‚Z^ؠoɈ=WiĻ3ݖށ뎶#?X'^(&7]27߬gn\KID7,EQ`h8 z1R)&QVvA;ÂԅMڦR~ -EJfH!sIS7<͎`nxqӜD=x>M"Qax_C,'4UFd?!5౫V7ڒ.C-P&r r辍Fms0-'kj69}37-5 W8n 4]G@H,"Cޟ1.P^eƱ]J=7-dO^OY퀟5&]jyW.D*~1 =DF2Ѡd\I$o6uYa;}Y=EX<*CtIU0(QiIExOHMZSRr5 e`!$7!j\v^4km%7L(dq=i>0cZw!?Gǀɼ (7LbP"gUI=j^( zݏ|)$trbz@ 7%U%xެ)p #BIç4< 06=M5jeu{rTǴ*5^~ Nrx}lbnZ<9H m,WM NO0r&T I[͹A*`J ll /+ >M#g}94 q%bKK:u B~ksHg[ײW\ÈD,4xLuVKJ称VUٙ8l\p:iYM7;j{FMЉ+=nv}zͮ;!s *!*p3"I+=HyRJJ썺s_\fqli> X"RjqoF8/]lx-HŽ?F 16^j }FR rp]ѕWGRe 6oܳ[ J]Qj87dԅ>oa묎 z4g:Ru%?.q<۵o<1bpoI^$mmrw?dc {k+!k *6r3Zir_mcCs*1_PT[T~2 ^}~^[7וOO.IȽdm;3I# eN+8\3ʖ'`3#?R (]puq 7߾x P_QKp& ҋ7?DQ`=&$_).uYllZ >{w_^r2jsQGt0f-"qlwf ^bEG!beVnL7ojy7+X_3((9f&s1F=+i`!1^`zOYOI]Md8>qڹ9Ef8V`h4agANaIR'6 [T!] U:`OםXR4u<( )ɓ 2~[A#s1Ym-f~ 谬A_>u{~PEb?-;"k:e wYZm=P~62G8 T¶W,#{ &] K- If 4nٷ^sC $dΏ5E/OX'B4oIb#Gͯ5"P@ICn+Td>yFAM 5JV7JMow*}UQ_s12e>j*B81)@ƚ) z&^BHdO]oP$ =~5=" #(|t뢯R;\)x踩D~yc wȪpY@ r_M a(KYqKP)Jf#1c:>{U=LR[$|Hyveߛe͏M޷@ jIm-R1%羉&lM7]T*zDH;)޷SNy!x%O+"T7\):fI*A %j?^NӍ]=1gK 4GT<ߠKLl-VmBqd0dLF$[.,/RkbjkgiԀ~?{sٽsjhr*0y[2C4mS፽D G~F]Rt0= {[Yu˦8r0Y}毺դl; ){l1#V+tW`E`"~\[B'=9) |I+qâtͽwKErJI/j]@Om‹Cmel,#c]t5G}fvռ=HmiATua0} * 9ZxhEYB+Kp2Vu%Dvٽ̈_Eas<כKy3`S2=c*`H0, 04,|e a !ʳ$ \VyNm{evȤ7$&>̊J]fG0UzeFz( jKgU$fs0,_ޞOEL6"n<;ϳ2xcȊU,*nej zr*@Jh9kI4Dk$=]I`$ӂwWru}lvQ.2^~@lpz+ b6],!s~cXR˳}H2Bw^^4 +-BgNx!t9LHЦ$|gta#87_(a\j;`)B&{B%LVHa9H;`u`JKKi*=z[յH+ކsPk oxr88z|P$}mT_ros~/yT)TnDa9}cjv\|f!wc>!wfw/c<,F*tF*T@mտoד2omx1b8M:rT+[pfHQ*0ǔ"H26l&M?C\e~lS0no!^f^ ͫXv"pB8AvLvO*{ba&`W=j]a Dœo<4Lj N; IeC1 $]X ToZ˩syx[A$@25Ki[`_Ngˤ`"s=|:l79%\)v L"WrfWؤo*ɰ><OFqb- g}Hח<бZB/=I dFe(M/B'QDZ \#{c)4!)߻u͸[BA,-^iiLZ!E[E2J5^iB{-pd @"cjiyW*}aZ9.o bڈ3(gDm|M7ĢS+],X\Hd">;{¥_VH Y|jJLe oZ9 %V oVӤ_y% sPpfI؝FHkz,jd^ Y( ]q/%/D_,.>ǜ(̌ w )H0&)R 5-Y{V'$7ޤ6hqKqUA#b 5GlG4ˈ"]W3' !nI(&x7jl8͜imxTC` lR6 ~_REk9k}h%3T3IN|p?|.r>oH- q_L{ Q[SO'u0"}'itH1Y{3`l ?\g#%>V% NFě b|Iװ;7b)>rhĺMca wD{-cGHSx 5r)JWܩaDb%#2_Nipt'ɉY[ *P eIN/>4Yn=S]872 }?b YZ