SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libmagic-data-5.11-12.31.4.x86_64.rpm :
Thu Oct 23 14:00:00 2014 wernerAATTsuse.de
- Add patch file-5.20-CVE-2014-3710.patch to fic bsc#902367
CVE-2014-3710: file: out-of-bounds read in elf note headers

Mon Mar 24 13:00:00 2014 wernerAATTsuse.de
- Add patch
0001-limit-to-100-repetitions-to-avoid-excessive-backtrac.patch
to fix bnc#869906 - CVE-2013-7345: file: extensive backtracking
in awk rule regular expression

Mon Mar 17 13:00:00 2014 wernerAATTsuse.de
- Add patch
0001-off-by-one-in-out-of-bounds-calculations-Jan-Kaluza.patch
to finally fix bnc#866750

Tue Mar 4 13:00:00 2014 wernerAATTsuse.de
- Add the upstream patch
0001-PR-313-Aaron-Reffett-Check-properly-for-exceeding-th.patch
to solve bnc#866750 - file: crash when parsing some PE executables
- Modify the upstream patch
0001-prevent-infinite-recursion.patch
to fit with former applied patch

Tue Mar 4 13:00:00 2014 wernerAATTsuse.de
- Port the upstream patch
0001-count-indirect-recursion-as-recursion.patch
back to avoid overflow, related to bnc#864589 as file-5.11 does
not do a recursive match detection

Mon Nov 26 13:00:00 2012 wernerAATTsuse.de
- Add file-5.11-extfs-minix.dif: Change detection order of ext2/3/4
fs and minix to avoid the for the free inode numbers 4991,5007,
9320,9336 and multiple of 65536 the ext2/3/4 fs will be detected
as minix fs (bnc#788435)

Sat Oct 27 14:00:00 2012 cooloAATTsuse.com
- implement shared library policy for libmagic1

Tue Sep 18 14:00:00 2012 wernerAATTsuse.de
- Add small patch to make clear if file follows symbloc links or not
as tihs depend on the environment variable POSIXLY_CORRECT
- Remove the README file as this is for packagers and not for users

Sun Aug 19 14:00:00 2012 giecriljAATTstegny.2a.pl
- add documentation (bnc#776532)

Tue Aug 14 14:00:00 2012 crrodriguezAATTopensuse.org
- Use the OS\'s byteswapping routines.

Tue Jun 26 14:00:00 2012 cfarrellAATTsuse.com
- license update: BSD-2-Clause
SPDX format

Wed Mar 21 13:00:00 2012 wernerAATTsuse.de
- Update to file version 5.11 (bnc#753303, CVE-2012-1571)

* Fix CDF parsing issues found by CERT\'s fuzzing tool (Will Dormann)

Mon Jan 16 13:00:00 2012 wernerAATTsuse.de
- Update to file version 5.10

* Add magic for /usr/bin/env Perl scripts

* Weaken generic script magic to avoid clashing with
language-specific magic.

* Remove hardwired token finding (names.h), turning it into soft
magic. Patterns are either anchored regexs or search/8192. English
language detection and PL/1 detection have been removed as they
were too fragile. -e tokens is still accepted for backwards
compatibility.

* Move 3ds patterns (which are commented out anyway) into autodesk
(they were, oddly, in c-lang).

* Tweak strength of generic hash-bang detectors to be less than
specific ones.

* Make an inconsistent description of Python scripts consistent.

* Python3 binding fixes from Kelly Anderson

* If a string type magic entry is marked as text or binary
only match text files against text entries and binary
files against binary entries.

* If the application name is not set in a cdf file, try to see
if it has a directory with the application name on it.

* Fix ELF lseek(2) madness. Inspired by PR/134 by Jan Kaluza

* Don\'t use variable string formats.

Sat Nov 5 13:00:00 2011 crrodriguezAATTopensuse.org
- libmagic: use O_CLOEXEC where needed, as there is no warranty
that calling applications will not fork() and we end up leaking
file descriptors to their child processes.

Sat Oct 1 14:00:00 2011 cooloAATTsuse.com
- add libtool as buildrequire to make the spec file more reliable

Sun Sep 18 14:00:00 2011 jengelhAATTmedozas.de
- Apply packaging guidelines (remove redundant/obsolete
tags/sections from specfile, etc.)

Tue Aug 23 14:00:00 2011 wernerAATTsuse.de
- Update to file version 5.08

* Fix detection of Zip files (Mantis #128).

* Make some minor improvements to file(1).

* Rename MIME types for filesystem objects for consistency with
xdg-utils. Typically this means that application/x-foo becomes
inode/foo, but some names also change slightly, e.g.
application/x-character-device becomes inode/chardevice.

Mon Jul 18 14:00:00 2011 wernerAATTsuse.de
- Fixed regression on zip archive detection (bnc#706310)

Tue Jun 14 14:00:00 2011 wernerAATTsuse.de
- Update to file version 5.07

* Several regressions in magic were fixed. A buffer overflow was
corrected. The program version is now recorded in only one place.
Several documentation improvements were made.

* The Python bindings were updated and fixed. Magic support for
OCF (EPUB) files and for lrzip files was added. Zip file magic
was adapted for files with unsupported special types. Many
more magic updates and fixes were made.

* Several minor bugs were fixed.
- Add magic for clicfs evne if upstream does not support it (bnc#681329)

Wed Nov 24 13:00:00 2010 wernerAATTsuse.de
- Add patch for Bio-Rad image format to avoid conflicts with other
magic records like RPM and even some ACII files (bnc#654696)

Fri Nov 5 13:00:00 2010 cristian.rodriguezAATTopensuse.org
- libmagic: export only public interface symbols listed
in magic.h, this also avoids exporting interesting stuff
like strlcat, strlcpy...

Mon Jun 28 14:00:00 2010 jengelhAATTmedozas.de
- use %_smp_mflags

Mon Apr 19 14:00:00 2010 wernerAATTsuse.de
- Add llvm bicode magic (bnc#597752)

Fri Feb 5 13:00:00 2010 wernerAATTsuse.de
- Update to file version 5.04

* print proper mime for crystal reports file

* print the last summary information of a cdf document, not the
first so that nested documents print the right info

* ctime/asctime can return NULL on some OS\'s although
they should not (Toshit Antani)

* Centralize magic path handling routines and remove the
special-casing from file.c so that the python module for
example comes up with the same magic path (Fixes ~/.magic
handling) (from Gab)

* When magic argument is a directory, read the files in
strcmp-sorted order (fixes Debian bug #488562 and our own FIXME).

* Combine overlapping epoc and psion magic files into one (epoc).

* Add some more EPOC MIME types.

* Fix 3 bugs (From Ian Darwin):
- file_showstr could move one past the end of the array
- parse_apple did not nul terminate the string in the overflow case
- parse_mime truncated the wrong string in the overflow case

* Add the necessary field handling for crystal reports files to work

* Stop \"(if\" identifying Lisp files, that\'s plain dumb!

* Add a couple of missing MP3 MIME types.

* Add full range of hash-bang tests for Python and Ruby.

* Add MIME types for Python and Ruby scripts.

* off by one in parsing hw capabilities in elf (Cheng Renquan)

Sat Dec 12 13:00:00 2009 jengelhAATTmedozas.de
- add baselibs.conf as a source

Tue Nov 3 13:00:00 2009 cooloAATTnovell.com
- updated patches to apply with fuzz=0

Tue Oct 27 13:00:00 2009 wernerAATTsuse.de
- Make ISO9660 magic entry working with file 5.xx (bnc#547683)

Wed Sep 30 14:00:00 2009 crrodriguezAATTopensuse.org
- file-devel only requires glibc-devel

Tue Jun 9 14:00:00 2009 wernerAATTsuse.de
- Do _not_ touch change log of python-magic
- Update to file version 5.03

* Avoid null dereference in cdf code (Drew Yao)

* More cdf bounds checks and overflow checks

Tue Jun 2 14:00:00 2009 cooloAATTnovell.com
- sync Version using pre_checkin.sh

Thu May 7 14:00:00 2009 wernerAATTsuse.de
- Add support for special zip archives (bnc#500511)

Wed May 6 14:00:00 2009 wernerAATTsuse.de
- Update to file version 5.02

* Read ~/.magic in addition to the default magic file not instead
of, as documented in the man page.

* filesystem and msdos patches (Joerg Jenderek)

* Added CDF parsing

* Add text/x-lua MIME type for Lua scripts.

* >= <= is not supported, so fix the magic and warn about it.
reported by: Thien-Thi Nguyen

* use memchr instead of strchr because the string
might not be NUL terminated (Scott MacVicar)

* Fix --mime, --mime-type and --mime-encoding under new scheme.

* add loop limits to avoid DoS attacks by constructing
looping sector references.

* Allow escaping of relation characters, so that we can say \\^[A-Z]
and the ^ is not eaten as a relation char.


  
ICM