SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libtiff-4.0.3-32.el7.x86_64.rpm :
Tue Apr 30 14:00:00 2019 Nikola Forró - 4.0.3-32
- Fix one more Covscan defect
- Related: #1647965

Tue Apr 30 14:00:00 2019 Nikola Forró - 4.0.3-31
- Fix processing of RAS files without colormap
- Related: #1647965

Thu Dec 13 13:00:00 2018 Nikola Forró - 4.0.3-30
- Fix various Covscan defects
- Related: #1647965

Thu Dec 13 13:00:00 2018 Nikola Forró - 4.0.3-29
- Fix compiler warning introduced by patch for CVE-2018-18661
- Related: #1647965

Thu Dec 6 13:00:00 2018 Nikola Forró - 4.0.3-28
- Fix CVE-2016-3186
- Resolves: #1319503
- Fix CVE-2018-7456
- Resolves: #1561318
- Fix CVE-2018-8905
- Resolves: #1574548
- Fix CVE-2018-10779
- Resolves: #1598503
- Fix CVE-2018-10963
- Resolves: #1598726
- Fix CVE-2018-12900
- Resolves: #1600430
- Fix CVE-2018-17100
- Resolves: #1632578
- Fix CVE-2018-17101
- Resolves: #1632579
- Fix CVE-2018-18557
- Resolves: #1647737
- Fix CVE-2018-18661
- Resolves: #1647965

Wed Jan 18 13:00:00 2017 Nikola Forró - 4.0.3-27
- Fix CWE-476 defect found by covscan
- Related: #1412081

Wed Jan 11 13:00:00 2017 Nikola Forró - 4.0.3-26
- Add patches for CVEs:
CVE-2016-9533, CVE-2016-9534, CVE-2016-9535,
CVE-2016-9536, CVE-2016-9537, CVE-2016-9540,
CVE-2016-5652, CVE-2015-8870
- Resolves: #1412081

Wed Jul 27 14:00:00 2016 Nikola Forró - 4.0.3-25
- Add patches for CVEs:
CVE-2015-7554, CVE-2015-8683, CVE-2015-8665,
CVE-2015-8781, CVE-2015-8782, CVE-2015-8783,
CVE-2015-8784
- Related: #1299921

Tue Jul 26 14:00:00 2016 Nikola Forró - 4.0.3-24
- Update patches for CVEs:
CVE-2014-8127, CVE-2014-8130
- Related: #1299921

Mon Jul 25 14:00:00 2016 Petr Hracek - 4.0.3-23
- Update patches:
CVE-2014-9330, CVE-2014-8127, CVE-2014-8129
CVE-2014-8130
- Related: #1299921

Tue Jul 19 14:00:00 2016 Nikola Forró - 4.0.3-22
- Update patch for CVE-2015-8668
- Related: #1299921

Mon Jul 11 14:00:00 2016 Nikola Forró - 4.0.3-21
- Remove patches for CVEs:
CVE-2014-8127, CVE-2014-8129, CVE-2014-8130,
CVE-2014-9330, CVE-2015-7554, CVE-2015-8665,
CVE-2015-8683, CVE-2015-8781, CVE-2015-8784
- Add patches for CVEs:
CVE-2016-3632, CVE-2016-3945, CVE-2016-3990,
CVE-2016-3991, CVE-2016-5320
- Update patches for CVEs:
CVE-2014-9655, CVE-2015-1547, CVE-2015-8668
- Related: #1299921

Tue Apr 19 14:00:00 2016 Petr Hracek - 4.0.3-20
- CVE-2014-8127 should contain only two fixes
- Related: #1299921

Fri Apr 1 14:00:00 2016 Petr Hracek - 4.0.3-19
- Revert previous patch CVE-2014-8127
- Related: #1299921

Thu Mar 31 14:00:00 2016 Petr Hracek - 4.0.3-18
- Fixed wrongly applied patch CVE-2014-8127
- Related: #1299921

Tue Mar 15 13:00:00 2016 Petr Hracek - 4.0.3-17
- Fixed patch CVE-2015-8668. Wrongly applied by me
- Related: #1299921

Tue Mar 8 13:00:00 2016 Petr Hracek - 4.0.3-16
- Fixed patches on preview CVEs
- Related: #1299921

Wed Feb 3 13:00:00 2016 Petr Hracek - 4.0.3-15
- This resolves several CVEs
- CVE-2014-8127, CVE-2014-8129, CVE-2014-8130
- CVE-2014-9330, CVE-2014-9655, CVE-2015-8781
- CVE-2015-8784, CVE-2015-1547, CVE-2015-8683
- CVE-2015-8665, CVE-2015-7554, CVE-2015-8668
- Resolves: #1299921

Thu Feb 13 13:00:00 2014 Petr Hracek - 4.0.3-14
- Resolves: #996827 CVE-2013-4243 libtiff various flaws

Fri Jan 24 13:00:00 2014 Daniel Mach - 4.0.3-13
- Mass rebuild 2014-01-24

Fri Dec 27 13:00:00 2013 Daniel Mach - 4.0.3-12
- Mass rebuild 2013-12-27

Wed Dec 18 13:00:00 2013 Petr Hracek - 4.0.3-11
- Correct man page option -W
Resolves: #510240

Thu Dec 12 13:00:00 2013 Petr Hracek - 4.0.3-10
- Resolves: #996827 CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244
libtiff various flaws

Mon Oct 21 14:00:00 2013 Petr Hracek - 4.0.3-9
- Resolves: #1017070 - make check moved to %check section

Tue Oct 8 14:00:00 2013 Petr Hracek - 4.0.3-8
- tiff2ps manual page doesn\'t contain help for all options
- tiffcp options differ in program help and manual page
Resolves: #510240
Resolves: #510258

Mon Aug 12 14:00:00 2013 Jaromír Končický - 4.0.3-7
- man page fixing (#510240 #510258)

Thu May 2 14:00:00 2013 Tom Lane 4.0.3-6
- Add upstream patches for CVE-2013-1960, CVE-2013-1961
Resolves: #958609

Thu Feb 14 13:00:00 2013 Fedora Release Engineering - 4.0.3-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild

Fri Jan 18 13:00:00 2013 Adam Tkac - 4.0.3-4
- rebuild due to \"jpeg8-ABI\" feature drop

Wed Dec 19 13:00:00 2012 Tom Lane 4.0.3-3
- Add upstream patch to avoid bogus self-test failure with libjpeg-turbo v8

Thu Dec 13 13:00:00 2012 Tom Lane 4.0.3-2
- Add upstream patches for CVE-2012-4447, CVE-2012-4564
(note: CVE-2012-5581 is already fixed in 4.0.3)
Resolves: #880907

Thu Oct 4 14:00:00 2012 Tom Lane 4.0.3-1
- Update to libtiff 4.0.3

Fri Aug 3 14:00:00 2012 Tom Lane 4.0.2-6
- Remove compat subpackage; no longer needed
- Minor specfile cleanup per suggestions from Tom Callaway
Related: #845110

Thu Aug 2 14:00:00 2012 Tom Lane 4.0.2-5
- Add accessor functions for opaque type TIFFField (backport of not-yet-released
upstream feature addition; needed to fix freeimage)

Sun Jul 22 14:00:00 2012 Tom Lane 4.0.2-4
- Add patches for CVE-2012-3401
Resolves: #841736

Thu Jul 19 14:00:00 2012 Fedora Release Engineering - 4.0.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild

Tue Jul 3 14:00:00 2012 Karsten Hopp 4.0.2-2
- add opensuse bigendian patch to fix raw_decode self check failure on ppc
*, s390
*

Thu Jun 28 14:00:00 2012 Tom Lane 4.0.2-1
- Update to libtiff 4.0.2, includes fix for CVE-2012-2113
(note that CVE-2012-2088 does not apply to 4.0.x)
- Update libtiff-compat to 3.9.6 and add patches to it for
CVE-2012-2088, CVE-2012-2113
Resolves: #832866

Fri Jun 1 14:00:00 2012 Tom Lane 4.0.1-2
- Enable JBIG support
Resolves: #826240

Sun May 6 14:00:00 2012 Tom Lane 4.0.1-1
- Update to libtiff 4.0.1, adds BigTIFF support and other features;
library soname is bumped from libtiff.so.3 to libtiff.so.5
Resolves: #782383
- Temporarily package 3.9.5 shared library (only) in libtiff-compat subpackage
so that dependent packages won\'t be broken while rebuilding proceeds

Thu Apr 5 14:00:00 2012 Tom Lane 3.9.5-3
- Add fix for CVE-2012-1173
Resolves: #CVE-2012-1173

Fri Jan 13 13:00:00 2012 Fedora Release Engineering - 3.9.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild

Tue Apr 12 14:00:00 2011 Tom Lane 3.9.5-1
- Update to libtiff 3.9.5, incorporating all our previous patches plus other
fixes, notably the fix for CVE-2009-5022
Related: #695885

Mon Mar 21 13:00:00 2011 Tom Lane 3.9.4-4
- Fix incorrect fix for CVE-2011-0192
Resolves: #684007
Related: #688825
- Add fix for CVE-2011-1167
Resolves: #689574

Wed Mar 2 13:00:00 2011 Tom Lane 3.9.4-3
- Add patch for CVE-2011-0192
Resolves: #681672
- Fix non-security-critical potential SIGSEGV in gif2tiff
Related: #648820

Tue Feb 8 13:00:00 2011 Fedora Release Engineering - 3.9.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild

Tue Jun 22 14:00:00 2010 Tom Lane 3.9.4-1
- Update to libtiff 3.9.4, for numerous bug fixes including fixes for
CVE-2010-1411, CVE-2010-2065, CVE-2010-2067
Resolves: #554371
Related: #460653, #588784, #601274, #599576, #592361, #603024
- Add fixes for multiple SIGSEGV problems
Resolves: #583081
Related: #603081, #603699, #603703

Tue Jan 5 13:00:00 2010 Tom Lane 3.9.2-3
- Apply Adam Goode\'s fix for Warmerdam\'s fix
Resolves: #552360
Resolves: #533353
- Add some defenses to prevent tiffcmp from crashing on downsampled JPEG
images; this isn\'t enough to make it really work correctly though
Related: #460322

Wed Dec 16 13:00:00 2009 Tom Lane 3.9.2-2
- Apply Warmerdam\'s partial fix for bug #460322 ... better than nothing.
Related: #460322

Thu Dec 3 13:00:00 2009 Tom Lane 3.9.2-1
- Update to libtiff 3.9.2; stop carrying a lot of old patches
Resolves: #520734
- Split command-line tools into libtiff-tools subpackage
Resolves: #515170
- Use build system\'s libtool instead of what package contains;
among other cleanup this gets rid of unwanted rpath specs in executables
Related: #226049

Thu Oct 15 14:00:00 2009 Tom Lane 3.8.2-16
- add sparc/sparc64 to multilib header support

Sat Jul 25 14:00:00 2009 Fedora Release Engineering - 3.8.2-15
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild

Mon Jul 13 14:00:00 2009 Tom Lane 3.8.2-14
- Fix buffer overrun risks caused by unchecked integer overflow (CVE-2009-2347)
Related: #510041

Wed Jul 1 14:00:00 2009 Tom Lane 3.8.2-13
- Fix some more LZW decoding vulnerabilities (CVE-2009-2285)
Related: #507465
- Update upstream URL

Wed Feb 25 13:00:00 2009 Fedora Release Engineering - 3.8.2-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild

Tue Aug 26 14:00:00 2008 Tom Lane 3.8.2-11
- Fix LZW decoding vulnerabilities (CVE-2008-2327)
Related: #458674
- Use -fno-strict-aliasing per rpmdiff recommendation

Tue Feb 19 13:00:00 2008 Fedora Release Engineering - 3.8.2-10
- Autorebuild for GCC 4.3

Wed Aug 22 14:00:00 2007 Tom Lane 3.8.2-9
- Update License tag
- Rebuild to fix Fedora toolchain issues

Thu Jul 19 14:00:00 2007 Tom Lane 3.8.2-8
- Restore static library to distribution, in a separate -static subpackage
Resolves: #219905
- Don\'t apply multilib header hack to unrecognized architectures
Resolves: #233091
- Remove documentation for programs we don\'t ship
Resolves: #205079
Related: #185145

Tue Jan 16 13:00:00 2007 Tom Lane 3.8.2-7
- Remove Makefiles from the shipped /usr/share/doc/html directories
Resolves: bz #222729

Tue Sep 5 14:00:00 2006 Jindrich Novy - 3.8.2-6
- fix CVE-2006-2193, tiff2pdf buffer overflow (#194362)
- fix typo in man page for tiffset (#186297)
- use %{?dist}

Mon Jul 24 14:00:00 2006 Matthias Clasen
- Fix several vulnerabilities (CVE-2006-3460 CVE-2006-3461
CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

Wed Jul 12 14:00:00 2006 Jesse Keating - 3.8.2-4.1
- rebuild

Fri Jun 2 14:00:00 2006 Matthias Clasen - 3.8.2-3
- Fix multilib conflict

Thu May 25 14:00:00 2006 Matthias Clasen - 3.8.2-3
- Fix overflows in tiffsplit

Wed Apr 26 14:00:00 2006 Matthias Clasen - 3.8.2-2
- Drop tiffgt to get rid of the libGL dependency (#190768)

Wed Apr 26 14:00:00 2006 Matthias Clasen - 3.8.2-1
- Update to 3.8.2

Fri Feb 10 13:00:00 2006 Jesse Keating - 3.7.4-3.2.1
- bump again for double-long bug on ppc(64)

Tue Feb 7 13:00:00 2006 Jesse Keating - 3.7.4-3.2
- rebuilt for new gcc4.1 snapshot and glibc changes

Fri Dec 9 13:00:00 2005 Jesse Keating
- rebuilt

Wed Nov 16 13:00:00 2005 Matthias Clasen 3.7.4-3
- Don\'t ship static libs

Fri Nov 11 13:00:00 2005 Matthias Saou 3.7.4-2
- Remove useless explicit dependencies.
- Minor spec file cleanups.
- Move make check to %check.
- Add _smp_mflags.

Thu Sep 29 14:00:00 2005 Matthias Clasen - 3.7.4-1
- Update to 3.7.4
- Drop upstreamed patches

Wed Jun 29 14:00:00 2005 Matthias Clasen - 3.7.2-1
- Update to 3.7.2
- Drop upstreamed patches

Fri May 6 14:00:00 2005 Matthias Clasen - 3.7.1-6
- Fix a stack overflow

Wed Mar 2 13:00:00 2005 Matthias Clasen - 3.7.1-5
- Don\'t use mktemp

Wed Mar 2 13:00:00 2005 Matthias Clasen - 3.7.1-4
- Rebuild with gcc4

Wed Jan 5 13:00:00 2005 Matthias Clasen - 3.7.1-3
- Drop the largefile patch again
- Fix a problem with the handling of alpha channels
- Fix an integer overflow in tiffdump (#143576)

Wed Dec 22 13:00:00 2004 Matthias Clasen - 3.7.1-2
- Readd the largefile patch (#143560)

Wed Dec 22 13:00:00 2004 Matthias Clasen - 3.7.1-1
- Upgrade to 3.7.1
- Remove upstreamed patches
- Remove specfile cruft
- make check

Thu Oct 14 14:00:00 2004 Matthias Clasen 3.6.1-7
- fix some integer and buffer overflows (#134853, #134848)

Tue Oct 12 14:00:00 2004 Matthias Clasen 3.6.1-6
- fix http://bugzilla.remotesensing.org/show_bug.cgi?id=483

Mon Sep 27 14:00:00 2004 Rik van Riel 3.6.1-4
- compile using RPM_OPT_FLAGS (bz #133650)

Tue Jun 15 14:00:00 2004 Elliot Lee
- rebuilt

Thu May 20 14:00:00 2004 Matthias Clasen 3.6.1-2
- Fix and use the makeflags patch

Wed May 19 14:00:00 2004 Matthias Clasen 3.6.1-1
- Upgrade to 3.6.1
- Adjust patches
- Don\'t install tiffgt man page (#104864)

Tue Mar 2 13:00:00 2004 Elliot Lee
- rebuilt

Sat Feb 21 13:00:00 2004 Florian La Roche
- really add symlink to shared lib by running ldconfig at compile time

Fri Feb 13 13:00:00 2004 Elliot Lee
- rebuilt

Thu Oct 9 14:00:00 2003 Florian La Roche
- link shared lib against -lm (Jakub Jelinek)

Thu Sep 25 14:00:00 2003 Jeremy Katz 3.5.7-13
- rebuild to fix gzipped file md5sum (#91281)

Wed Jun 4 14:00:00 2003 Elliot Lee
- rebuilt

Tue Feb 11 13:00:00 2003 Phil Knirsch 3.5.7-11
- Fixed rebuild problems.

Tue Feb 4 13:00:00 2003 Florian La Roche
- add symlink to shared lib

Wed Jan 22 13:00:00 2003 Tim Powers
- rebuilt

Thu Dec 12 13:00:00 2002 Tim Powers 3.5.7-8
- rebuild on all arches

Mon Aug 19 14:00:00 2002 Phil Knirsch 3.5.7-7
- Added LFS support (#71593)

Tue Jun 25 14:00:00 2002 Phil Knirsch 3.5.7-6
- Fixed wrong exit code of tiffcp app (#67240)

Fri Jun 21 14:00:00 2002 Tim Powers
- automated rebuild

Thu May 23 14:00:00 2002 Tim Powers
- automated rebuild

Wed May 15 14:00:00 2002 Phil Knirsch
- Fixed segfault in fax2tiff tool (#64708).

Mon Feb 25 13:00:00 2002 Phil Knirsch
- Fixed problem with newer bash versions setting CDPATH (#59741)

Tue Feb 19 13:00:00 2002 Phil Knirsch
- Update to current release 3.5.7

Wed Jan 9 13:00:00 2002 Tim Powers
- automated rebuild

Tue Aug 28 14:00:00 2001 Phil Knirsch
- Fixed ia64 problem with tiffinfo. Was general 64 bit arch problem where s390x
and ia64 were missing (#52129).

Tue Jun 26 14:00:00 2001 Philipp Knirsch
- Hopefully final symlink fix

Thu Jun 21 14:00:00 2001 Than Ngo
- add missing libtiff symlink

Fri Mar 16 13:00:00 2001 Crutcher Dunnavant
- killed tiff-to-ps.fpi filter

Wed Feb 28 13:00:00 2001 Philipp Knirsch
- Fixed missing devel version dependancy.

Tue Dec 19 13:00:00 2000 Philipp Knirsch
- rebuild

Mon Aug 7 14:00:00 2000 Crutcher Dunnavant
- added a tiff-to-ps.fpi filter for printing

Thu Jul 13 14:00:00 2000 Prospector
- automatic rebuild

Thu Jul 13 14:00:00 2000 Nalin Dahyabhai
- apply Peter Skarpetis\'s fix for the 32-bit conversion

Mon Jul 3 14:00:00 2000 Nalin Dahyabhai
- make man pages non-executable (#12811)

Mon Jun 12 14:00:00 2000 Nalin Dahyabhai
- remove CVS repo info from data directories

Thu May 18 14:00:00 2000 Nalin Dahyabhai
- fix build rooting
- fix syntax error in configure script
- move man pages to {_mandir}

Wed May 17 14:00:00 2000 Nalin Dahyabhai
- rebuild for an errata release

Wed Mar 29 14:00:00 2000 Nalin Dahyabhai
- update to 3.5.5, which integrates our fax2ps fixes and the glibc fix

Tue Mar 28 14:00:00 2000 Nalin Dahyabhai
- fix fax2ps swapping height and width in the bounding box

Mon Mar 27 14:00:00 2000 Nalin Dahyabhai
- move man pages from devel package to the regular one
- integrate Frank Warmerdam\'s fixed .fax handling code (keep until next release
of libtiff)
- fix fax2ps breakage (bug #8345)

Sat Feb 5 13:00:00 2000 Nalin Dahyabhai
- set MANDIR=man3 to make multifunction man pages friendlier

Mon Jan 31 13:00:00 2000 Nalin Dahyabhai
- fix URLs

Fri Jan 28 13:00:00 2000 Nalin Dahyabhai
- link shared library against libjpeg and libz

Tue Jan 18 13:00:00 2000 Nalin Dahyabhai
- enable zip and jpeg codecs
- change defattr in normal package to 0755
- add defattr to -devel package

Wed Dec 22 13:00:00 1999 Bill Nottingham
- update to 3.5.4

Sun Mar 21 13:00:00 1999 Cristian Gafton
- auto rebuild in the new build environment (release 6)

Wed Jan 13 13:00:00 1999 Cristian Gafton
- build for glibc 2.1

Wed Jun 10 14:00:00 1998 Prospector System
- translations modified for de

Wed Jun 10 14:00:00 1998 Michael Fulbright
- rebuilt against fixed jpeg libs (libjpeg-6b)

Thu May 7 14:00:00 1998 Prospector System
- translations modified for de, fr, tr

Mon Oct 13 14:00:00 1997 Donnie Barnes
- new version to replace the one from libgr
- patched for glibc
- added shlib support


  
ICM