Changelog for libspice-server-devel-0.12.8-10.1.x86_64.rpm :
Mon Sep 24 14:00:00 2018 Bruce Rogers
- Include spice-server tweak to compensate for Windows spice driver
which causes performance issues. (bsc#1109044)
Added Patches:
5968dbd5-red-parse-qxl-Use-same-fuction-to-parse-blend-and-co.patch
ca498457-red-parse-qxl-Avoid-invalid-flag-usage.patch

Mon Aug 20 14:00:00 2018 cbosdonnatAATTsuse.com
- Fix potential heap corruption when demarshalling (CVE-2018-10873,
bsc#1104448)
Added patch:
bb15d481-Fix-flexible-array-buffer-overflow.patch

Mon Jul 16 14:00:00 2018 cbosdonnatAATTsuse.com
- Avoid buffer overflow on image lz cheks (CVE-2018-10893, bsc#1101295)
Added patches:
0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch
0002-lz-More-checks-on-image-sizes.patch

Fri Jun 30 14:00:00 2017 cbosdonnatAATTsuse.com
- Fix possible buffer overflow via invalid monitor configurations
CVE-2017-7506.patch
[CVE-2017-7506, bsc#1046779]

Thu Feb 2 13:00:00 2017 psimonsAATTsuse.com
- Added patches to fix two security vulnerabilities.

* CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch
[CVE-2016-9577, bsc#1023078]

* CVE-2016-9578-remote-dos-via-crafted-message.patch
[CVE-2016-9578, bsc#1023079]

Thu Feb 2 13:00:00 2017 cbosdonnatAATTsuse.com
- Synchronize with SLES (fate#322402):
+ bnc#894069: disable smartcard support for SLES
+ merge changelog

Thu Dec 22 13:00:00 2016 astiegerAATTsuse.com
- restrict suppression of obsoletes-not-provided warning to
spice-client bsc#1013916

Tue Dec 13 13:00:00 2016 cbosdonnatAATTsuse.com
- Obsolete spice-client (bsc#1013916)

Thu Nov 10 13:00:00 2016 msuchanekAATTsuse.com
- remove ExclusiveArch (boo#1009438)

Sat Oct 8 14:00:00 2016 zaitorAATTopensuse.org
- Update to version 0.12.8:
+ Fixes for bsc#982385 / CVE-2016-0749 and bsc#982386 / CVE-2016-2150.

Fri Apr 15 14:00:00 2016 cbosdonnatAATTsuse.com
- Update to version 0.12.7 (fate#320079)
+ spice-server will now send TCP keepalive probes on the TCP connections it
uses. This can prevent unwanted idle disconnections if proxies are used
between the client and the host.
+ Fix important memory usage when the webdav channel is used
+ Do not disconnect when the client requests an unsupported compression type
+ Fix a few race conditions
+ Fix display glitch when using XSpice
+ Improve help string for \'replay -s\'
+ Fix crashes in corner cases (buggy spice-html5 + win10, vnc + SPICE port
configured, USB webcam redirection over a slow link)
+ Fix various compilation warning when building on 32 bit machines
+ Some fixes for big-endian machines, more work is likely to be needed
+ Do not build static libraries by default, this can be reenabled with --enable-static
+ Fix small leak in MJPEG code

Tue Oct 6 14:00:00 2015 cbosdonnatAATTsuse.com
- Update to version 0.12.6
+ Removed spicec client code, it has been superseded by remote-viewer
and other spice-gtk based clients
+ Unix socket support
+ LZ4 support
+ Let clients specify their preferred image compression format
+ Allow to record and replay a spice-server session
+ Fixes for CVE-2015-3247 CVE-2015-5260 and CVE-2015-5261
bsc#944787, bsc#948976
+ spice-protocol submodule has been removed, spice-protocol must
now be installed when building spice-server
+ Remove write polling in chardevs to reduce wakeups
- Remove upstream merged patches:
+ spice-Don-t-use-48kHz-for-playback-recording-rates.patch
+ password-length-check.patch
+ cve-2015-3247.patch

Mon Sep 7 14:00:00 2015 cbosdonnatAATTsuse.com
- bsc#944460: fix CVE-2015-3247.
cve-2015-3247.patch

Fri Jun 5 14:00:00 2015 cbosdonnatAATTsuse.com
- Don\'t allow setting password longer than what the spice protocol
allows. password-length-check.patch. boo#931044

Sun Oct 19 14:00:00 2014 crrodriguezAATTopensuse.org
- Replace xorg-x11-devel buildrequire by selected pkgconfig(xlibs..)

Wed Oct 15 14:00:00 2014 zaitorAATTopensuse.org
- Update to version 0.12.5:
+ Added Opus support. Celt support will be obsoleted in a future
release.
+ Addition of webdav channel.
+ Force use of TLS 1.0 or newer for TLS connections.
+ Reference manual.
+ Some optimizations improving CPU use.
+ Various bug fixes for race conditions, memory corruption, which
could be triggered on client disconnections, migration, and
cause spice-server to misbehave.
+ Portability fixes.
+ Code cleanups.
+ bsc#848279: fix CVE-2013-4282.
- Add pkconfig(opus) BuildRequires: Needed to build new opus
support.
- Add spice-Don-t-use-48kHz-for-playback-recording-rates.patch:
Fix advertised sound playback/recording rates in public headers
(rh#1129961).
- Drop spice-glibc217.patch: No longer needed.
- Run spec-clean on spec file, remove conditionals for obsolete
versions of openSUSE, enable parallel build and drop obsolete
clean section.

Mon Jul 29 14:00:00 2013 aevseevAATTgmail.com
- Update to version 0.12.4:
+ log actual address spice-server binds to
+ main_channel: fix double release of migration target data (rhbz#859027)
+ red_channel: replace an assert upon threads mismatch with a warning (rhbz#823472)
+ support for filtering out agent file-xfer msgs (rhbz#961848)
++ new library export spice_server_set_agent_file_xfer
+ mjpeg encoder statistics (mjpeg_encoder_get_stats)
+ improve stream stats readability and ease of parsing
+ fix for stuck display_channel over WAN (jpeg_enabled=true) (rhbz#977998)
+ Use RING_FOREACH_SAFE and other SAFE macros (rhbz#887775)
+ Some server/tests fixes.
- New features from 0.12.3:
+ monitor client bandwidth and latency.
+ dynamically adjust video stream quality based on client bandwidth & latency.
++ new SPICE_MSGC_DISPLAY_STREAM_REPORT
++ can also set SPICE_BIT_RATE environment variable to override.
+ support arbitrary latency of audio stream wrt video stream:
++ new SPICE_MSG_PLAYBACK_LATENCY
+ notify agent on client disconnection
++ new VD_AGENT_CLIENT_DISCONNECTED message
+ better support for switching from qxl to vga mode
++ new library export spice_qxl_driver_unload
+ multiple monitor support in single channel fixes.
+ stop streams before migration.
+ don\'t send empty volume messages.
+ Bugs fixed: rhbz#891326, rhbz#958276, rhbz#956345
+ fixes to inputs, chardev, build fixes.

Wed May 15 14:00:00 2013 dimstarAATTopensuse.org
- Update to version 0.12.2:
+ Skipped 0.12.1, it existed in git but was never released.
+ spice-server now requires glib2 (like qemu does).
+ More robust ssl error and certificate handling.
+ Added support for websockets.
+ Tons of seamless migration bugfixes.
+ Also some none seamless migration bugfixes.
- Clean spec file using spec-cleaner.
- Rebase spice-glibc217.patch.
- Add pkgconfig(glib-2.0) BuildRequires: new dependency.
- Pass --enable-client and --enable-smartcard to configure in
order to ensure the client and smartcard support are built (SC
only on openSUSE >= 12.2).

Thu Nov 22 13:00:00 2012 afaerberAATTsuse.de
- Update to version 0.12.0

* support setting client monitor configuration via device
QXLInterface::client_monitors_config

* support notifying guest of client capabilities
QXLInterface::set_client_capabilities

* new capability for A8 Surface support

* Enable build on armv6+

* Option to quit server after first client disconnects
spice_server_set_exit_on_disconnect

* Support seamless migration: no loss of in transit messages. Still not
supported for agent, smartcard and usb.

* Support a new rendering message, Composite, for much improved linux guest
performance.

* Support arbitrary resolution & multiple monitors on a single display channel.

* Improved keyboard handling under network latency with new
SPICE_MSGC_INPUTS_KEY_SCANCODE message.

* New libspice-server.so symbols:
spice_server_set_seamless_migration
spice_server_vm_stop
spice_server_vm_start
spice_qxl_monitors_config_async

* New capabilities:
SPICE_DISPLAY_CAP_COMPOSITE
SPICE_DISPLAY_CAP_MONITORS_CONFIG
SPICE_INPUTS_CAP_KEY_SCANCODE
SPICE_MAIN_CAP_AGENT_CONNECTED_TOKENS
SPICE_MAIN_CAP_SEAMLESS_MIGRATE

* Misc:

* char_device.c: Introducing shared flow control code for char devices

* Enable build without client, cegui and slirp.

* New spice protocol messages: (changes in spice-protocol, here for reference)

* SPICE_MSG_MAIN_NAME, SPICE_MSG_MAIN_UUID

* SPICE_MSG_DISPLAY_STREAM_DATA_SIZED

* New corresponding caps: (changes in spice-protocol, here for reference)

* SPICE_MAIN_CAP_NAME_AND_UUID

* SPICE_DISPLAY_CAP_SIZED_STREAM.

* Send name & uuid to capable clients

* add support for frames of different sizes RHBZ #813826

* server:

* support a pre-opened file descriptor

* Solaris support. Now using poll instead of epoll.

* Support IPV6 addresses in channel events RHBZ #788444

* other fixed RHBZ#: 787669, 787678, 819484

* spicec

* alsa: use \"default\" instead of \"hw:0,0\"

* volume keys support RHBZ #552539

* other fixed RHBZ#: 78655, 804561, 641828

* solaris, mingw & windows, 32 bit fixes.

* enable server only build.

* GNULIB manywarnings.m4 & warnings.m4 module added.

* Many more bug fixes & code cleanups.

* spice-protocol no longer external.

* new server functions:
+ spice_server_set_name
+ spice_server_set_uuid
+ spice_server_set_listen_socket_fd
+ spice_server_is_server_mouse
- Drop spice-gcc47.patch
- Update spice-glibc217.patch (file moved)

Sat Nov 17 13:00:00 2012 ajAATTsuse.de
- Fix build with glibc 2.17 (add patch spice-glibc217.patch).

Mon Apr 2 14:00:00 2012 dimstarAATTopensuse.org
- Add spice-gcc47.patch: Fix build with gcc 4.7. Most of this used
to be in spice-signed-comparison.patch which got dropped with
latest update.

Sun Apr 1 14:00:00 2012 zaitorAATTopensuse.org
- Update to version 0.10.1:
+ Mini header support.
+ Add server API for injecting a client connection socket.
+ Add Xinerama support to spicec.
+ Many bugfixes / code cleanups.
+ Requires spice-protocol >= 0.10.1
- Drop spice-signed-comparison.patch and
0001-server-red_parse_qxl.h-License-should-be-LGPLv2-rath.patch
Fixed upstream.

Mon Mar 19 13:00:00 2012 dimstarAATTopensuse.org
- Extend spice-signed-comparison.patch: incl. git commit 965a1a.

Mon Feb 13 13:00:00 2012 cooloAATTsuse.com
- patch license to follow spdx.org standard

Thu Jan 5 13:00:00 2012 dvaleevAATTsuse.com
- Only x86 and x86-64 are supported

Tue Dec 13 13:00:00 2011 brogersAATTsuse.com
- Initial package, prepared for inclusion in Factory.