SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libexif-devel-32bit-0.6.22-150000.5.9.1.x86_64.rpm :

* Wed Mar 30 2022 meissnerAATTsuse.com- libexif-CVE-2020-0198-CVE-2020-0181.patch: adjusted overflow checking code to in exif-data to not be optimized away. (CVE-2020-0198, CVE-2020-0181, bsc#1172802, bsc#1172768)- libexif-CVE-2020-0452.patch: adjusted a overflow check to not be optimized away by the compiler (CVE-2020-0452 bsc#1178479)
* Mon May 18 2020 meissnerAATTsuse.com- libexif-0.6.22 (2020-05-18) release:
* New translations: ms
* Updated translations for most languages
* Fixed C89 compatibility
* Fixed warnings on recent versions of autoconf
* Some useful EXIF 2.3 tag added:
* EXIF_TAG_GAMMA
* EXIF_TAG_COMPOSITE_IMAGE
* EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
* EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
* EXIF_TAG_GPS_H_POSITIONING_ERROR
* EXIF_TAG_CAMERA_OWNER_NAME
* EXIF_TAG_BODY_SERIAL_NUMBER
* EXIF_TAG_LENS_SPECIFICATION
* EXIF_TAG_LENS_MAKE
* EXIF_TAG_LENS_MODEL
* EXIF_TAG_LENS_SERIAL_NUMBER
* Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
* CVE-2018-20030: Fix for recursion DoS (bsc#1120943)
* CVE-2020-13114: Time consumption DoS when parsing canon array markers (bsc#1172121)
* CVE-2020-13113: Potential use of uninitialized memory (bsc#1172105)
* CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes (bsc#1172116)
* CVE-2020-0093: read overflow (bsc#1171847)
* CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs (bsc#1160770)
* CVE-2020-12767: fixed division by zero (bsc#1171475)
* CVE-2016-6328: fixed integer overflow when parsing maker notes (bsc#1171475)
* CVE-2017-7544: fixed buffer overread (bsc#1059893)- removed patch: libexif-build-date.patch (done similar upstream)- CVE-2016-6328.patch: in upstream release- CVE-2017-7544.patch: in upstream release- libexif-CVE-2018-20030.patch: in upstream release- libexif-CVE-2019-9278.patch: in upstream release
* Fri Jan 31 2020 meissnerAATTsuse.com- libexif-CVE-2019-9278.patch: fixed an integer overflow on large file handling (bsc#1160770 CVE-2019-9278)- libexif-CVE-2018-20030.patch: Fixed a denial of service by endless recursion (bsc#1120943 CVE-2018-20030)
* Wed Jan 24 2018 jengelhAATTinai.de- Remove %__-type macro indirections. Fix SRPM group.- Use %_smp_mflags for parallel build.- Drop pointless --with-pic (no effect since --disable-static).
* Wed Jan 17 2018 kbabiochAATTsuse.com- Add CVE-2016-6328.patch: Fix integer overflow in parsing MNOTE entry data of the input file (bnc#1055857)- Add CVE-2017-7544.patch: Fix vulnerable out-of-bounds heap read vulnerability (bnc#1059893)
* Mon Aug 07 2017 meissnerAATTsuse.com- add a libexif-devel-biarch for building with -m32
* Tue Aug 26 2014 fcrozatAATTsuse.com- Add obsoletes/provides to baselibs.conf.
* Fri May 30 2014 opensuseAATTdstoecker.de- fix description to be UTF-8
* Mon May 26 2014 crrodriguezAATTopensuse.org- Do not include timestamps in files (libexif-build-date.patch)
* Sun May 25 2014 crrodriguezAATTopensuse.org- Use LFS_CFLAGS in 32 bit systems.
  
ICM