Changelog for
libcaca0-32bit-0.99.beta20-3.4.x86_64.rpm :
* Mon Nov 14 2022 Valentin Lefebvre
- add patch [libcaca-autoconf-2.69.patch]
* Don\'t force autoconf to be at version 2.71
* Mon Nov 14 2022 Valentin Lefebvre - Upgrade to 0.99.beta20
* IPv6 support in cacaserver
* fixed a bug from 2004 that caused PDF documentation generation to fail
* memory allocation functions are now more robust
* numerous fixes for memory leaks and invalid memory accesses:
* CVE-2021-30498
* CVE-2021-30499
* CVE-2021-3410
* CVE-2018-20546
* CVE-2018-20547
* CVE-2018-20545
* CVE-2018-20548
* CVE-2018-20549- Dropped upstream fixed patches
* libcaca-bsc1182731-prevent-overflow.patch
* libcaca-variable-type.patch
* Bug1120502-add_cast_to_prevent_overflow.patch
* Mon Mar 14 2022 Josef Möllers - When a zero-width or zero-height image is given, a divide-by-zero occurs. This patch checks for this and produces a zero-sized output. [bsc1197028-correctly-handle-zero-width-or-height-images.patch, CVE-2022-0856, bsc#1197028]
* Fri Apr 16 2021 Josef Möllers - The problem is due to the fact that the images in the POC have a size of 0x0 and thus, when exporting, no data is written for the image bits. However, space is allocated for the header only, not taking into account that sprintf appends a NUL byte. [CVE-2021-30498, CVE-2021-30499, bsc#1184751, bsc#1184752, bsc1184751-add-space-for-NUL-byte.patch]
* Fri Feb 26 2021 Josef Möllers - More overflow prevention of multiplying large ints [bsc#1182731, CVE-2021-3410, libcaca-bsc1182731-prevent-overflow.patch]
* Tue Mar 10 2020 Josef Möllers - The contents of libcaca-prevent-overflow.patch have been moved to Bug1120502-add_cast_to_prevent_overflow.patch and libcaca-variable-type.patch [libcaca-prevent-overflow.patch]
* Wed Feb 26 2020 Илья Индиго - Refresh spec-file via spec-cleaner.- Add Requires:toilet for caca-utils, because need for cacaclock.
* Thu Aug 01 2019 Michel Normand - Add Bug1143286_libcaca_configure_ac_chg_for_lto.patch bypass boo#1143286
* Mon Jan 21 2019 josef.moellersAATTsuse.com- Cast intermediate results to 64 bits to prevent overflow of calculations with 32-bit quentities. [CVE-2018-20544, bsc#1120502, Bug1120502-add_cast_to_prevent_overflow.patch]
* Mon Jan 21 2019 josef.moellersAATTsuse.com- Fix the size of width and height to be of size_t rather than int in struct caca_dither. Re-using existing patch. [CVE-2018-20546, bsc#1120503, CVE-2018-20547, bsc#1120504, libcaca-variable-type.patch]