SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libjasper-devel-4.0.0-2.2.i586.rpm :

* Sun Nov 06 2022 Michael Vetter - Update to 4.0.0:
* Improve static linking (##336).
* Fix path relocation in mingw environment (#335).
* Improve logging and build scripts.
* Improve JPEG-2000 conformance test results.
* Enable PIC by default.
* Fix memory leaks in function cmdopts_parse (#332) (CVE-2022-2963).
* imgcmp: + Add quiet (-q) option. + Add debug-level option. + Fix memory leak. imginfo: + Add quiet (-q) option.
* Fix bug in parsing PGX header.
* Fix integer overflow bug (#345) (CVE-2022-40755).- Remove jasper-CVE-2022-2963.patch
* Fri Sep 16 2022 Michael Vetter - security update:
* CVE-2022-2963 [bsc#1202642] + jasper-CVE-2022-2963.patch
* Thu Jul 14 2022 Michael Vetter - Update to 3.0.6:
* Fix bug in manual deployment script.
* Thu Jun 23 2022 Michael Vetter - Update to 3.0.5:
* Fix a minor build issue (#328).
* Fri Jun 03 2022 Michael Vetter - Update to 3.0.4:
* Eliminate some bogus calls to abort.
* Fix a typo in jas_safeui64_div (#323).
* Add some additional logging messages.
* Fix the source of a potential compiler warning (#321).
* Wed Mar 16 2022 Michael Vetter - Update to 3.0.3:
* Fix some portability issues in a few scripts.
* Mon Feb 14 2022 Wolfgang Bauer - Add back missing Requires to the devel package
* Mon Feb 14 2022 Michael Vetter - Update to 3.0.2:
* Fix a build issue that occurs when a cross-compiler is used (e.g., #319).
* Sat Feb 12 2022 Michael Vetter - Update to 3.0.1:
* Fix some build/portability issues (e.g., #317, #318).- Drop jasper-cmake-warnings.patch: contained in upstream release
* Mon Feb 07 2022 Michael Vetter - Update to 3.0.0:
* Introducing some API changes please refer to the \"News\" section of the JasPer manuel: https://jasper-software.github.io/jasper-manual
* Greatly improve documentation.
* Add support for multithreading.
* Add some customization points in the library, such as the memory allocator and error logging function.
* Add improved memory usage tracking and limiting.
* Add experimental partial encoding/decoding support for the HEIC format.
* Fix some longstanding issues in the JasPer I/O streams API.
* Fix many bugs (e.g., #305, #307, #308, #309, #312, #314, and many others not associated with any issue numbers).- Remove jasper-freeglut.patch: not needed anymore- Add jasper-cmake-warnings.patch: fix cmake warnings- Remove legacy provides/obsoletes related to sle11 and bsc#437293
* Sun Jan 30 2022 Carsten Ziepke - Add jasper-freeglut.patch, fixes freeglut detection and linking- Run spec-cleaner- Change license from SUSE-Public-Domain to JasPer-2.0- Cleanup docdir, only package the html and pdf docs and not the sources
* Mon Aug 16 2021 Michael Vetter - Update to 2.0.33:
* Fix a JP2/JPC decoder bug (#291)
* Fix a build issue impacting some platforms (#296)
* Mon Apr 19 2021 Michael Vetter - Update to 2.0.32:
* Between 2.0.29 and 2.0.32 were only experiments with GitHub Actions
* Mon Apr 19 2021 Michael Vetter - Update to 2.0.29:
* Loosen some overly tight restrictions on JP2 codestreams, which caused some valid codestreams to be rejected. (#289)
* Mon Mar 29 2021 Michael Vetter - Update to 2.0.28:
* Fix potential null pointer dereference in the JP2/JPC decoder. (#269)
* Fix ignoring of JAS_STREAM_FILEOBJ_NOCLOSE at stream close time. (#286)
* Fix integral type sizing problem in JP2 codec. (#284)
* Thu Mar 18 2021 Michael Vetter - Update to 2.0.27:
* Check for an image containing no samples in the PGX decoder. (#271, #272, #273, #274, #275, #276, #281)
* Check for dimensions of zero in the JPC and JPEG decoders.
* Fix an arguably incorrect type for an integer literal in the PGX decoder. (#270)
* Check for an invalid component reference in the JP2 decoder. (#269)
* Check on integer size in JP2 decoder. (#278)
* Fri Mar 05 2021 Michael Vetter - Update to 2.0.26:
* Fix JP2 decoder bug that can cause a null pointer dereference for some invalid CDEF boxes. (#268)
* Mon Feb 08 2021 Michael Vetter - Update to 2.0.25:
* Fix memory-related bugs in the JPEG-2000 codec resulting from attempting to decode invalid code streams. (#264, #265)
* Fix wrong return value under some compilers (#260)
* Fix bsc#1181483 CVE-2021-3272 heap buffer overflow in jp2_decode (#259)
* Mon Jan 04 2021 Michael Vetter - Update to 2.0.24:
* Add JAS_VERSION_MAJOR, JAS_VERSION_MINOR, JAS_VERSION_PATCH for easier access to the JasPer version.
* Fixes stack overflow bug on Windows, where variable-length arrays are not available. (#256)
* Tue Dec 08 2020 Michael Vetter - Update to 2.0.23:
* Fix CVE-2020-27828, heap-overflow in cp_create() in jpc_enc.c (#252)
* Tue Oct 06 2020 Michael Vetter - Update to 2.0.22:
* Update manual
* Remove JPEG dummy codec
* Fix test suite build failure regarding disabled MIF codec (#249)
* Fix OpenGL/glut detection (#247)- Remove jasper-2.0.21-glut.patch: upstreamed
* Wed Sep 23 2020 Michael Vetter - Add jasper-2.0.21-glut.patch: Fix glut.h detection See https://github.com/jasper-software/jasper/issues/247
* Tue Sep 22 2020 Michael Vetter - Update to 2.0.21:
* Fix ZDI-15-529 https://github.com/jasper-software/jasper/pull/245
* Fix CVE-2018-19541 in decoder https://github.com/jasper-software/jasper/pull/244
* Mon Sep 07 2020 Michael Vetter - Update to 2.0.20:
* Fixed several ISO/IEC 15444-4 conformance bugs
* Fixed new variant of CVE-2016-9398
* Disabled the MIF codec by default for security reasons (but it is still included in the library); in a future release, the MIF codec may also be excluded from the library by default
* Added documentation for the I/O streams library API
* Improved adherance to specification- Move to GitHub repo https://github.com/jasper-software/jasper- Update URL to https://jasper-software.github.io/jasper
* Tue Jul 28 2020 Michael Vetter - Update to 2.0.19:
* Fix CVE-2018-9154 https://github.com/jasper-software/jasper/issues/215 https://github.com/jasper-software/jasper/issues/166 https://github.com/jasper-software/jasper/issues/175 https://github.com/jasper-maint/jasper/issues/8
* Fix CVE-2018-19541 https://github.com/jasper-software/jasper/pull/199 https://github.com/jasper-maint/jasper/issues/6
* Fix CVE-2016-9399, CVE-2017-13751 https://github.com/jasper-maint/jasper/issues/1
* Fix CVE-2018-19540 https://github.com/jasper-software/jasper/issues/182 https://github.com/jasper-maint/jasper/issues/22
* Fix CVE-2018-9055 https://github.com/jasper-maint/jasper/issues/9
* Fix CVE-2017-13748 https://github.com/jasper-software/jasper/issues/168
* Fix CVE-2017-5503, CVE-2017-5504, CVE-2017-5505 https://github.com/jasper-maint/jasper/issues/3 https://github.com/jasper-maint/jasper/issues/4 https://github.com/jasper-maint/jasper/issues/5 https://github.com/jasper-software/jasper/issues/88 https://github.com/jasper-software/jasper/issues/89 https://github.com/jasper-software/jasper/issues/90
* Fix CVE-2018-9252 https://github.com/jasper-maint/jasper/issues/16
* Fix CVE-2018-19139 https://github.com/jasper-maint/jasper/issues/14
* Fix CVE-2018-19543, CVE-2017-9782 https://github.com/jasper-maint/jasper/issues/13 https://github.com/jasper-maint/jasper/issues/18 https://github.com/jasper-software/jasper/issues/140 https://github.com/jasper-software/jasper/issues/182
* Fix CVE-2018-20570 https://github.com/jasper-maint/jasper/issues/11 https://github.com/jasper-software/jasper/issues/191
* Fix CVE-2018-20622 https://github.com/jasper-maint/jasper/issues/12 https://github.com/jasper-software/jasper/issues/193
* Fix CVE-2016-9398 https://github.com/jasper-maint/jasper/issues/10
* Fix CVE-2017-14132 https://github.com/jasper-maint/jasper/issues/17
* Fix CVE-2017-5499 https://github.com/jasper-maint/jasper/issues/2 https://github.com/jasper-software/jasper/issues/63
* Fix CVE-2018-18873 https://github.com/jasper-maint/jasper/issues/15 https://github.com/jasper-software/jasper/issues/184
* Fix https://github.com/jasper-software/jasper/issues/207
* Fix https://github.com/jasper-software/jasper/issues/194 part 1
* Fix CVE-2017-13750 https://github.com/jasper-software/jasper/issues/165 https://github.com/jasper-software/jasper/issues/174
* New option -DJAS_ENABLE_HIDDEN=true to not export internal symbols in the public symbol table
* Fix various memory leaks
* Plenty of code cleanups, and performance improvements- Remove because contained in upstream:
* jasper-CVE-2016-9398.patch
* jasper-CVE-2018-19540.patch
* jasper-CVE-2018-19541.patch
* jasper-CVE-2018-19542.patch
* jasper-CVE-2018-9055.patch
* jasper-CVE-2018-9154.patch
* Tue Mar 17 2020 Michael Vetter - bsc#1092115 CVE-2018-9154: Fix possible denial of service Add jasper-CVE-2018-9154.patch: dont abort in jpc_dec_process_sot()
  
ICM