SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for apr-devel-1.7.2-2.2.x86_64.rpm :

* Thu Feb 02 2023 Andreas Stieger - update to 1.7.2:
* CVE-2022-24963: Integer Overflow or Wraparound vulnerability in apr_encode functions allows an attacker to write beyond bounds of a buffer (boo#1207870)
* Add error handling for lseek() failures in apr_file_write() and apr_file_writev()
* Avoid an overflow on 32 bit platforms
* Don\'t silently set APR_FOPEN_NOCLEANUP for apr_file_mktemp() created file to avoid a fd and inode leak when/if later passed to apr_file_setaside().
* build system fixes and fixes for other platforms- drop apr-CVE-2021-35940.patch included upstream (CVE-2021-35940)
* Sat Mar 26 2022 Stephan Kulow - Remove autoreconf call, it breaks with uptodate autoconf versions
* Tue Feb 22 2022 pgajdosAATTsuse.com- deleted patches - apr-CVE-2021-3594.patch (renamed)- added patches + apr-CVE-2021-35940.patch (correct name)
* Tue Oct 19 2021 pgajdosAATTsuse.com- fix shlib-policy-name-error [bsc#1191747]
* Thu Sep 02 2021 pgajdosAATTsuse.com- security update- added patches fix CVE-2021-35940 [bsc#1190072], Regression of fix in apr 1.7 + apr-CVE-2021-35940.patch
* Sat Aug 03 2019 Manu Maier - Version 1.7.0
* apr_dir_read: [Unix] Dropped the preference of the dirread_r() flavor for dirread(), because the former is both deprecated and unneeded. [Yann Ylavic, William Rowe]
* apr_file_info: [Win32 only] Treat only \"name surrogate\" reparse points as symlinks, and not other reparse tag types. PR47630 [Oleg Liatte ]
* Test %ld vs. %lld to avoid compiler emits using APR_OFF_T_FMT, in the case of apparently equivilant long and long long types. [William Rowe]
* Recognize APPLE predefined macros as equivilant to DARWIN. [Jim Jagielski]
* Signals: Allow handling of SIGUSR2 in apr_signal_thread. [Yann Ylavic]
* Atomics: Support for 64bit ints. [Jim Jagielski]
* Add the apr_encode_
* API that implements RFC4648 and RFC7515 compliant BASE64, BASE64URL, BASE32, BASE32HEX and BASE16 encode/decode functions. [Graham Leggett]
* rand: Use arc4random_buf() on BSD platforms and getrandom() on Linux, when available. [Christian Weisgerber * Add apr_sockaddr_zone_set, apr_sockaddr_zone_set to set and retrieve the zone for link-local IPv6 addresses. [Joe Orton]
* apr_sockaddr_equal: Compare link-local IPv6 addresses with different zones as not equal. [Joe Orton]
* apr_sockaddr_ip_getbuf, apr_sockaddr_ip_get: Append \"%zone\" for IPv6 link-local addresses. [Joe Orton]
* Locks: add a --disable-timedlocks config option in case users encounter more platforms where it fails [Nick Kew].
* apr_allocator, apr_pools: Add apr_allocator_page_size() and apr_allocator_min_order_set() to respectively get the (system\'s) page size in use and set the minimum allocation size for an allocator (expressed in 2^order pages). [Yann Ylavic]
* locks: provide portable implementations of timedlock()s for posix-sems, sysv-sems and pthreads for those platforms that lack native versions (eg: OSX/macOS). [Jim Jagielski]
* locks: Introduce apr_{thread,proc,global}_mutex_timedlock(). [Yann Ylavic]- Remove patch
* apr-use-getrandom.patch no longer needed, apr 1.7.0 use getrandom() on Linux, when available.- Refresh apr-visibility.patch
* Fri Feb 08 2019 Petr Gajdos - increase timeout to fix random failure of testsuite + apr-test-sendfile-timeout.patch- fix build for SLE11 again
* Thu Feb 07 2019 Petr Gajdos - linux version is now checked correctly, drop - apr-1.4.5-linux3.patch (see change log from Sun Aug 7 01:21:44 UTC 2011)
* Wed Jan 16 2019 Tomáš Chvátal - Update keyring to match current release maintainer
* Thu Oct 18 2018 Manu Maier - Version 1.6.5
* Fix Win32 build breakage in apr_os_exp_time_put() in 1.6.4. [Rainer Jung]- Version 1.6.4
* configure: Fix detection of on OpenBSD. PR 61976. [David Carlier , Yann Ylavic]
* Fix apr_parse_addr_port() regression in scope_id parsing introduced in 1.6.3. [Rainer Jung]
* Fix Win32 file buffer locking behavior for single threaded file streams. [Evgeny Kotkov, Mladen Turk, Jean-Frederic Clere]
* Numerous corrections to APR poll behavior. [Yann Ylavic]- Drop patch gcc8-integer-overflow.patch merged upstream
  
ICM