SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libgd3-32bit-2.3.2-4.1.x86_64.rpm :

* Fri Mar 26 2021 Andreas Schneider - Enable AVIF support
* Mon Mar 08 2021 Matthias Eliasson - update to 2.3.2:
* gif: allow decodin when both Global and Local Colormaps (#494)
* avif: Support for AVIF images via libavif (#557)
* heif: Support for HEIF/AVIF images via libheif (#395) (#557)
* webp: Drop ../deps/ search when building with cmake
* Windows: Remove unused snprintf fallback
* Tue Feb 23 2021 Dirk Müller - update to 2.3.1: - Fix potential integer overflow detected by oss-fuzz - Fix #615 using libraqm - Fix #303: gdlib.pc: use Requires instead of Libs (#537) - Fixed #472: Adjusting CMakeLists.txt (#582) - Fix #615: gdImageStringFT() fails for empty strings as of libgd 2.3.0 (#633) - Fix typo but preserve BC - Compute average in gdGuessBackgroundColorFromCorners properly (#483) - CMakeLists.txt: zlib is enabled implicitly - src/config.h.cmake: replace #cmakedefine01 with #define in macro ENABLE_GD_FOORMATS (#622) - gdlib.pc: use prefixes for pkgconfig file - cmake: remove required host includes (#617) - Move initial declaration out of `for` loop - distribute getlib script - Make gd_nnquant.c less likely to introduce duplicate definitions (#601) - webp: support pkg-config file - gd_io: replace internal Putchar with gdPutC - gd_io: trim unused Putword function
* Sun Aug 09 2020 Matthias Eliasson - Version update to 2.3.0: [#]## Security - Potential double-free in gdImage
*Ptr(). (CVE-2019-6978) - gdImageColorMatch() out of bounds write on heap. (CVE-2019-6977) - Uninitialized read in gdImageCreateFromXbm(). (CVE-2019-11038) - Double-free in gdImageBmp. (CVE-2018-1000222) - Potential NULL pointer dereference in gdImageClone(). (CVE-2018-14553) - Potential infinite loop in gdImageCreateFromGifCtx(). (CVE-2018-5711) [#]## Fixed - Fix #597: add codecov support - Fix #596: gdTransformAffineCopy run error - Fix #589: Install dependencies move to .travis.yml - Fix #586: gdTransformAffineCopy() segfaults on palette images - Fix #585: gdTransformAffineCopy() changes interpolation method - Fix #584: gdImageSetInterpolationMethod(im, GD_DEFAULT) inconsistent - Fix #583: gdTransformAffineCopy() may use unitialized values - Fix #533: Remove cmake modules - Fix #539: Add RAQM support for cmake - Fix #499: gdImageGifAnimAddPtr: heap corruption with 2 identical images - Fix #486: gdImageCropAuto(…, GD_CROP_SIDES) crops left but not right - Fix #485: auto cropping has insufficient precision - Fix #479: Provide a suitable malloc function to liq - Fix #474: libtiff link returns 404 HTTP code - Fix #450: Failed to open 1 bit per pixel bitmap - Fix #440: new_width & new_height exception handling - Fix #432: gdImageCrop neglecting transparency - Fix #420: Potential infinite loop in gdImageCreateFromGifCtx - Fix #411: gd_gd.c format documentation appears to be incorrect - Fix #369: Fix new_a init error in gdImageConvolution() - Fix #351: gdImageFilledArc() doesn\'t properly draw pies - Fix #338: Fatal and normal libjpeg/libpng errors not distinguishable - Fix #169: Update var type to hold bigger w&h for ellipse - Fix #164: update doc files install directory in CMakeLists.txt - Correct some test depend errors - Update cmake min version to 3.7 - Delete libimagequant source code download action in CMakeLists.txt - Improve msys support - Fix some logic error in CMakeLists.txt - Remove the following macro: HAVE_STDLIB_H, HAVE_STRING_H, HAVE_STDDEF_H, HAVE_LIMITS_H, HAVE_ERRNO_H, AC_C_CONST [#]## Added - test cases for following API: gdImageCopyResized(), gdImageWebpEx(), gdImageCreateFromGd2PartPtr(), gdImageCloneMatch(), gdImageColorClosestHWB(), gdImageColorMatch(), gdImageStringUp(), gdImageStringUp16(), gdImageString(), gdImageString16(), gdImageCopyMergeGray(), gdImageCopyMerge()- Drop CVE patches now fixed upstream: - gd-CVE-2018-1000222.patch - gd-CVE-2018-14553.patch - gd-CVE-2018-5711.patch - gd-CVE-2019-11038.patch - gd-CVE-2019-6977.patch - gd-CVE-2019-6978.patch- Drop patch: libgd-config.patch since upstream have dropped libgd-config binary- Run spec-cleaner + Remove package groups + use license macro + use make macros
* Wed Mar 04 2020 pgajdosAATTsuse.com- security update- added patches fix CVE-2018-14553 [bsc#1165471], null pointer dereference in gdImageClone() + gd-CVE-2018-14553.patch
* Tue Jul 16 2019 pgajdosAATTsuse.com- security update- added patches CVE-2019-11038 [bsc#1140120] + gd-CVE-2019-11038.patch
* Thu May 30 2019 pgajdosAATTsuse.com- change order while installing splitted library [bsc#1136574]
* Thu Jan 31 2019 Petr Gajdos - security update
* CVE-2019-6978 [bsc#1123522] + gd-CVE-2019-6978.patch
* CVE-2019-6977 [bsc#1123361] + gd-CVE-2019-6977.patch
* Thu Dec 13 2018 meissnerAATTsuse.com- add gd-devel as baselibs, for building 32bit libaries on 64bit
* Mon Aug 27 2018 pgajdosAATTsuse.com- security update:
* CVE-2018-1000222 [bsc#1105434] + gd-CVE-2018-1000222.patch
* Tue Mar 13 2018 crrodriguezAATTopensuse.org- libgd-config.patch: do not inject false dependencies into packages, GD does not need extra libs to be used. this also allows us to clean up -devel package dependencies.
* Mon Jan 22 2018 pgajdosAATTsuse.com- security update:
* CVE-2018-5711 [bsc#1076391] + gd-CVE-2018-5711.patch
* Tue Sep 05 2017 pgajdosAATTsuse.com- Version update to 2.2.5: [#]## Security - Double-free in gdImagePngPtr(). (CVE-2017-6362) - Buffer over-read into uninitialized memory. (CVE-2017-7890) [#]## Fixed - Fix #109: XBM reading fails with printed error - Fix #338: Fatal and normal libjpeg/ibpng errors not distinguishable - Fix #357: 2.2.4: Segfault in test suite - Fix #386: gdImageGrayScale() may produce colors - Fix #406: webpng -i removes the transparent color - Fix Coverity #155475: Failure to restore alphaBlendingFlag - Fix Coverity #155476: potential resource leak - Fix several build issues and test failures - Fix and reenable optimized support for reading 1 bps TIFFs [#]## Added - The native MSVC buildchain now supports libtiff and most executables- removed patches (upstreamed): . gd-freetype.patch . gd-rounding.patch
* Tue Aug 15 2017 lnusselAATTsuse.de- Don\'t fail gdimagegrayscale/basic on SLE15 (boo#1053825)
* Fri Jul 21 2017 tchvatalAATTsuse.com- Add patch gd-rounding.patch- Set again the cflags so other archs do not fail testsuite
* Fri Jul 07 2017 tchvatalAATTsuse.com- Version update to 2.2.4:
* gdImageCreate() doesn\'t check for oversized images and as such is prone to DoS vulnerabilities. (CVE-2016-9317) bsc#1022283
* double-free in gdImageWebPtr() (CVE-2016-6912) bsc#1022284
* potential unsigned underflow in gd_interpolation.c (CVE-2016-10166) bsc#1022263
* DOS vulnerability in gdImageCreateFromGd2Ctx() (CVE-2016-10167) bsc#1022264
* Signed Integer Overflow gd_io.c (CVE-2016-10168) bsc#1022265- Remove patches merged/obsoleted by upstream:
* gd-config.patch
* gd-disable-freetype27-failed-tests.patch
* gd-test-unintialized-var.patch- Add patch gd-freetype.patch taking patch from upstream for freetype 2.7
* Fri Dec 09 2016 pgajdosAATTsuse.com- devel package also require libwebp-devel
* Thu Dec 08 2016 crrodriguezAATTopensuse.org- Support webp format, BuildRequires libwebp-devel
* Thu Dec 08 2016 crrodriguezAATTopensuse.org- Honour %optflags correctly.
* Fri Sep 30 2016 badshah400AATTgmail.com- Update to version 2.2.3: + Security fixes: - Php bug#72339, Integer Overflow in _gd2GetHeader (CVE-2016-5766) - Issue gh/libgd/libgd#247: A read out-of-bands was found in the parsing of TGA files (CVE-2016-6132) - Issue gh/libgd/libgd#247: Buffer over-read issue when parsing crafted TGA file (CVE-2016-6214) - Issue gh/libgd/libgd#248: fix Out-Of-Bounds Read in read_image_tga - Integer overflow error within _gdContributionsAlloc() (CVE-2016-6207) - Fix php bug#72494, invalid color index not handled, can lead to crash (CVE-2016-6128) + Improve color check for CropThreshold + gdImageCopyResampled has been improved. Better handling of images with alpha channel, also brings libgd in sync with php\'s bundled gd.- Drop patches: + gd-CVE-2016-5116.patch: upstreamed + gd-CVE-2016-6132.patch: upstreamed + gd-CVE-2016-6214.patch: upstreamed + gd-CVE-2016-6905.patch: upstreamed + gd-libvpx.patch: vpx support dropped.- Add BuildRequires for automake and autoconf since gd-disable-freetype27-failed-tests.patch touches makefiles.- Drop getver.pl from source: included in upstream tarball.- Add \"-msse -mfpmath=sse\" to CFLAGS to fix tests on ix86 architectures.- Add \"-ffp-contract=off\" to CFLAGS for non-ix86 arch (ppc, arm) to fix a test: see gh#libgd/libgd#278.- Add gd-test-unintialized-var.patch to fix an uninitialised variable in tests/gd2/gd2_read.c to prevent it from compiling with -Werror (only causes problems in no ix86 arch surprisingly); patch sent upstream.- Rebase gd-disable-freetype27-failed-tests.patch for updated version.- Update URL and Source to project\'s new github URL\'s.
* Thu Sep 29 2016 badshah400AATTgmail.com- Add gd-disable-freetype27-failed-tests.patch: Disable for now tests failing against freetype >= 2.7 for being too exact (gh#libgd/libgd#302). The failures have been understood by upstream to be due to minor differences between test images and those generated when freeetype >= 2.7 is used to build gd.
* Tue Aug 23 2016 pgajdosAATTsuse.com- security update:
* CVE-2016-6132 [bsc#987577] + gd-CVE-2016-6132.patch
* CVE-2016-6214 [bsc#991436] + gd-CVE-2016-6214.patch
* CVE-2016-6905 [bsc#995034] + gd-CVE-2016-6905.patch
* Mon May 30 2016 pgajdosAATTsuse.com- security update:
* CVE-2016-5116 [bsc#982176] + gd-CVE-2016-5116.patch
* Tue Mar 01 2016 pgajdosAATTsuse.com- add missing config/getver.pl [bsc#965190]
* Tue May 12 2015 joerg.lorenzenAATTki.tng.de- Added patch gd-libvpx.patch to enable build against libvpx >= 1.4, new VPX_ prefixed namespaces are available since libvpx = 0.9.1.
* Sat Feb 28 2015 mpluskalAATTsuse.com- Cleanup spec file with spec-cleaner- No longer needed patches
* gd-2.1.0-CVE-2014-2497.patch
* gd-autoconf.patch- Update to 2.1.1
* changelog provided only as commit log (see Changelog)
* fix for CVE-2014-2497
* Tue Aug 26 2014 jengelhAATTinai.de- Resolve build failure with automake-1.14
* Fri Jun 27 2014 meissnerAATTsuse.com- split out libgd3, so libgd2 could be installed in parallel.
* Thu Apr 17 2014 tchvatalAATTsuse.com- Add tiff and vpx to the devel deps as it is in .pc file.
* Thu Apr 10 2014 pgajdosAATTsuse.com- build against libtiff and libvpx
* Fri Apr 04 2014 pgajdosAATTsuse.com- fixed NULL ptr deref in GD XPM decoder [bnc#868624]
* CVE-2014-2497.patch
* Fri Dec 27 2013 tchvatalAATTsuse.com- Cleanup here&there to parallelize everything- Remove bogus cmake dependency
* Tue Dec 17 2013 pgajdosAATTsuse.com- updated to 2.1.0- removed warn.patch (not needed)- removed ppc64.patch (upstreamed)- removed gd-png_check_sig.patch (upstreamed)
* Sun Feb 03 2013 crrodriguezAATTopensuse.org- gd-autoconf.patch fix up compile file so gd can handle large files on 32 bit
* Sun Feb 05 2012 jengelhAATTmedozas.de- Remove redundant tags/sections- Parallel build with %_smp_mflags- Remove pointless INSTALL file from rpm package (it\'s just the default autotools INSTALL blurb)
* Wed Oct 05 2011 uliAATTsuse.com- cross-build fix: use libpng from sysroot
* Sat Oct 01 2011 cooloAATTsuse.com- add libtool as buildrequire to make the spec file more reliable
* Tue Jun 14 2011 ajAATTsuse.de- Devel package needs zlib-devel and libpng-devel.
* Tue Apr 06 2010 roAATTsuse.de- add baselibs.conf (for libpghoto2)
* Sun Apr 04 2010 roAATTsuse.de- replace png_check_sig by negated png_sig_cmp for libpng14
* Wed Nov 12 2008 crrodriguezAATTsuse.de- QA Results: Regression on PPC64 only, detected by PHP test suite, the system libgd part, fix by IBM
* Mon Mar 10 2008 crrodriguezAATTsuse.de- fix rpm version number, otherwise it wont upgrade later.
* Fri Jan 18 2008 anosekAATTsuse.cz- updated to version 2.0.36RC1
* Fixed gdImageCopy with true color image, the transparent color was ignored
* Fixed support of PNG grayscale image with alpha channel
* Added Netware builds script
* ease the creation of regexp to match symbols/functions in the sources
* _gdCreateFromFile() can crash if gdImageCreate fails
* gdImageCreateFrom
*Ptr() can crash if gdNewDynamicCtxEx() fails
* gdImageRectangle draws 1x1 rectangles as 1x3 rectangles
* Possible integer overflow in gdImageFill()
* Optimization for single pixel line not in correct order
* gdImageColorDeallocate can write outside buffer
* gdImageColorTransparent can write outside buffer
* gdImageWBMPCtx can crash when createwbmp fails
* Fixed decoding of the html entity ϑ
* Fixed configure script ignoring --with-png=DIR option- dropped obsoleted security.patch
* Thu Dec 20 2007 crrodriguezAATTsuse.de- remove static libraries and \"la\" files- devel package dependency cleanup
* Mon Jul 09 2007 anosekAATTsuse.cz- updated to version 2.0.35
* Fix valgrind error in gdImageFillTiled (Nuno Lopes)
* Add missing custom cmake macros (required for the tests suite)
* Avoid signature buffer copy in gd_gif_c (Nuno Lopes)
* Race condition in gdImageStringFTEx (Antony Dogval, Pierre Scott MacVicar)
* Reading GIF images is not thread safe (static usage in private functions) (Roman Nemecek, Nuno Lopes, Pierre)
* GIF Local palette is read twice
* GIF, Use local frame dimension when possible instead of the logical screen size (Pierre)
* GIF, do not try to use the global colmap if it does not exist (Nuno Lopes, Pierre)
* gdImageAALine draws axis lines with two pixels width (Pierre)
* gdImageArc CPU usage with large angles (Pierre)
* gdImageFilledRectangle regression fixed when used with reversed edges (Pierre)
* Possible infinite loop in libgd/gd_png.c, flaw found by Xavier Roche (Pierre)
* Fixed segfault when an invalid color index is present in a GIF image data, reported by Elliot (Pierre)
* Possible integer overflow in gdImageCreateTrueColor (Pierre) gdImageCreateXbm can crash if gdImageCreate fails (Pierre)- dropped obsolete patches (png-loop-CVE-2007-2756.patch)
* Tue May 29 2007 nadvornikAATTsuse.cz- fixed infinite loop on truncated png images CVE-2007-2756 [#276525]
* Thu May 03 2007 prusnakAATTsuse.cz- changed expat to libexpat-devel in Requires of devel subpackage
* Tue Feb 20 2007 nadvornikAATTsuse.cz- updated to 2.0.34:
* security fixes merged upstream
* various other bugfixes
* Wed Aug 16 2006 ajAATTsuse.de- Reduce BuildRequires.
* Wed Aug 16 2006 ajAATTsuse.de- Remove unneeded BuildRequire xorg-x11.
* Wed Aug 16 2006 ajAATTsuse.de- Do not use fonts to build package.
* Wed Aug 16 2006 sndirschAATTsuse.de- gd-fontpath.diff: fixes new fontpath for Type1 fonts
* Mon Aug 07 2006 nadvornikAATTsuse.cz- adjusted ttf fonts path for gdtestft
* Fri Jun 23 2006 nadvornikAATTsuse.cz- fixed another check for return value on error [#186953]- gdlib-config is moved to devel package [#168628]
* Thu Jun 08 2006 nadvornikAATTsuse.cz- fixed check for EOF in gd_gif_in.c [#182334]
* Wed Mar 08 2006 sbrabecAATTsuse.cz- Fixed devel dependencies.
* Wed Jan 25 2006 mlsAATTsuse.de- converted neededforbuild to BuildRequires
* Thu Jan 12 2006 nadvornikAATTsuse.cz- compile with -fstack-protector
* Thu Jan 05 2006 nadvornikAATTsuse.cz- fixed another integer overflow [#138007]
* Thu Nov 24 2005 meissnerAATTsuse.de- fixed 1 aliasing issue.
* Sat Feb 05 2005 meissnerAATTsuse.de- added 1 missign format attribute
* Mon Nov 22 2004 nadvornikAATTsuse.cz- run test programs during build [#48382]
* Mon Nov 15 2004 nadvornikAATTsuse.cz- fixed more overflows - CAN-2004-0941 [#47666]
* Tue Nov 02 2004 nadvornikAATTsuse.cz- updated to 2.0.32:
* fixed several integer overflows [#47666]
* animated gif support
* Tue Aug 24 2004 nadvornikAATTsuse.cz- updated to 2.0.28: restored support for reading and writing GIF images
* Fri Feb 20 2004 schwabAATTsuse.de- Fix missing return value.
* Thu Feb 05 2004 nadvornikAATTsuse.cz- updated to 2.0.22- fixed dangerous compiler warnings
* Sat Jan 10 2004 adrianAATTsuse.de- add %defattr and %run_ldconfig
* Tue Jan 06 2004 nadvornikAATTsuse.cz- updated to 2.0.17- fixed to build with new freetype
* Thu Jul 24 2003 mjancarAATTsuse.cz- update to 2.0.15
* Thu Feb 13 2003 nadvornikAATTsuse.cz- updated to 2.0.11: speed improvements, bugfixes
* Fri Dec 13 2002 prehakAATTsuse.cz- added gdImageCreateFromXpm() function prototype to gd.h
* Thu Nov 28 2002 nadvornikAATTsuse.cz- updated to 2.0.8
* Tue Sep 17 2002 roAATTsuse.de- removed bogus self-provides
* Tue May 28 2002 bkAATTsuse.de- gd-devel requires gd and use prefix, bindir and includedir macros
* Wed Feb 13 2002 nadvornikAATTsuse.cz- used macro %{_libdir}
* Thu Jan 31 2002 roAATTsuse.de- changed neededforbuild to
* Mon Nov 05 2001 roAATTsuse.de- fix Makefile.am for automake 1.5 (removed duplicated line)
* Fri May 25 2001 pblahaAATTsuse.cz- fix include on ia64
* Thu Mar 29 2001 roAATTsuse.de- use aclocal
* Wed Mar 21 2001 roAATTsuse.de- update to 1.8.4- use freetype2
* Mon Dec 04 2000 pblahaAATTsuse.cz- move simbolick link libgd.so -> gd-devel
* Thu Nov 30 2000 ajAATTsuse.de- Add suse_update_config.
* Wed Nov 15 2000 pblahaAATTsuse.cz- aplied patch from perl-GD and split to gd & gd-devel
* Mon Jun 05 2000 bubnikvAATTsuse.cz- updated to 1.8.3
* Fri May 12 2000 nadvornikAATTsuse.cz- update to 1.8.1- added BuildRoot
* Mon Oct 11 1999 roAATTsuse.de- added xpm and ttf support
* Sun Oct 10 1999 roAATTsuse.de- added libpng to neededforbuild
* Thu Oct 07 1999 schwabAATTsuse.de- update to 1.7.3
* Mon Sep 13 1999 bsAATTsuse.de- ran old prepare_spec on spec file to switch to new prepare_spec.
* Thu Sep 09 1999 bsAATTsuse.de- fixed call of Check at the end of %install section
* Tue Jun 15 1999 roAATTsuse.de- fixed doc installation
* Tue Jun 15 1999 roAATTsuse.de- update to 1.3
* Thu Feb 05 1998 roAATTsuse.de- ready for autobuild
 
ICM