|
|
|
|
Changelog for freeimage-devel-3.18.0.1909-39.29.x86_64.rpm :
* Tue Oct 17 2023 Ich - Unbreak the build of all downstream packages, repeal excessive excludes from _service, redo unbundle.patch [boo#1216332] * Thu Sep 07 2023 Enrico Belleri - Update to SVN revision 1909: * added the \'ExtraSamples\' tag key to the FIMD_EXIF_MAIN & FIMD_EXIF_EXIF metadata models * added support for Exif v2.3.2 tags * improved TIFF compression when using float images with TIFF_ADOBE_DEFLATE or TIFF_LZW flag * improved performance of _MemoryReadProc function (see FreeImageIO.cpp) * improved TIFF validation against Canon CR2 files (CR2 files are no longer recognized as TIFF) * improved TIFF plugin when working with malicious images * improved BMP plugin when working with malicious images * improved FreeImage_LoadFromMemory robustness when working with malicious images * fixed JXR plugin when working under a Linux OS * improved PFM plugin against malicious images * improved JXR plugin against malicious images * improved Targa plugin against malicious images * improved DDS plugin against malicious images * improved PCX plugin against malicious images * improved PNM plugin against malicious images * improved TIFF plugin against malicious images * improved J2K plugin against malicious images * fixed FreeImage_OpenMultiBitmap with usage of filenames longer than 255 characters & Windows Long Path disabled * TIFF images saved with TIFF_DEFLATE compression are saved to images with TIFF_ADOBE_DEFLATE compresssion (TIFF_DEFLATE is obsolete) * fixed FreeImage_FlipVertical behavior with very large images * fixed FreeImage_Paste behavior with very large images * fixed FreeImage_SeekMemory behavior with 64-bit malicious images- CVE-2019-12211_2019-12213.patch merged upstream- libraw_0_20.patch libraw_0_21.patch merged upstream- bigendian.patch merged upstream- freeimage-no-return-in-nonvoid.patch merged upstream- edit unbundle.patch- closes boo#1135736 boo#1135731 boo#1214776 boo#1214557 boo#1214555 boo#1214556- Fixes CVEs: CVE-2019-12213 CVE-2019-12211 CVE-2020-21426 CVE-2020-21427 CVE-2020-21428 CVE-2020-22524 * Thu Jan 19 2023 Dominique Leuenberger - Add libraw_0_21.patch: Fix build against libraw 0.21. * Sat Jun 18 2022 Jan Engelhardt - Adjust unbundle.patch to work with tiff >= 4.4.0 [boo#1200451]- Refresh doxygen.patch as -p1, use %autosetup- Trim redundant information from descriptions * Wed Apr 14 2021 pgajdosAATTsuse.com- added patches fix build with openexr3 + freeimage-openexr3.patch * Mon Aug 24 2020 Dirk Stoecker - fix build with libraw 0.20 (libraw_0_20.patch) * Fri May 15 2020 Tomáš Chvátal - Add patch to fix build on bigendian: * bigendian.patch * Fri May 15 2020 Tomáš Chvátal - Add patch CVE-2019-12211_2019-12213.patch to fix: * bsc#113576 CVE-2019-12211 * bsc#1135731 CVE-2019-12213 * Tue Sep 11 2018 Ondřej Súkup - update to 3.18.0- refresh/replace unbudle.patch- add freeimage-no-return-in-nonvoid.patch- drop CVE-2016-5684.patch and CVE-2015-0852.patch- refresh doxygen.patch * removed FreeImage_RotateClassic * removed internal Deprecation Manager * DDS plugin now convert 16-bit uncompressed RGB (RGB444, RGB555, RGB565) to 24-bit RGB on loading * added saving support to the PSD plugin * FreeImage_ConvertToRawBits now deals with palletized images containing transparency during conversion * added saving support for 32-bit CMYK in JPEG plugin * added FreeImage_Validate functions: added FreeImage_Validate added FreeImage_ValidateU added FreeImage_ValidateFromHandle added FreeImage_ValidateFromMemory * fixed PCX loader against malicious images with a bad window specification * fixed TIFF loader with loading of RGB[A]F float images * improved loading speed of PSD plugin * fixed support of snprintf in Visual Studio 2015 * improved GIF signature validation * improved TARGA signature validation * disabled ICC sRGB profile checking in PluginPNG:Save * fixed endianness detection on some architectures * fixed saving of 32-bit CMYK converted to 24-bit RGB on loading (remove ICC profile from Exif metadata) * fixed FreeImage_IsTransparent and FreeImage_GetColorType returned value for RGBA[16,F] images flagged as CMYK * fixed a bug in FreeImage_Clone when working with wrapped buffer * fixed a bug in PluginBMP:Save when saving a dib created with FreeImage_CreateView * fixed loading of uncompressed DDS files when width / height are not a multiple of 4 * fixed XPM loader against malicious images with a bad header specification * fixed TIFF loader with Exif loading (saves and restores offset and dir when exif is loaded) * refactored MultiPage and CacheFile mechanism * fixed PCX file conversion crash on special files * fixed FreeImage_FillBackground when using blending with an alpha-transparent foreground color over an opaque background * fixed 64-bit conversion of parameters in sprintf calls (required with C++ 11) * fixed static cast to boolean in PluginJPEG * improved error handling in PluginPNG * fixed wrong exposure in exported HDR files * fixed PluginTIFF:ReadThumbnail behavior when reading TIF with Exif metadata * Wed Jan 24 2018 kbabiochAATTsuse.com- Add CVE-2016-5684.patch: Fix an exploitable out-of-bounds write vulnerability in the XMP image handling functionality, which can cause an arbitrary memory overwrite resulting in code execution (CVE-2016-5684 boo#1002621).
|
|
|