|
|
|
|
Changelog for caca-utils-0.99.beta20-97.2.x86_64.rpm :
* Mon Nov 14 2022 Valentin Lefebvre - add patch [libcaca-autoconf-2.69.patch] * Don\'t force autoconf to be at version 2.71 * Mon Nov 14 2022 Valentin Lefebvre - Upgrade to 0.99.beta20 * IPv6 support in cacaserver * fixed a bug from 2004 that caused PDF documentation generation to fail * memory allocation functions are now more robust * numerous fixes for memory leaks and invalid memory accesses: * CVE-2021-30498 * CVE-2021-30499 * CVE-2021-3410 * CVE-2018-20546 * CVE-2018-20547 * CVE-2018-20545 * CVE-2018-20548 * CVE-2018-20549- Dropped upstream fixed patches * libcaca-bsc1182731-prevent-overflow.patch * libcaca-variable-type.patch * Bug1120502-add_cast_to_prevent_overflow.patch * Mon Mar 14 2022 Josef Möllers - When a zero-width or zero-height image is given, a divide-by-zero occurs. This patch checks for this and produces a zero-sized output. [bsc1197028-correctly-handle-zero-width-or-height-images.patch, CVE-2022-0856, bsc#1197028] * Fri Apr 16 2021 Josef Möllers - The problem is due to the fact that the images in the POC have a size of 0x0 and thus, when exporting, no data is written for the image bits. However, space is allocated for the header only, not taking into account that sprintf appends a NUL byte. [CVE-2021-30498, CVE-2021-30499, bsc#1184751, bsc#1184752, bsc1184751-add-space-for-NUL-byte.patch] * Fri Feb 26 2021 Josef Möllers - More overflow prevention of multiplying large ints [bsc#1182731, CVE-2021-3410, libcaca-bsc1182731-prevent-overflow.patch] * Tue Mar 10 2020 Josef Möllers - The contents of libcaca-prevent-overflow.patch have been moved to Bug1120502-add_cast_to_prevent_overflow.patch and libcaca-variable-type.patch [libcaca-prevent-overflow.patch] * Wed Feb 26 2020 Илья Индиго - Refresh spec-file via spec-cleaner.- Add Requires:toilet for caca-utils, because need for cacaclock. * Thu Aug 01 2019 Michel Normand - Add Bug1143286_libcaca_configure_ac_chg_for_lto.patch bypass boo#1143286 * Mon Jan 21 2019 josef.moellersAATTsuse.com- Cast intermediate results to 64 bits to prevent overflow of calculations with 32-bit quentities. [CVE-2018-20544, bsc#1120502, Bug1120502-add_cast_to_prevent_overflow.patch] * Mon Jan 21 2019 josef.moellersAATTsuse.com- Fix the size of width and height to be of size_t rather than int in struct caca_dither. Re-using existing patch. [CVE-2018-20546, bsc#1120503, CVE-2018-20547, bsc#1120504, libcaca-variable-type.patch] * Tue Jan 15 2019 josef.moellersAATTsuse.com- Fix the size of width and height to be of size_t rather than unsigned int which may be too small on 64 bit architectures. This fixes three CVS and associated bugs. [CVE-2018-20545, bsc#1120584, CVE-2018-20548, bsc#1120589, CVE-2018-20549, bsc#1120470, libcaca-variable-type.patch] * Tue Jan 30 2018 davejplaterAATTgmail.com- Deleted _service and use spec file to download git version.- Shorten version field to joliet usable length.- Change python headers to allow bindings to build normally with python3.- Use %license for license document. * Tue Jan 23 2018 tchvatalAATTsuse.com- Drop the py2 bindings they fail to build using rpm macros and somehow ingnore LD_LIBRARY_PATH, anyway provide py3 variant and stick with that * Tue Jan 23 2018 tchvatalAATTsuse.com- Switch to git repack service in order to get all the latest fixes * like python3 porting of the bindings- Update to version 0.99.beta19+git20171002.da28e96: * img2text.c: fix width arg case in example * ruby: require \'caca\' instead of \'caca.so\' * Only fail the check-copyright test if more than 10 files are affected. * Try to run Coverity from Travis CI. * Add some missing breaks (thanks coverity) * Fix header copyright. * Fix a bug into the autorepeat trigger.- Refresh patches: * libcaca-ruby_am_cflags.patch * libcaca-ruby_vendor_install.patch * Mon Jan 22 2018 tchvatalAATTsuse.com- Fix URL- Mention github repo containing more changes- Format with spec-cleaner- Remove support for older distros lets stick with latest only- Remove for years disabled mono and java integration code snippets- Use python macros to build python instead of waiting for autotools- Convert to pkgconfig style dependencies * Fri Mar 11 2016 hguoAATTsuse.com- Require imlib2-loaders in caca-utils package. All of the utilities fail to load any image without the dependency. * Wed Sep 02 2015 dimstarAATTopensuse.org- Add libcaca-ncurses6.patch: defined against a function name never worked, so set_escdelay was actually never used. With curses 6.0, though, ESCDELAY is no longer \'a variable\', but a reference to a function, so we can\'t assign anything to it. We just assume that we always use a recent enough version of ncurses to have set_escdelay avaialble. * Fri Mar 20 2015 dvlaeevAATTsuse.com- Build without Mono by default coolo says: \"We don\'t want mono in Factory, if somebody needs it it should be set explicit (with_mono) per prjconf\" * Thu Mar 12 2015 dimstarAATTopensuse.org- Update libcaca-ruby_vendor_install.patch: Use RbConfig::CONFIG instead of Config::Config to be compatible with ruby 2.2. * Tue Feb 17 2015 p.drouandAATTgmail.com- Update to version 0.99beta19 * No changelog available- Remove automake-1.12.patch; fixed on upstream release * Thu Jan 15 2015 olafAATTaepfle.de- Remove __DATE__ usage from cacaclock
|
|
|