SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for libid3tag-debugsource-0.16.2-slfo.1.1.8.x86_64.rpm :

* Mon May 09 2022 christopheAATTkrop.fr- Update to 0.16.2
* Fix null pointer dereference in id3_ucs4_length (boo#1081962, CVE-2017-11550)- Drop id3_ucs4_length-sanity-check.patch. Merged upstream.
* Fri Apr 08 2022 manfred.hAATTgmx.net- Add id3_ucs4_length-sanity-check.patch as Patch0. The patch helps to avoid a segfault in programs using this library, such as minidlna and potentially others; for details see and
* Thu Dec 09 2021 rpmAATTfthiessen.de- Update to 0.16.1 from maintained fork by the Tenacity Audio Editor
* Merge various outstanding patches
* Upstream pkg-config file
* Use cmake for build and install cmake files- Drop merged fixes
* fix-build-with-gperf-3.1.diff
* libid3tag-0.15.1b-mb.diff
* libid3tag-automake-fix.dif
* libid3tag-gperf.dif
* libid3tag-noweak.dif
* libid3tag-optflags.patch
* libid3tag-unknown-encoding.patch
* libid3tag-utf16.patch
* libid3tag-visibility.patch
* Wed Feb 21 2018 kbabiochAATTsuse.com- Added libid3tag-utf16.patch: Fixed id3_utf16_deserialize() in utf16.c, which previously misparsed ID3v2 tags encoded in UTF-16 with an odd number of bytes, triggering an endless loop allocating memory until OOM leading to DoS. (CVE-2004-2779 bsc#1081959 CVE-2017-11551 bsc#1081961)- Added libid3tag-unknown-encoding.patch: Fixed the handling of unknown encodings when parsing ID3 tags. (CVE-2017-11550 bsc#1081962 CVE-2008-2109 bsc#387731)- Removed libid3tag-0.15.1b-fix_overflow.patch, since it is handled differently by libid3tag-utf16.patch already.
* Wed Oct 11 2017 lnusselAATTsuse.de- dont BuildRequire zypper to avoid unecessary dependency chain. Check for %suse_version instead.
* Thu May 11 2017 alarrosaAATTsuse.com- Add BuildRequires: zypper and use it to check for gperf version so the package builds with all versions of gperf (boo#1027205)
* Wed May 10 2017 alarrosaAATTsuse.com- Add fix-build-with-gperf-3.1.diff to fix build with gperf 3.1 which now uses size_t instead of unsigned int for the len parameter of the hash/lookup function (boo#1027205)
* Tue Jun 16 2015 mpluskalAATTsuse.com- Use url for source- Add baselibs.conf as source- Cleanup spec file with spec-cleaner
* Fri Nov 23 2012 jengelhAATTinai.de- Remove redundant tags/sections from specfile- Parallel build with %_smp_mflags- Employ shared library naming- Have makeinstall succeed on non-SUSE
* Thu Nov 22 2012 crrodriguezAATTopensuse.org- libid3tag-visibility.patch: Hide all symbols that are not part of the public API.- spec file: DO not inject bogus dependencies into the system via pkgconfig files.
* Sat Nov 19 2011 cooloAATTsuse.com- add libtool as buildrequire to avoid implicit dependency
* Tue Apr 12 2011 toddrme2178AATTgmail.com- Added 32bit compatibility libraries- Added BuildRequires: pkg-config (fixes RPMLINT warning)
* Thu May 08 2008 tiwaiAATTsuse.de- VUL-0: libid3tag overflow (CVE-2008-2109, bnc#387731)- don\'t install static and
*.la files- clean up spec file
* Thu Mar 29 2007 meissnerAATTsuse.de- zlib-devel to buildrequires
* Tue Oct 31 2006 meissnerAATTsuse.de- fixed configure.ac to accept more than 1 -O/-f option, added requires
* Wed Jan 25 2006 mlsAATTsuse.de- converted neededforbuild to BuildRequires
* Wed Jan 11 2006 tiwaiAATTsuse.de- compile with -fstack-protector.
* Mon Jul 05 2004 hvogelAATTsuse.de- add pgkconfig file
* Thu Feb 26 2004 tiwaiAATTsuse.de- updated to version 0.15.1b.- fixed memory allocation check.- fixed for autoreconf.
* Tue Jan 13 2004 tiwaiAATTsuse.de- build as non-root.
* Mon Aug 11 2003 tiwaiAATTsuse.de- fixed the handling of v2 tag.
* Thu Jul 03 2003 tiwaiAATTsuse.de- split from mad: version 0.15.0b.
  
ICM