Hello community, here is the log from the commit of package libqt4 for openSUSE:11.3 checked in at Thu Sep 8 18:07:09 CEST 2011.
-------- --- old-versions/11.3/UPDATES/all/libqt4/libqt4-devel-doc-data.changes 2011-08-19 16:36:46.000000000 +0200 +++ 11.3/libqt4/libqt4-devel-doc-data.changes 2011-09-05 23:32:21.538877198 +0200 @@ -1,0 +2,5 @@ +Mon Sep 5 23:25:15 CEST 2011 - [email protected] + +- add fix for single byte overflow (bnc#714984, CVE-2011-3193) + +------------------------------------------------------------------- libqt4-devel-doc.changes: same change libqt4-sql-plugins.changes: same change libqt4.changes: same change calling whatdependson for 11.3-i586 New: ---- harfbuzz-crash.diff ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libqt4-devel-doc-data.spec ++++++ --- /var/tmp/diff_new_pack.P6N2H0/_old 2011-09-08 18:06:34.000000000 +0200 +++ /var/tmp/diff_new_pack.P6N2H0/_new 2011-09-08 18:06:34.000000000 +0200 @@ -28,7 +28,7 @@ # COMMON-VERSION-BEGIN # COMMON-VERSION-BEGIN Version: 4.6.3 -Release: 2.<RELEASE3> +Release: 2.<RELEASE4> %define base_name libqt4 %define x11_free -everywhere-opensource-src- %define rversion 4.6.3 @@ -84,6 +84,7 @@ Patch122: fix-font-fallback.diff Patch123: tiff-samples-reader-crash.diff Patch124: qtbug-15295-qfiledialog-system-filter-regression.diff +Patch125: harfbuzz-crash.diff BuildRoot: %{_tmppath}/%{name}-%{version}-build %define common_options --opensource -fast -no-separate-debug-info -shared -xkb -xrender -xcursor -dbus-linked -xfixes -xrandr -xinerama -sm -no-nas-sound -no-rpath -system-libjpeg -system-libpng -accessibility -cups -stl -nis -system-zlib -qt-gif -prefix /usr -L %_libdir -libdir %_libdir -docdir %_docdir/%{base_name} -examplesdir %_libdir/qt4/examples -demosdir %_libdir/qt4/demos -plugindir %plugindir -translationdir /usr/share/qt4/translations -iconv -sysconfdir /etc/settings -datadir /usr/share/qt4/ -no-pch -reduce-relocations -exceptions -system-libtiff -glib -optimized-qmake -no-webkit -no-xmlpatterns -system-sqlite -qt3support -no-sql-mysql -xsync -xinput -gtkstyle %define check_config \ @@ -142,6 +143,7 @@ %patch122 %patch123 %patch124 +%patch125 # be sure not to use them rm -rf src/3rdparty/{libjpeg,freetype,libpng,zlib,libtiff} # COMMON-END libqt4-devel-doc.spec: same change libqt4-sql-plugins.spec: same change ++++++ libqt4.spec ++++++ --- /var/tmp/diff_new_pack.P6N2H0/_old 2011-09-08 18:06:34.000000000 +0200 +++ /var/tmp/diff_new_pack.P6N2H0/_new 2011-09-08 18:06:34.000000000 +0200 @@ -54,7 +54,7 @@ Obsoletes: libqt4-dbus-1 < 4.4.0 # COMMON-VERSION-BEGIN Version: 4.6.3 -Release: 2.<RELEASE3> +Release: 2.<RELEASE5> %define base_name libqt4 %define x11_free -everywhere-opensource-src- %define rversion 4.6.3 @@ -101,6 +101,7 @@ Patch122: fix-font-fallback.diff Patch123: tiff-samples-reader-crash.diff Patch124: qtbug-15295-qfiledialog-system-filter-regression.diff +Patch125: harfbuzz-crash.diff BuildRoot: %{_tmppath}/%{name}-%{version}-build %define common_options --opensource -fast -no-separate-debug-info -shared -xkb -xrender -xcursor -dbus-linked -xfixes -xrandr -xinerama -sm -no-nas-sound -no-rpath -system-libjpeg -system-libpng -accessibility -cups -stl -nis -system-zlib -qt-gif -prefix /usr -L %_libdir -libdir %_libdir -docdir %_docdir/%{base_name} -examplesdir %_libdir/qt4/examples -demosdir %_libdir/qt4/demos -plugindir %plugindir -translationdir /usr/share/qt4/translations -iconv -sysconfdir /etc/settings -datadir /usr/share/qt4/ -no-pch -reduce-relocations -exceptions -system-libtiff -glib -optimized-qmake -no-webkit -no-xmlpatterns -system-sqlite -qt3support -no-sql-mysql -xsync -xinput -gtkstyle %define check_config \ @@ -159,6 +160,7 @@ %patch122 %patch123 %patch124 +%patch125 # be sure not to use them rm -rf src/3rdparty/{libjpeg,freetype,libpng,zlib,libtiff} # COMMON-END ++++++ harfbuzz-crash.diff ++++++ commit 9ae6f2f9a57f0c3096d5785913e437953fa6775c Author: Jiang Jiang <[email protected]> Date: Mon Jul 18 08:49:32 2011 +0200 Check for buffer overflow in Lookup_MarkMarkPos That may cause crash in this function with certain fonts. Task-number: QTBUG-17238 Done-by: Alberto Garcia <[email protected]> Reviewed-by: Jiang Jiang --- src/3rdparty/harfbuzz/src/harfbuzz-gpos.c +++ src/3rdparty/harfbuzz/src/harfbuzz-gpos.c @@ -3012,6 +3012,9 @@ static HB_Error Lookup_MarkMarkPos( GPOS_Instance* gpi, j--; } + if ( i > buffer->in_pos ) + return HB_Err_Not_Covered; + error = _HB_OPEN_Coverage_Index( &mmp->Mark2Coverage, IN_GLYPH( j ), &mark2_index ); if ( error ) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
