Hello community, here is the log from the commit of package libpng16 for openSUSE:Factory checked in at 2013-12-30 10:08:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libpng16 (Old) and /work/SRC/openSUSE:Factory/.libpng16.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libpng16" Changes: -------- --- /work/SRC/openSUSE:Factory/libpng16/libpng16.changes 2013-12-02 15:08:30.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.libpng16.new/libpng16.changes 2013-12-30 10:08:41.000000000 +0100 @@ -1,0 +2,19 @@ +Fri Dec 20 07:08:48 UTC 2013 - [email protected] + +- updated to 1.6.8: + Changed #ifdef PNG_HANDLE_AS_UNKNOWN_SUPPORTED in pngpread.c to + #ifdef PNG_SET_UNKNOWN_CHUNKS_SUPPORTED to be consistent with + what is in pngpriv.h. + Moved prototype for png_handle_unknown() in pngpriv.h outside of + the #ifdef PNG_SET_UNKNOWN_CHUNKS_SUPPORTED/#endif block. + Enabled WRITE_INVERT and WRITE_PACK in contrib/pngminim/encoder. + Fixed pngvalid 'fail' function declaration on the Intel C Compiler. + This reverts to the previous 'static' implementation and works round + the 'unused static function' warning by using PNG_UNUSED(). + Handle zero-length PLTE chunk or NULL palette with png_error() + instead of png_chunk_report(), which by default issues a warning + rather than an error, leading to later reading from a NULL pointer + (png_ptr->palette) in png_do_expand_palette(). This is CVE-2013-6954 + and VU#650142. + +------------------------------------------------------------------- Old: ---- libpng-1.6.7.tar.xz libpng-1.6.7.tar.xz.asc New: ---- libpng-1.6.8.tar.xz libpng-1.6.8.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libpng16.spec ++++++ --- /var/tmp/diff_new_pack.waCoVU/_old 2013-12-30 10:08:42.000000000 +0100 +++ /var/tmp/diff_new_pack.waCoVU/_new 2013-12-30 10:08:42.000000000 +0100 @@ -19,7 +19,7 @@ # %define major 1 %define minor 6 -%define micro 7 +%define micro 8 %define branch %{major}%{minor} %define libname libpng%{branch}-%{branch} ++++++ libpng-1.6.7.tar.xz -> libpng-1.6.8.tar.xz ++++++ ++++ 3681 lines of diff (skipped) -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
