Hello community, here is the log from the commit of package libXfont for openSUSE:Factory checked in at 2014-07-13 14:06:00 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libXfont (Old) and /work/SRC/openSUSE:Factory/.libXfont.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libXfont" Changes: -------- --- /work/SRC/openSUSE:Factory/libXfont/libXfont.changes 2014-06-02 07:04:11.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.libXfont.new/libXfont.changes 2014-07-13 14:06:38.000000000 +0200 @@ -1,0 +2,37 @@ +Wed Jul 9 12:24:00 UTC 2014 - [email protected] + +- Update to version 1.4.99.901 + * This is a release candidate of libXfont 1.5.0 - please test and + report any issues found, so we can have a final/stable release + soon to go with the xorg-server 1.16 release. + * *IMPORTANT* This release works with fontsproto 2.1.3 or later + and is for use with the upcoming release of xorg-server 1.16 + and later. It will *not* work with older versions of + fontsproto or xorg-server (prior to 1.15.99.901). + * This release includes all the security & bug fixes from + libXfont 1.4.8, plus these additional significant changes: + - Support for SNF font format (deprecated since X11R5 in 1991) + is now disabled by default at build time. For now, adding + --enable-snfformat to configure flags may re-enable it, but + support may be fully removed in future libXfont releases. + - Many compiler warnings cleaned up, including some which + required API changes around type declarations (const char *, + Pointer, etc.). + - README file expanded to explain all the different formats/ + options. +- supersedes patches: + * U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch + * U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch + * U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch + * U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch + * U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch + * U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch + * U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch + * U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch + * U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch + * U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patch + * U_0011-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch + * U_0012-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch +- added baselibs.conf as source to spec file + +------------------------------------------------------------------- Old: ---- U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patch U_0011-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch U_0012-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch libXfont-1.4.7-a96cc1f.tar.bz2 New: ---- libXfont-1.4.99.901.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libXfont.spec ++++++ --- /var/tmp/diff_new_pack.TJjWGR/_old 2014-07-13 14:06:39.000000000 +0200 +++ /var/tmp/diff_new_pack.TJjWGR/_new 2014-07-13 14:06:39.000000000 +0200 @@ -18,7 +18,7 @@ Name: libXfont %define lname libXfont1 -Version: 1.4.7 +Version: 1.4.99.901 Release: 0 Summary: X font handling library for server and utilities License: MIT @@ -27,19 +27,8 @@ #Git-Clone: git://anongit.freedesktop.org/xorg/lib/libXfont #Git-Web: http://cgit.freedesktop.org/xorg/lib/libXfont/ -Source: %{name}-%{version}-a96cc1f.tar.bz2 -Patch1: U_0001-CVE-2014-0209-integer-overflow-of-realloc-size-in-Fo.patch -Patch2: U_0002-CVE-2014-0209-integer-overflow-of-realloc-size-in-le.patch -Patch3: U_0003-CVE-2014-0210-unvalidated-length-in-_fs_recv_conn_se.patch -Patch4: U_0004-CVE-2014-0210-unvalidated-lengths-when-reading-repli.patch -Patch5: U_0005-CVE-2014-0211-Integer-overflow-in-fs_get_reply-_fs_s.patch -Patch6: U_0006-CVE-2014-0210-unvalidated-length-fields-in-fs_read_q.patch -Patch7: U_0007-CVE-2014-0211-integer-overflow-in-fs_read_extent_inf.patch -Patch8: U_0008-CVE-2014-0211-integer-overflow-in-fs_alloc_glyphs.patch -Patch9: U_0009-CVE-2014-0210-unvalidated-length-fields-in-fs_read_e.patch -Patch10: U_0010-CVE-2014-0210-unvalidated-length-fields-in-fs_read_g.patch -Patch11: U_0011-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch -Patch12: U_0012-CVE-2014-0210-unvalidated-length-fields-in-fs_read_l.patch +Source: %{name}-%{version}.tar.bz2 +Source1: baselibs.conf BuildRoot: %{_tmppath}/%{name}-%{version}-build #git#BuildRequires: autoconf >= 2.60, automake, libtool BuildRequires: pkgconfig @@ -93,18 +82,6 @@ %prep %setup -q -%patch1 -p1 -%patch2 -p1 -%patch3 -p1 -%patch4 -p1 -%patch5 -p1 -%patch6 -p1 -%patch7 -p1 -%patch8 -p1 -%patch9 -p1 -%patch10 -p1 -%patch11 -p1 -%patch12 -p1 %build %configure --disable-static ++++++ libXfont-1.4.7-a96cc1f.tar.bz2 -> libXfont-1.4.99.901.tar.bz2 ++++++ ++++ 30360 lines of diff (skipped) -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
