Hello community, here is the log from the commit of package flash-player.3471 for openSUSE:12.3:NonFree:Update checked in at 2015-01-29 13:48:50 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:12.3:NonFree:Update/flash-player.3471 (Old) and /work/SRC/openSUSE:12.3:NonFree:Update/.flash-player.3471.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "flash-player.3471" Changes: -------- New Changes file: --- /dev/null 2014-12-25 22:38:16.200041506 +0100 +++ /work/SRC/openSUSE:12.3:NonFree:Update/.flash-player.3471.new/flash-player.changes 2015-01-29 13:48:51.000000000 +0100 @@ -0,0 +1,655 @@ +------------------------------------------------------------------- +Mon Jan 26 15:57:09 UTC 2015 - [email protected] + +- Security update to 11.2.202.440 (bsc#914463): + * APSA15-01, CVE-2015-0311 +- Update of flashplayer (executable binary) for i386 is not + available. Disabled! + +------------------------------------------------------------------- +Thu Jan 22 17:41:46 UTC 2015 - [email protected] + +- Security update to 11.2.202.438 (bsc#914333): + * APSB15-02, CVE-2015-0310 + +------------------------------------------------------------------- +Wed Jan 14 15:36:32 UTC 2015 - [email protected] + +- Security update to 11.2.202.429 (bsc#913057): + * APSB15-01, CVE-2015-0301, CVE-2015-0302, CVE-2015-0303, + CVE-2015-0304, CVE-2015-0305, CVE-2015-0306, CVE-2015-0307, + CVE-2015-0308, CVE-2015-0309. +- Disable flash player on machines without SSE2 (bnc#856386). +- Remove outdated README and keep only up-to-date readme.txt. + +------------------------------------------------------------------- +Thu Dec 11 15:39:55 UTC 2014 - [email protected] + +- Security update to 11.2.202.425 (bsc#909219): + * APSB14-27, CVE-2014-0580, CVE-2014-0587, CVE-2014-8443, + CVE-2014-9162, CVE-2014-9163, CVE-2014-9164 + +------------------------------------------------------------------- +Wed Nov 26 17:19:12 UTC 2014 - [email protected] + +- Security update to 11.2.202.424 (bnc#907257): + * APSB14-26, CVE-2014-8439 + +------------------------------------------------------------------- +Wed Nov 12 15:34:07 UTC 2014 - [email protected] + +- Security update to 11.2.202.418 (bnc#905032): + * APSB14-24, CVE-2014-0573, CVE-2014-0574, CVE-2014-0576, + CVE-2014-0577, CVE-2014-0581, CVE-2014-0582, CVE-2014-0583, + CVE-2014-0584, CVE-2014-0585, CVE-2014-0586, CVE-2014-0588, + CVE-2014-0589, CVE-2014-0590, CVE-2014-8437, CVE-2014-8438, + CVE-2014-8440, CVE-2014-8441, CVE-2014-8442 + +------------------------------------------------------------------- +Wed Oct 15 14:08:40 UTC 2014 - [email protected] + +- Security update to 11.2.202.411 (bnc#901334): + * APSB14-22, CVE-2014-0569 (ZDI-14-365), CVE-2014-0564, + CVE-2014-0558 + +------------------------------------------------------------------- +Tue Sep 9 18:29:24 UTC 2014 - [email protected] + +- Security update to 11.2.202.406 (bnc#895856): + * APSB14-21, CVE-2014-0547, CVE-2014-0548, CVE-2014-0549, + CVE-2014-0550, CVE-2014-0551, CVE-2014-0552, CVE-2014-0553, + CVE-2014-0554, CVE-2014-0555, CVE-2014-0556, CVE-2014-0557, + CVE-2014-0559 + +------------------------------------------------------------------- +Wed Aug 13 15:53:26 UTC 2014 - [email protected] + +- Security update to 11.2.202.400 (bnc#891688): + * APSB14-18, CVE-2014-0538, CVE-2014-0540, CVE-2014-0541, + CVE-2014-0542, CVE-2014-0543, CVE-2014-0544, CVE-2014-0545 + +------------------------------------------------------------------- +Wed Jul 9 14:31:51 UTC 2014 - [email protected] + +- Security update to 11.2.202.394 (bnc#886472): + * APSB14-17, CVE-2014-0537, CVE-2014-0539, CVE-2014-4671 +- License update (LICENSE -> Flash%20Player_14.0.pdf). + +------------------------------------------------------------------- +Wed Jun 11 19:13:21 UTC 2014 - [email protected] + +- Security update to 11.2.202.378 (bnc#882187, Redhat#1107822, + Redhat#1107823): + * APSB14-16, CVE-2014-0531, CVE-2014-0532, CVE-2014-0533, + CVE-2014-0534, CVE-2014-0535, CVE-2014-0536 +- Contents of flashplayer_11_sa.i386.tar.gz changed: + spec file updated, supplementary script (update.sh) updated. + Now it accepts both forms of this file seen in past. + +------------------------------------------------------------------- +Wed May 14 21:39:43 UTC 2014 - [email protected] + +- Security update to 11.2.202.359 (bnc#877649): + * APSB14-14, CVE-2014-0516, CVE-2014-0517, CVE-2014-0518, + CVE-2014-0519, CVE-2014-0520 + +------------------------------------------------------------------- +Tue Apr 29 15:34:46 UTC 2014 - [email protected] + +- Security update to 11.2.202.356 (bnc#875577): + * APSB14-13, CVE-2014-0515 + +------------------------------------------------------------------- +Thu Apr 10 13:45:36 UTC 2014 - [email protected] + +- Security update to 11.2.202.350: (bnc#872692) + * APSB14-09, CVE-2014-0506, CVE-2014-0507, CVE-2014-0508, + CVE-2014-0509 + +------------------------------------------------------------------- +Wed Mar 12 16:37:21 UTC 2014 - [email protected] + +- Security update to 11.2.202.346: (bnc#867808) + * APSB14-08, CVE-2014-0503, CVE-2013-0504 + +------------------------------------------------------------------- +Fri Feb 21 18:25:14 UTC 2014 - [email protected] + +- Security update to 11.2.202.341: (bnc#865021) + * APSB14-07, CVE-2014-0498 CVE-2014-0499 CVE-2014-0502 +- Contents of flashplayer_11_sa.i386.tar.gz changed back: + spec file updated, supplementary script (update.sh) updated. + +------------------------------------------------------------------- +Wed Feb 5 18:45:51 UTC 2014 - [email protected] + +- Security update to 11.2.202.336: (bnc#862288) + * APSB14-04, CVE-2014-0497 +- Contents of flashplayer_11_sa.i386.tar.gz changed: + spec file updated, supplementary script (update.sh) updated. + +------------------------------------------------------------------- +Wed Jan 15 19:12:15 UTC 2014 - [email protected] + +- Security update to 11.2.202.335: (bnc#858822) + * APSB14-02, CVE-2014-0491, CVE-2014-0492 + +------------------------------------------------------------------- +Thu Dec 12 18:07:46 UTC 2013 - [email protected] + +- Security update to 11.2.202.332: (bnc#854881) + * APSB13-28, CVE-2013-5331, CVE-2013-5332 + * Prevents possible remote code execution! + +------------------------------------------------------------------- +Wed Nov 13 19:51:26 UTC 2013 - [email protected] + +- Security update to 11.2.202.327: (bnc#850220) + * APSB13-26, CVE-2013-5329, CVE-2013-5330 +- Supplementary script (update.sh) update: + * Update to the new web pages layout. + * Use original .tar.gz files released by Adobe. + +------------------------------------------------------------------- +Thu Sep 12 16:27:37 UTC 2013 - [email protected] + +- Update to 11.2.202.310: (bnc#839897) + * APSB13-21, CVE-2013-3361, CVE-2013-3362, CVE-2013-3363, + CVE-2013-5324 + +------------------------------------------------------------------- +Wed Jul 10 14:37:53 UTC 2013 - [email protected] + +- Update to 11.2.202.297: (bnc#828810) + * APSB13-17, CVE-2013-3344, CVE-2013-3345, CVE-2013-3347 + +------------------------------------------------------------------- +Wed Jun 12 14:17:57 UTC 2013 - [email protected] + +- Update to 11.2.202.291: (bnc#824512) + * APSB13-16, CVE-2013-3343 + +------------------------------------------------------------------- +Wed May 15 14:08:22 UTC 2013 - [email protected] + +- Update to 11.2.202.285: (bnc#819916) + * APSB13-14, CVE-2013-2728, CVE-2013-3324, CVE-2013-3325, + CVE-2013-3326, CVE-2013-3327, CVE-2013-3328, CVE-2013-3329, + CVE-2013-3330, CVE-2013-3331, CVE-2013-3332, CVE-2013-3333, + CVE-2013-3334, CVE-2013-3335 + +------------------------------------------------------------------- +Wed Apr 10 13:19:35 UTC 2013 - [email protected] + +- Update to 11.2.202.280: (bnc#814635) + * APSB13-11, CVE-2013-1378, CVE-2013-1379, CVE-2013-1380, + CVE-2013-2555 + +------------------------------------------------------------------- +Tue Mar 12 17:42:12 UTC 2013 - [email protected] + +- Update to 11.2.202.275: (bnc#808973) + * APSB13-09, CVE-2013-0646, CVE-2013-0650, CVE-2013-1371, + CVE-2013-1375 + +------------------------------------------------------------------- +Wed Feb 27 16:06:23 UTC 2013 - [email protected] + ++++ 458 more lines (skipped) ++++ between /dev/null ++++ and /work/SRC/openSUSE:12.3:NonFree:Update/.flash-player.3471.new/flash-player.changes New: ---- Flash%20Player_14.0.pdf desktop.diff flash-player.changes flash-player.spec flashplayer.desktop flashplayer.png flashplayer_11.1.102.55_sa.x86_64.tar.bz2 flashplayer_11.2.202.438_sa.i386.tar.gz install_flash_player_11.2.202.440_linux.i386.tar.gz install_flash_player_11.2.202.440_linux.x86_64.tar.gz kcm_adobe_flash_player.desktop.patch mms.cfg update.sh ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ flash-player.spec ++++++ # # spec file for package flash-player # # Copyright (c) 2013 SUSE LINUX Products GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed # upon. The license for this file, and modifications and additions to the # file, is the same license as for the pristine package itself (unless the # license for the pristine package is not an Open Source License, in which # case the license is the MIT License). An "Open Source License" is a # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. # Please submit bugfixes or comments via http://bugs.opensuse.org/ # %define build_standalone 1 Name: flash-player Version: 11.2.202.440 Release: 0 Summary: Adobe Flash Plugin and Standalone Player License: NON-OSI-COMPLIANT(royalties) Group: Productivity/Networking/Web/Browsers Url: http://get.adobe.com/flashplayer/ %ifarch %ix86 Source0: install_flash_player_%{version}_linux.i386.tar.gz Source1: flashplayer_11.2.202.438_sa.i386.tar.gz %endif %ifarch x86_64 Source0: install_flash_player_%{version}_linux.x86_64.tar.gz Source1: flashplayer_11.1.102.55_sa.x86_64.tar.bz2 %endif # License referenced from http://www.adobe.com/legal/licenses-terms.html Source2: http://wwwimages.adobe.com/content/dam/Adobe/en/legal/licenses-terms/pdf/Flash%20Player_14.0.pdf Source4: flashplayer.desktop Source5: flashplayer.png Source6: mms.cfg Source99: update.sh NoSource: 99 # PATCH-FIX-OPENSUSE desktop.diff -- Fix desktop file to be GNOME compatible Patch0: desktop.diff # PATCH-FIX-OPENSUSE kcm_adobe_flash_player.desktop.patch [email protected] -- Make the KCM module X-KDE-System-Settings-Parent-Category entry compatible with newer KDE versions Patch1: kcm_adobe_flash_player.desktop.patch %if 0%{?suse_version} > 1100 BuildRequires: kde4-filesystem %endif %if 0%{?suse_version} BuildRequires: update-desktop-files %endif ## flash player dynamically opens that one and segfaults if not available (2008-11-12) #%ifarch %ix86 #Requires: libasound.so.2 #Requires: libcurl.so.4 #%endif #%ifarch x86_64 #Requires: libasound.so.2()(64bit) #Requires: libcurl.so.4()(64bit) #%endif Provides: flash-plugin = %{version} %if 0%{?suse_version} >= 1110 # flash 10 does not need libflashsupport and using it can cause device conflicts # just let flash talk with the default alsa plugin - bnc#539656 Provides: libflashsupport = 1.2 Obsoletes: libflashsupport <= 1.2 %ifarch x86_64 Provides: libflashsupport-32bit = 1.2 Obsoletes: libflashsupport-32bit <= 1.2 %endif %endif Provides: netscape-plugins Obsoletes: netscape-plugins BuildRoot: %{_tmppath}/%{name}-%{version}-build ExclusiveArch: %ix86 x86_64 %if 0%{!?_kde4_libdir:1} %define _kde4_libdir %{_libdir} %endif %if 0%{!?_kde4_datadir:1} %define _kde4_datadir %{_datadir} %endif %if 0%{!?_kde4_sharedir:1} %define _kde4_sharedir %{_kde4_datadir}/kde4 %endif %if 0%{!?_kde4_modulesdir:1} %define _kde4_modulesdir %{_kde4_libdir}/kde4 %endif %if 0%{!?_kde4_servicesdir:1} %define _kde4_servicesdir %{_kde4_sharedir}/services %endif %description This package contains Adobe's Flash Plugin for the supported Web browsers in addition to a standalone flash player application. %if 0%{?suse_version} > 1100 %package gnome Summary: Adobe Flash Plugin and Standalone Player Settings Group: Productivity/Networking/Web/Browsers Requires: %{name} = %{version} Supplements: packageand(gnome-session:flash-player) %description gnome This package contains Adobe's Flash Plugin Settings for the GNOME desktop. %package kde4 Summary: Adobe Flash Plugin and Standalone Player Settings Group: Productivity/Networking/Web/Browsers Requires: %{name} = %{version} Supplements: packageand(kdebase4-session:flash-player) %kde4_runtime_requires %description kde4 This package contains Adobe's Flash Plugin Settings for the KDE 4 desktop. %endif %prep %setup -q -c %{name}-%{version} -a 0 -b 1 %patch0 %patch1 cp %{SOURCE2} . mkdir EULA mv Flash%20Player_14.0.pdf EULA/Flash\ Player_14.0.pdf %build %install install -Dpm 0755 libflashplayer.so %{buildroot}%{_libdir}/browser-plugins/libflashplayer.so # bnc#761975 #install -m 644 -D %{SOURCE6} %{buildroot}/etc/adobe/mms.cfg mkdir -p %{buildroot}%{_datadir}/icons rm -rf usr/share/icons/hicolor/24x24 %if 0%{?suse_version} <= 1100 rm -rf usr/share/icons/hicolor/*/apps/flash-player-properties.png %endif cp -a usr/share/icons/* %{buildroot}%{_datadir}/icons %if 0%{?suse_version} > 1100 # KDE frontend install -Dpm 0755 usr/%{_lib}/kde4/kcm_adobe_flash_player.so %{buildroot}%{_kde4_modulesdir}/kcm_adobe_flash_player.so install -Dpm 0644 usr/share/kde4/services/kcm_adobe_flash_player.desktop %{buildroot}%{_kde4_servicesdir}/kcm_adobe_flash_player.desktop # GNOME frontend install -Dpm 0755 usr/bin/flash-player-properties %{buildroot}%{_bindir}/flash-player-properties install -Dpm 0644 usr/share/applications/flash-player-properties.desktop %{buildroot}%{_datadir}/applications/flash-player-properties.desktop %endif %if %build_standalone %if 0%{?suse_version} > 1030 %ifarch none if test -f install_flash_player_linux_sa/flashplayer ; then install -Dpm 0755 install_flash_player_linux_sa/flashplayer %{buildroot}%{_bindir}/flashplayer else install -Dpm 0755 flashplayer %{buildroot}%{_bindir}/flashplayer fi install -Dpm 0644 %{SOURCE4} %{buildroot}%{_datadir}/applications/flashplayer.desktop install -Dpm 0644 %{SOURCE5} %{buildroot}%{_datadir}/pixmaps/flashplayer.png %suse_update_desktop_file flashplayer %endif %endif %endif %if 0%{?suse_version} > 1100 %suse_update_desktop_file flash-player-properties %endif %post # This is an ugly hack: flash-player hard-requires SSE2. rpm nor zypp can # limit installation to SSE2 equipped systems only. We have to choose one # from two bad things: Install and let it crash or install and # deliberately break it. We do the second here. (bnc856386). if ! grep -q '^flags.*sse2' /proc/cpuinfo ; then rm %{_libdir}/browser-plugins/libflashplayer.so %if 0%{?suse_version} > 1030 %ifarch none rm %{_bindir}/flashplayer %endif %endif echo >&2 "Flash Player requires CPU with SSE2. It cannot work on your system." echo >&2 "Please uninstall it!" fi %files %defattr(-,root,root,-) %doc readme.txt EULA %{_libdir}/browser-plugins/libflashplayer.so #/etc/adobe/mms.cfg #%dir /etc/adobe %if 0%{?suse_version} > 1020 %{_datadir}/icons/hicolor/*x*/apps/flash-player-properties.png %endif %if %build_standalone %if 0%{?suse_version} > 1030 %ifarch none %{_bindir}/flashplayer %{_datadir}/applications/flashplayer.desktop %{_datadir}/pixmaps/flashplayer.png %endif %endif %endif %if 0%{?suse_version} > 1100 %files gnome %defattr(-,root,root,-) %{_bindir}/flash-player-properties %{_datadir}/applications/flash-player-properties.desktop %files kde4 %defattr(-,root,root,-) %{_kde4_modulesdir}/kcm_adobe_flash_player.so %{_kde4_servicesdir}/kcm_adobe_flash_player.desktop %endif %changelog ++++++ desktop.diff ++++++ --- usr/share/applications/flash-player-properties.desktop +++ usr/share/applications/flash-player-properties.desktop @@ -1,5 +1,6 @@ [Desktop Entry] Name=Adobe Flash Player +GenericName=Adobe Flash Player Settings Comment=Preferences for Adobe Flash Player Comment[bg]=Настройки за Adobe Flash Player Comment[ca]=Preferències quant a la Adobe Flash Player @@ -20,5 +21,5 @@ Terminal=false Type=Application StartupNotify=true -Categories=Settings;GNOME;GTK;X-GNOME-PersonalSettings; +Categories=Settings;Network;WebBrowser;GNOME;GTK;X-GNOME-PersonalSettings; NotShowIn=KDE; ++++++ flashplayer.desktop ++++++ [Desktop Entry] Type=Application Encoding=UTF-8 Name=FlashPlayer GenericName=Flash Standalone Player Comment=Flash Standalone Player Icon=flashplayer Exec=flashplayer Terminal=false Categories=GTK;Application;AudioVideo;Audio;Video;Player; MimeType=application/x-shockwave-flash; ++++++ kcm_adobe_flash_player.desktop.patch ++++++ --- usr/share/kde4/services/kcm_adobe_flash_player.desktop.orig 2011-08-03 09:35:44.000000000 +0300 +++ usr/share/kde4/services/kcm_adobe_flash_player.desktop 2011-08-27 22:00:25.800000030 +0300 @@ -8,7 +8,7 @@ X-KDE-Library=kcm_adobe_flash_player X-KDE-ParentApp=kcontrol -X-KDE-System-Settings-Parent-Category=personal +X-KDE-System-Settings-Parent-Category=personal-information X-KDE-Weight=10 Name=Adobe Flash Player ++++++ mms.cfg ++++++ EnableLinuxHWVideoDecode=1 ++++++ update.sh ++++++ #!/bin/bash # vim: sw=4 et t=$(mktemp -d XXXXXXX) set -e pushd $t &>/dev/null tar xf ../install_flash_player_11*_linux.i386.tar.gz libflashplayer.so md5sum libflashplayer.so > ORIG_FLASH rm libflashplayer.so # fetch the current download url download_url=$(curl -s 'http://get.adobe.com/flashplayer/download/?installer=Flash_Player_11.2_for_other_Linux_%28.tar.gz%29_32-bit&standalone=1' | egrep -o 'http:\/\/fpdownload.macromedia.com\/get\/flashplayer\/pdc\/11.*\/install_flash_player_11_linux.i386.tar.gz') echo "Trying download $download_url"; wget $download_url tar xf install_flash_player_11_linux.i386.tar.gz libflashplayer.so md5sum libflashplayer.so > NEW_FLASH if cmp -s ORIG_FLASH NEW_FLASH; then echo "no new update available" else echo "*** NEW flashplugin UPDATE AVAILABLE!" version=$(strings libflashplayer.so | grep "LNX 11," | cut -d' ' -f2 | sed -e 's#,#.#g') echo "new version is $version" download_url=$(echo $download_url | sed -e 's,i386,ARCH,') for arch in i386 x86_64; do wget -q $(echo $download_url | sed -e "s,ARCH,$arch,") mv install_flash_player_11_linux.$arch.tar.gz install_flash_player_${version}_linux.$arch.tar.gz mv install_flash_player_${version}_linux.$arch.tar.gz .. done sed -i -e "s,Version:.*,Version: $version," ../flash-player.spec ( cd ..; osc vc -m "Security update to $version (bsc#XXXXXX):" ) fi for arch in i386; do if tar tf ../flashplayer_*_sa.$arch.tar.gz | grep -q -F install_flash_player_linux_sa/flashplayer ; then tar xf ../flashplayer_*_sa.$arch.tar.gz install_flash_player_linux_sa/flashplayer md5sum install_flash_player_linux_sa/flashplayer > ORIG_FLASH rm -r install_flash_player_linux_sa else tar xf ../flashplayer_*_sa.$arch.tar.gz flashplayer md5sum flashplayer > ORIG_FLASH rm flashplayer fi wget http://fpdownload.macromedia.com/pub/flashplayer/updaters/11/flashplayer_11_sa.$arch.tar.gz if tar xvf flashplayer_11_sa.$arch.tar.gz | grep -q -F install_flash_player_linux_sa/flashplayer ; then md5sum install_flash_player_linux_sa/flashplayer > NEW_FLASH else md5sum flashplayer > NEW_FLASH fi if cmp -s ORIG_FLASH NEW_FLASH; then echo "no new update available" else echo "*** NEW flashplayer UPDATE AVAILABLE!" if test -f install_flash_player_linux_sa/flashplayer ; then version=$(strings install_flash_player_linux_sa/flashplayer | grep "LNX 11," | cut -d' ' -f2 | sed -e 's#,#.#g') else version=$(strings flashplayer | grep "LNX 11," | cut -d' ' -f2 | sed -e 's#,#.#g') fi echo "new version is $version" mv flashplayer_11_sa.$arch.tar.gz flashplayer_${version}_sa.$arch.tar.gz mv flashplayer_${version}_sa.$arch.tar.gz .. fi done popd &>/dev/null rm -rf $t -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
