Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package libdxfrw for openSUSE:Factory checked in at 2021-12-21 18:40:35 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libdxfrw (Old) and /work/SRC/openSUSE:Factory/.libdxfrw.new.2520 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libdxfrw" Tue Dec 21 18:40:35 2021 rev:10 rq:941689 version:1.0.1+git.20211110 Changes: -------- --- /work/SRC/openSUSE:Factory/libdxfrw/libdxfrw.changes 2021-05-08 22:08:45.169395667 +0200 +++ /work/SRC/openSUSE:Factory/.libdxfrw.new.2520/libdxfrw.changes 2021-12-21 18:41:01.573895092 +0100 @@ -1,0 +2,21 @@ +Mon Dec 20 08:43:27 UTC 2021 - [email protected] + +- Update to version 1.0.1+git.20211110: + * fixed heap use after free vulnerability CVE-2021-21900 + * minor improvements to dwg2dxf, formatting and message output on success + * fixed heap buffer overflow vulnerability CVE-2021-21899 + * dwg2dxf - enable debug output of libdxfrw by command line switch + * fixed out-of-bounds write vulnerability CVE-2021-21898 + * fixed please note section formatting + * updated README.md for LibreCAD_3 branch and sf.net successor + * fixed LibreCAD 2 issue #1371, read failed with binary DXF + * Use ununordered_map instead of map + * manual merge changes from LibreCAD2 + * and much more +- added + * 0001-fix-Vertex-ID-printout.patch +- removed (they are upstream) + * drw_header-fix-indentation-level.patch + * libdxfrw.pc.in-fix-expansion-and-include-path.patch + +------------------------------------------------------------------- Old: ---- drw_header-fix-indentation-level.patch libdxfrw-1.0.1+git.20200429.tar.xz libdxfrw.pc.in-fix-expansion-and-include-path.patch New: ---- 0001-fix-Vertex-ID-printout.patch libdxfrw-1.0.1+git.20211110.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libdxfrw.spec ++++++ --- /var/tmp/diff_new_pack.XtXB78/_old 2021-12-21 18:41:01.981895459 +0100 +++ /var/tmp/diff_new_pack.XtXB78/_new 2021-12-21 18:41:01.985895462 +0100 @@ -20,15 +20,14 @@ %define so_ver 1 Name: libdxfrw -Version: 1.0.1+git.20200429 +Version: 1.0.1+git.20211110 Release: 0 Summary: Library to read and write DXF files License: GPL-2.0-or-later Group: Development/Libraries/C and C++ URL: https://github.com/LibreCAD/libdxfrw/ Source0: %{name}-%{version}.tar.xz -Patch0: libdxfrw.pc.in-fix-expansion-and-include-path.patch -Patch1: drw_header-fix-indentation-level.patch +Patch0: 0001-fix-Vertex-ID-printout.patch BuildRequires: cmake BuildRequires: gcc-c++ BuildRequires: ninja @@ -66,7 +65,7 @@ %build %define __builder ninja %cmake -%make_jobs +%cmake_build %install %cmake_install ++++++ 0001-fix-Vertex-ID-printout.patch ++++++ From: Jiri Slaby <[email protected]> Date: Mon, 20 Dec 2021 09:54:14 +0100 Subject: fix "Vertex ID" printout Patch-mainline: Submitted pr#55 References: vertiex id debug print fix The compiler says: src/drw_entities.cpp:1690:9: warning: this 'if' clause does not guard... [-Wmisleading-indentation] 1690 | if (version > DRW::AC1021) //2010+ | ^~ And it is indeed right. There are curly braces missing. Fix that. Signed-off-by: Jiri Slaby <[email protected]> --- src/drw_entities.cpp | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/src/drw_entities.cpp b/src/drw_entities.cpp index b4f6cd02c68c..2c13c8797eba 100644 --- a/src/drw_entities.cpp +++ b/src/drw_entities.cpp @@ -1687,8 +1687,9 @@ bool DRW_Vertex::parseDwg(DRW::Version version, dwgBuffer *buf, duint32 bs, doub else endwidth = buf->getBitDouble(); bulge = buf->getBitDouble(); - if (version > DRW::AC1021) //2010+ + if (version > DRW::AC1021) { //2010+ DRW_DBG("Vertex ID: "); DRW_DBG(buf->getBitLong()); + } tgdir = buf->getBitDouble(); } else if (oType == 0x0B || oType == 0x0C || oType == 0x0D) { //PFACE flags = buf->getRawChar8(); //RLZ: EC unknown type -- 2.34.1 ++++++ _servicedata ++++++ --- /var/tmp/diff_new_pack.XtXB78/_old 2021-12-21 18:41:02.037895509 +0100 +++ /var/tmp/diff_new_pack.XtXB78/_new 2021-12-21 18:41:02.041895512 +0100 @@ -1,6 +1,6 @@ <servicedata> <service name="tar_scm"> <param name="url">git://github.com/LibreCAD/libdxfrw/</param> - <param name="changesrevision">16642a70cb8865742467f6bc1d8c3618deee8432</param></service></servicedata> + <param name="changesrevision">fcd977cc7f8f6cc7f012e5b72d33cf7d77b3fa69</param></service></servicedata> (No newline at EOF) ++++++ libdxfrw-1.0.1+git.20200429.tar.xz -> libdxfrw-1.0.1+git.20211110.tar.xz ++++++ ++++ 43755 lines of diff (skipped)
