Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package libX11 for openSUSE:Factory checked in at 2021-05-20 19:24:44 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libX11 (Old) and /work/SRC/openSUSE:Factory/.libX11.new.2988 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libX11" Thu May 20 19:24:44 2021 rev:30 rq:894113 version:1.7.1 Changes: -------- --- /work/SRC/openSUSE:Factory/libX11/libX11.changes 2020-11-26 23:11:49.976933997 +0100 +++ /work/SRC/openSUSE:Factory/.libX11.new.2988/libX11.changes 2021-05-20 19:25:04.881937322 +0200 @@ -1,0 +2,14 @@ +Tue May 18 15:57:02 UTC 2021 - Stefan Dirsch <[email protected]> + +- Update to version 1.7.1 + * security update for CVE-2021-31535 (bsc#1182506) +- supersedes U_CVE-2021-31535.patch + +------------------------------------------------------------------- +Mon May 17 09:45:43 UTC 2021 - Stefan Dirsch <[email protected]> + +- U_CVE-2021-31535.patch + * adds missing request length checks in libX11 (CVE-2021-31535, + bsc#1182506) + +------------------------------------------------------------------- Old: ---- libX11-1.7.0.tar.bz2 New: ---- libX11-1.7.1.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libX11.spec ++++++ --- /var/tmp/diff_new_pack.k62sHA/_old 2021-05-20 19:25:05.309935567 +0200 +++ /var/tmp/diff_new_pack.k62sHA/_new 2021-05-20 19:25:05.313935550 +0200 @@ -1,7 +1,7 @@ # # spec file for package libX11 # -# Copyright (c) 2020 SUSE LLC +# Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: libX11 -Version: 1.7.0 +Version: 1.7.1 Release: 0 Summary: Core X11 protocol client library License: MIT ++++++ libX11-1.7.0.tar.bz2 -> libX11-1.7.1.tar.bz2 ++++++ ++++ 8157 lines of diff (skipped) ++++++ p_xlib_skip_ext_env.diff ++++++ --- /var/tmp/diff_new_pack.k62sHA/_old 2021-05-20 19:25:06.665930006 +0200 +++ /var/tmp/diff_new_pack.k62sHA/_new 2021-05-20 19:25:06.665930006 +0200 @@ -2,9 +2,9 @@ =================================================================== --- src/QuExt.c.orig +++ src/QuExt.c -@@ -40,6 +40,20 @@ XQueryExtension( - xQueryExtensionReply rep; - register xQueryExtensionReq *req; +@@ -45,6 +45,20 @@ XQueryExtension( + if (strlen(name) >= USHRT_MAX) + return false; + if (name && strlen (name) < 256) + {
