Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package colord for openSUSE:Factory checked
in at 2022-09-21 14:40:06
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/colord (Old)
and /work/SRC/openSUSE:Factory/.colord.new.2083 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "colord"
Wed Sep 21 14:40:06 2022 rev:87 rq:1004766 version:1.4.6
Changes:
--------
--- /work/SRC/openSUSE:Factory/colord/colord.changes 2022-03-28
17:01:16.177027120 +0200
+++ /work/SRC/openSUSE:Factory/.colord.new.2083/colord.changes 2022-09-21
14:40:33.165442177 +0200
@@ -1,0 +2,6 @@
+Fri Sep 16 15:20:32 UTC 2022 - Michael Gorse <mgo...@suse.com>
+
+- Add colord-CVE-2021-42523.patch: fix a small memory leak on db
+ open failure (boo#1202802 CVE-2021-42523).
+
+-------------------------------------------------------------------
New:
----
colord-CVE-2021-42523.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ colord.spec ++++++
--- /var/tmp/diff_new_pack.5ro20t/_old 2022-09-21 14:40:33.761443830 +0200
+++ /var/tmp/diff_new_pack.5ro20t/_new 2022-09-21 14:40:33.765443841 +0200
@@ -33,6 +33,8 @@
Source3: usr.lib.colord
Source4: colord.sysusers
Source99: baselibs.conf
+# PATCH-FIX-UPSTREAM colord-CVE-2021-42523.patch boo#1202802 mgo...@suse.com
-- fix a small memory leak on db open failure.
+Patch1: colord-CVE-2021-42523.patch
BuildRequires: argyllcms
BuildRequires: docbook5-xsl-stylesheets
++++++ colord-CVE-2021-42523.patch ++++++
>From 1452a975ecae14299fb27d41522dfd32305481ce Mon Sep 17 00:00:00 2001
From: Richard Hughes <rich...@hughsie.com>
Date: Wed, 13 Apr 2022 14:21:32 +0100
Subject: [PATCH] trivial: Fix a small memory leak on db open failure
---
src/cd-mapping-db.c | 3 +--
src/cd-profile-db.c | 2 +-
2 files changed, 2 insertions(+), 3 deletions(-)
diff --git a/src/cd-mapping-db.c b/src/cd-mapping-db.c
index 7a3df35..996f07e 100644
--- a/src/cd-mapping-db.c
+++ b/src/cd-mapping-db.c
@@ -67,7 +67,7 @@ cd_mapping_db_open (CdMappingDb *mdb,
GError **error)
{
CdMappingDbPrivate *priv = GET_PRIVATE (mdb);
- gchar *error_msg = NULL;
+ g_autofree gchar *error_msg = NULL;
gint rc;
g_autofree gchar *path = NULL;
@@ -116,7 +116,6 @@ cd_mapping_db_open (CdMappingDb *mdb,
CD_CLIENT_ERROR_INTERNAL,
"Cannot open mapping database: %s",
error_msg);
- sqlite3_free (error_msg);
return FALSE;
}
}
diff --git a/src/cd-profile-db.c b/src/cd-profile-db.c
index 5661d09..57ab864 100644
--- a/src/cd-profile-db.c
+++ b/src/cd-profile-db.c
@@ -48,7 +48,7 @@ cd_profile_db_load (CdProfileDb *pdb,
{
CdProfileDbPrivate *priv = GET_PRIVATE (pdb);
const gchar *statement;
- gchar *error_msg = NULL;
+ g_autofree gchar *error_msg = NULL;
gint rc;
g_autofree gchar *path = NULL;
--
2.37.3
