commit atril for openSUSE:Factory

Tue, 23 Jan 2024 13:56:54 -0800 

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package atril for openSUSE:Factory checked 
in at 2024-01-23 22:56:28
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/atril (Old)
 and      /work/SRC/openSUSE:Factory/.atril.new.16006 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "atril"

Tue Jan 23 22:56:28 2024 rev:34 rq:1140782 version:1.26.1

Changes:
--------
--- /work/SRC/openSUSE:Factory/atril/atril.changes      2023-05-16 
14:27:27.295751756 +0200
+++ /work/SRC/openSUSE:Factory/.atril.new.16006/atril.changes   2024-01-23 
22:56:37.501469896 +0100
@@ -1,0 +2,10 @@
+Tue Jan  1 07:42:35 UTC 2024 - Mike Gabriel <[email protected]>
+
+- Fix CVE-2023-51698: comics: Use libarchive to unpack documents.
+  * Add patch: atril-Use-a-blank-line-at-most.patch (required to let
+    the actual CVE fix patch apply). Cherry-picked from upstream's
+    1.26 branch.
+  * Add patch: atril-comics-Use-libarchive-to-unpack-documents.patch.
+    Fix for CVE-2023-51698. Cherry-picked from upstream's 1.26 branch.
+
+-------------------------------------------------------------------

New:
----
  atril-Use-a-blank-line-at-most.patch
  atril-comics-Use-libarchive-to-unpack-documents.patch

BETA DEBUG BEGIN:
  New:- Fix CVE-2023-51698: comics: Use libarchive to unpack documents.
  * Add patch: atril-Use-a-blank-line-at-most.patch (required to let
    the actual CVE fix patch apply). Cherry-picked from upstream's
  New:    1.26 branch.
  * Add patch: atril-comics-Use-libarchive-to-unpack-documents.patch.
    Fix for CVE-2023-51698. Cherry-picked from upstream's 1.26 branch.
BETA DEBUG END:

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ atril.spec ++++++
--- /var/tmp/diff_new_pack.KNRiUf/_old  2024-01-23 22:56:38.653512017 +0100
+++ /var/tmp/diff_new_pack.KNRiUf/_new  2024-01-23 22:56:38.657512163 +0100
@@ -28,6 +28,10 @@
 Group:          Productivity/Office/Other
 URL:            https://mate-desktop.org/
 Source:         
https://pub.mate-desktop.org/releases/%{_version}/%{name}-%{version}.tar.xz
+# PATCH-FIX-UPSTREAM atril-Use-a-blank-line-at-most.patch [email protected] 
-- Needed, so that patch1 applies
+Patch0:         atril-Use-a-blank-line-at-most.patch
+# PATCH-FIX-UPSTREAM atril-comics-Use-libarchive-to-unpack-documents.patch 
[email protected] -- Fix CVE-2023-51698
+Patch1:         atril-comics-Use-libarchive-to-unpack-documents.patch
 BuildRequires:  fdupes
 BuildRequires:  gcc-c++
 BuildRequires:  mate-common >= %{_version}
@@ -169,6 +173,8 @@
 
 %prep
 %setup -q
+%patch0 -p1
+%patch1 -p1
 
 %build
 NOCONFIGURE=1 mate-autogen

++++++ atril-Use-a-blank-line-at-most.patch ++++++
++++ 2036 lines (skipped)

++++++ atril-comics-Use-libarchive-to-unpack-documents.patch ++++++
++++ 1815 lines (skipped)

Reply via email to