Hello community,

here is the log from the commit of package gdk-pixbuf for openSUSE:Factory 
checked in at 2017-08-10 13:44:05
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/gdk-pixbuf (Old)
 and      /work/SRC/openSUSE:Factory/.gdk-pixbuf.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "gdk-pixbuf"

Thu Aug 10 13:44:05 2017 rev:62 rq:511904 version:2.36.7

Changes:
--------
--- /work/SRC/openSUSE:Factory/gdk-pixbuf/gdk-pixbuf.changes    2017-07-17 
09:00:22.871001037 +0200
+++ /work/SRC/openSUSE:Factory/.gdk-pixbuf.new/gdk-pixbuf.changes       
2017-08-10 13:44:07.252819229 +0200
@@ -1,0 +2,14 @@
+Tue Jul 18 17:10:16 UTC 2017 - zai...@opensuse.org
+
+- Update to version 2.36.7:
+  + Add tests for recent bug fixes.
+  + ico, bmp, tiff: avoid integer overflows (bgo#776040,
+    bgo#776694, bgo#780269).
+  + jpeg: error out if wrong # of channels (bgo#784866).
+  + Misc.bugfixes (bgo#784583).
+  + Support mimetypes: image/wmf, image/emf.
+  + Updated translations.
+- Drop gdk-pixbuf-cve-2017-2862-jpeg-channels.patch and
+  gdk-pixbuf-cve-2017-2870-tiff-mul-overflow.patch: Fixed upstream.
+
+-------------------------------------------------------------------

Old:
----
  gdk-pixbuf-2.36.6.tar.xz
  gdk-pixbuf-cve-2017-2862-jpeg-channels.patch
  gdk-pixbuf-cve-2017-2870-tiff-mul-overflow.patch

New:
----
  gdk-pixbuf-2.36.7.tar.xz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ gdk-pixbuf.spec ++++++
--- /var/tmp/diff_new_pack.eEV0tw/_old  2017-08-10 13:44:08.496644133 +0200
+++ /var/tmp/diff_new_pack.eEV0tw/_new  2017-08-10 13:44:08.500643570 +0200
@@ -20,7 +20,7 @@
 %define gdk_pixbuf_binary_version 2.10.0
 
 Name:           gdk-pixbuf
-Version:        2.36.6
+Version:        2.36.7
 Release:        0
 Summary:        An image loading library
 License:        LGPL-2.1+
@@ -32,10 +32,6 @@
 Source99:       baselibs.conf
 # PATCH-FIX-UPSTREAM u_contrib-gdk-pixbuf-xlib-Fix-rgb888amsb.patch boo#929462 
bsc#1010497 bgo#775896 msta...@suse.com -- Fix RGBA conversion for big endian 
X11 environments
 Patch0:         u_contrib-gdk-pixbuf-xlib-Fix-rgb888amsb.patch
-# PATCH-FIX-UPSTREAM gdk-pixbuf-cve-2017-2862-jpeg-channels.patch bsc#1048289 
bgo#784866 CVE-2017-2862 h...@suse.com -- fix heap overwrite when JPEG channels 
is not 3 or 4.
-Patch1:         gdk-pixbuf-cve-2017-2862-jpeg-channels.patch
-# PATCH-FIX-UPSTREAM gdk-pixbuf-cve-2017-2870-tiff-mul-overflow.patch 
bgo#780269 CVE-2017-2870 h...@suse.com -- fix reliance on undefined behavior to 
handle integer overflows.
-Patch2:         gdk-pixbuf-cve-2017-2870-tiff-mul-overflow.patch
 BuildRequires:  libjasper-devel
 BuildRequires:  libjpeg-devel
 BuildRequires:  libtiff-devel
@@ -121,8 +117,6 @@
 translation-update-upstream
 %endif
 %patch0 -p1
-%patch1 -p1
-%patch2 -p1
 %if "%_lib" == "lib64"
 cp -a %{S:2} .
 %endif

++++++ gdk-pixbuf-2.36.6.tar.xz -> gdk-pixbuf-2.36.7.tar.xz ++++++
++++ 12179 lines of diff (skipped)


Reply via email to