Hello community, here is the log from the commit of package SDL2_image for openSUSE:Factory checked in at 2018-11-09 07:54:27 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/SDL2_image (Old) and /work/SRC/openSUSE:Factory/.SDL2_image.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "SDL2_image" Fri Nov 9 07:54:27 2018 rev:10 rq:647108 version:2.0.4 Changes: -------- --- /work/SRC/openSUSE:Factory/SDL2_image/SDL2_image.changes 2018-03-13 10:23:44.838396470 +0100 +++ /work/SRC/openSUSE:Factory/.SDL2_image.new/SDL2_image.changes 2018-11-09 07:54:36.583698060 +0100 @@ -1,0 +2,8 @@ +Wed Nov 7 20:56:03 UTC 2018 - Jan Engelhardt <[email protected]> + +- Update to new upstream release 2.0.4 + * Fixed memory issues in the XCF loader: + * CVE-2018-3839 boo#1089087 TALOS-2018-0521 + * CVE-2018-3977 boo#1114519 TALOS-2018-0645 + +------------------------------------------------------------------- Old: ---- SDL2_image-2.0.3.tar.gz New: ---- SDL2_image-2.0.4.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ SDL2_image.spec ++++++ --- /var/tmp/diff_new_pack.ak4Zoy/_old 2018-11-09 07:54:38.675695665 +0100 +++ /var/tmp/diff_new_pack.ak4Zoy/_new 2018-11-09 07:54:38.675695665 +0100 @@ -12,13 +12,13 @@ # license that conforms to the Open Source Definition (Version 1.9) # published by the Open Source Initiative. -# Please submit bugfixes or comments via http://bugs.opensuse.org/ +# Please submit bugfixes or comments via https://bugs.opensuse.org/ # Name: SDL2_image %define lname libSDL2_image-2_0-0 -Version: 2.0.3 +Version: 2.0.4 Release: 0 Summary: SDL2 image loading library License: Zlib ++++++ SDL2_image-2.0.3.tar.gz -> SDL2_image-2.0.4.tar.gz ++++++ /work/SRC/openSUSE:Factory/SDL2_image/SDL2_image-2.0.3.tar.gz /work/SRC/openSUSE:Factory/.SDL2_image.new/SDL2_image-2.0.4.tar.gz differ: char 5, line 1
