Hello community, here is the log from the commit of package freerdp for openSUSE:Factory checked in at 2020-05-29 21:13:24 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/freerdp (Old) and /work/SRC/openSUSE:Factory/.freerdp.new.3606 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "freerdp" Fri May 29 21:13:24 2020 rev:42 rq:808914 version:2.1.1 Changes: -------- --- /work/SRC/openSUSE:Factory/freerdp/freerdp.changes 2020-05-09 19:49:52.384518284 +0200 +++ /work/SRC/openSUSE:Factory/.freerdp.new.3606/freerdp.changes 2020-05-29 21:13:29.970356185 +0200 @@ -1,0 +2,23 @@ +Wed May 20 15:14:52 UTC 2020 - Johannes Weberhofer <[email protected]> + +- Updated to release 2.1.1 + * CVE-2020-13396: GHSL-2020-100 OOB Read in ntlm_read_ChallengeMessage + * CVE-2020-13397: GHSL-2020-101 OOB Read in security_fips_decrypt due to uninitialized value + * CVE-2020-13398: GHSL-2020-102 OOB Write in crypto_rsa_common + * Enforce synchronous legacy RDP encryption count (#6156) + * Fixed some leaks and crashes missed in 2.1.0 + * Removed dynamic channel listener limits + * Lots of resource cleanup fixes (clang sanitizers) + * A couple of performance improvements + * Various small annoyances eliminated (typos, prefilled username for windows client, ...) + +- Removed freerdp-bug-6175.patch and freerdp-bug-6207.patch because included in upstream + +------------------------------------------------------------------- +Wed May 20 12:34:27 UTC 2020 - Johannes Weberhofer <[email protected]> + +- Added freerdp-bug-6205.patch to fix reading newline on certificate accept gh#FreeRDP/FreeRDP#6205 +- Added freerdp-bug-6175.patch to fix Certificate Checking Recently Broke gh#FreeRDP/FreeRDP#6148 +- Added freerdp-bug-6207.patch to fix Abort on first possible certificate validation error gh#FreeRDP/FreeRDP#6207 + +------------------------------------------------------------------- Old: ---- FreeRDP-2.1.0.tar.gz New: ---- FreeRDP-2.1.1.tar.gz freerdp-bug-6205.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ freerdp.spec ++++++ --- /var/tmp/diff_new_pack.SzZjtB/_old 2020-05-29 21:13:30.550357933 +0200 +++ /var/tmp/diff_new_pack.SzZjtB/_new 2020-05-29 21:13:30.554357945 +0200 @@ -27,13 +27,15 @@ %define _lto_cflags %{nil} %endif Name: freerdp -Version: 2.1.0 +Version: 2.1.1 Release: 0 Summary: Remote Desktop Viewer Client License: Apache-2.0 Group: Productivity/Networking/Other URL: https://www.freerdp.com/ Source0: https://github.com/FreeRDP/FreeRDP/archive/%{version}.tar.gz#/FreeRDP-%{version}.tar.gz +# PATCH-FIX-UPSTREAM freerdp-bug-6205.patch gh#FreeRDP/FreeRDP#6205 +Patch0: freerdp-bug-6205.patch BuildRequires: chrpath BuildRequires: cmake >= 2.8 BuildRequires: cups-devel ++++++ FreeRDP-2.1.0.tar.gz -> FreeRDP-2.1.1.tar.gz ++++++ /work/SRC/openSUSE:Factory/freerdp/FreeRDP-2.1.0.tar.gz /work/SRC/openSUSE:Factory/.freerdp.new.3606/FreeRDP-2.1.1.tar.gz differ: char 13, line 1 ++++++ freerdp-bug-6205.patch ++++++ >From 5b842bc7a78621218b1179923c002d32c41f15fe Mon Sep 17 00:00:00 2001 From: akallabeth <[email protected]> Date: Wed, 20 May 2020 11:57:01 +0200 Subject: [PATCH] Read newline from stdio on certificate accept --- client/common/client.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/client/common/client.c b/client/common/client.c index 1f44da41a3..380d7de929 100644 --- a/client/common/client.c +++ b/client/common/client.c @@ -467,14 +467,17 @@ static DWORD client_cli_accept_certificate(rdpSettings* settings) { case 'y': case 'Y': + fgetc(stdin); return 1; case 't': case 'T': + fgetc(stdin); return 2; case 'n': case 'N': + fgetc(stdin); return 0; default:
