Hello community, here is the log from the commit of package libmaxminddb for openSUSE:Factory checked in at 2020-08-12 10:56:24 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libmaxminddb (Old) and /work/SRC/openSUSE:Factory/.libmaxminddb.new.3399 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libmaxminddb" Wed Aug 12 10:56:24 2020 rev:5 rq:825267 version:1.4.3 Changes: -------- --- /work/SRC/openSUSE:Factory/libmaxminddb/libmaxminddb.changes 2019-11-25 11:22:54.842120649 +0100 +++ /work/SRC/openSUSE:Factory/.libmaxminddb.new.3399/libmaxminddb.changes 2020-08-12 10:56:29.120742997 +0200 @@ -1,0 +2,7 @@ +Fri Aug 7 16:14:00 UTC 2020 - Andreas Stieger <[email protected]> + +- update to 1.4.3: + * Use of uninitialized memory in dump_entry_data_list() could have + cause a heap buffer flow in mmdblookup [bsc#1175006] + +------------------------------------------------------------------- Old: ---- libmaxminddb-1.4.2.tar.gz New: ---- libmaxminddb-1.4.3.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libmaxminddb.spec ++++++ --- /var/tmp/diff_new_pack.koPojI/_old 2020-08-12 10:56:29.844743358 +0200 +++ /var/tmp/diff_new_pack.koPojI/_new 2020-08-12 10:56:29.848743360 +0200 @@ -1,7 +1,7 @@ # # spec file for package libmaxminddb # -# Copyright (c) 2019 SUSE LLC. +# Copyright (c) 2020 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -18,7 +18,7 @@ %define lname libmaxminddb0 Name: libmaxminddb -Version: 1.4.2 +Version: 1.4.3 Release: 0 Summary: C library for the MaxMind DB file format License: Apache-2.0 ++++++ libmaxminddb-1.4.2.tar.gz -> libmaxminddb-1.4.3.tar.gz ++++++ ++++ 4082 lines of diff (skipped)
