Hello community, here is the log from the commit of package libX11 for openSUSE:Factory checked in at 2020-08-28 23:45:06 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/libX11 (Old) and /work/SRC/openSUSE:Factory/.libX11.new.3399 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libX11" Fri Aug 28 23:45:06 2020 rev:28 rq:829641 version:1.6.12 Changes: -------- --- /work/SRC/openSUSE:Factory/libX11/libX11.changes 2020-08-05 20:27:05.483038834 +0200 +++ /work/SRC/openSUSE:Factory/.libX11.new.3399/libX11.changes 2020-08-28 23:45:08.387495577 +0200 @@ -1,0 +2,20 @@ +Tue Aug 25 21:24:32 UTC 2020 - Stefan Dirsch <[email protected]> + +- Update to version 1.6.12 + * Fix an integer overflow in init_om() [CVE-2020-14363, boo#1175239] + +------------------------------------------------------------------- +Sat Aug 15 17:30:24 UTC 2020 - Tobias Klausmann <[email protected]> + +- Update to version 1.6.11: + A collection of random and security fixes. +- Remove patches included in this release: + + U_001-ChangeTheData_lenParameterOf_XimAttributeToValueToCARD16.patch + + U_002-FixIntegerOverflowsIn_XimAttributeToValue.patch + + U_003-FixMoreUncheckedLengths.patch + + U_004-FixSignedLengthValuesIn_XimGetAttributeID.patch + + U_005-ZeroOutBuffersInFunctions.patch + + U_006-Fix-size-calculation-in-_XimAttributeToValue.patch +- Adapt patch p_xlib_skip_ext_env.diff to work with the new version + +------------------------------------------------------------------- Old: ---- U_001-ChangeTheData_lenParameterOf_XimAttributeToValueToCARD16.patch U_002-FixIntegerOverflowsIn_XimAttributeToValue.patch U_003-FixMoreUncheckedLengths.patch U_004-FixSignedLengthValuesIn_XimGetAttributeID.patch U_005-ZeroOutBuffersInFunctions.patch U_006-Fix-size-calculation-in-_XimAttributeToValue.patch libX11-1.6.9.tar.bz2 New: ---- libX11-1.6.12.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ libX11.spec ++++++ --- /var/tmp/diff_new_pack.7rwLB5/_old 2020-08-28 23:45:11.271493729 +0200 +++ /var/tmp/diff_new_pack.7rwLB5/_new 2020-08-28 23:45:11.271493729 +0200 @@ -17,7 +17,7 @@ Name: libX11 -Version: 1.6.9 +Version: 1.6.12 Release: 0 Summary: Core X11 protocol client library License: MIT @@ -33,12 +33,7 @@ Patch1: p_xlib_skip_ext_env.diff # PATCH-FIX-UPSTREAM en-locales.diff fdo#48596 bnc#388711 -- Add missing data for more en locales Patch2: en-locales.diff -Patch21: U_001-ChangeTheData_lenParameterOf_XimAttributeToValueToCARD16.patch -Patch22: U_002-FixIntegerOverflowsIn_XimAttributeToValue.patch -Patch23: U_003-FixMoreUncheckedLengths.patch -Patch24: U_004-FixSignedLengthValuesIn_XimGetAttributeID.patch -Patch25: U_005-ZeroOutBuffersInFunctions.patch -Patch26: U_006-Fix-size-calculation-in-_XimAttributeToValue.patch + BuildRequires: fdupes BuildRequires: libtool BuildRequires: pkgconfig @@ -142,12 +137,6 @@ %patch0 %patch1 %patch2 -%patch21 -p1 -%patch22 -p1 -%patch23 -p1 -%patch24 -p1 -%patch25 -p1 -%patch26 -p1 %build %configure \ ++++++ libX11-1.6.9.tar.bz2 -> libX11-1.6.12.tar.bz2 ++++++ ++++ 13557 lines of diff (skipped) ++++++ p_xlib_skip_ext_env.diff ++++++ --- /var/tmp/diff_new_pack.7rwLB5/_old 2020-08-28 23:45:13.311492421 +0200 +++ /var/tmp/diff_new_pack.7rwLB5/_new 2020-08-28 23:45:13.311492421 +0200 @@ -20,4 +20,4 @@ + LockDisplay(dpy); GetReq(QueryExtension, req); - req->nbytes = name ? strlen(name) : 0; + req->nbytes = name ? (CARD16) strlen(name) : 0;
