Hello community,
here is the log from the commit of package t1lib for openSUSE:Factory
checked in at Mon Jan 10 10:45:02 CET 2011.
--------
--- t1lib/t1lib.changes 2009-03-02 00:59:42.000000000 +0100
+++ /mounts/work_src_done/STABLE/t1lib/t1lib.changes 2011-01-07 11:01:25.000000000 +0100
@@ -1,0 +2,5 @@
+Fri Jan 7 10:01:00 UTC 2011 - mvyskocil@suse.cz
+
+- fix bnc#662411 - DVI file AFM font parser heap overflow CVE-2010-2642
+
+-------------------------------------------------------------------
calling whatdependson for head-i586
New:
----
t1lib-5.1.2-CVE-2010-2642.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ t1lib.spec ++++++
--- /var/tmp/diff_new_pack.6UR27Q/_old 2011-01-10 10:44:36.000000000 +0100
+++ /var/tmp/diff_new_pack.6UR27Q/_new 2011-01-10 10:44:36.000000000 +0100
@@ -1,7 +1,7 @@
#
# spec file for package t1lib (Version 5.1.2)
#
-# Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany.
+# Copyright (c) 2011 SUSE LINUX Products GmbH, Nuernberg, Germany.
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -20,15 +20,16 @@
Name: t1lib
BuildRequires: quilt xorg-x11-devel
-License: LGPL v2.1 or later
+License: LGPLv2.1+
Group: System/Libraries
AutoReqProv: on
Version: 5.1.2
-Release: 1
+Release: 8
Url: ftp://sunsite.unc.edu/pub/Linux/libs/graphics/
Source: ftp://sunsite.unc.edu/pub/Linux/libs/graphics/%{name}-%{version}.tar.bz2
Patch0: t1lib-auto.patch
Patch1: t1lib_5.1.2-3.diff.gz
+Patch2: t1lib-5.1.2-CVE-2010-2642.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
Summary: Adobe Type 1 Font Rasterizing Library
@@ -46,7 +47,7 @@
Rainer Menzner
participants (1)
-
root@hilbert.suse.de