Hello community, here is the log from the commit of package optipng for openSUSE:Factory checked in at Wed May 20 01:21:42 CEST 2009. -------- --- optipng/optipng.changes 2009-03-04 10:42:04.000000000 +0100 +++ optipng/optipng.changes 2009-05-19 15:26:44.000000000 +0200 @@ -1,0 +2,7 @@ +Tue May 19 15:23:16 CEST 2009 - pgajdos@suse.cz + +- updated to 0.6.3 + * fixes memory reallocation vulnerability (patch removed) + * fixes use-after-free vulnerability [bnc#505103] + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- optipng-0.6.2-reallocation-security.diff optipng-0.6.2.tar.bz2 New: ---- optipng-0.6.3.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ optipng.spec ++++++ --- /var/tmp/diff_new_pack.d30742/_old 2009-05-20 01:18:03.000000000 +0200 +++ /var/tmp/diff_new_pack.d30742/_new 2009-05-20 01:18:03.000000000 +0200 @@ -1,5 +1,5 @@ # -# spec file for package optipng (Version 0.6.2) +# spec file for package optipng (Version 0.6.3) # # Copyright (c) 2009 SUSE LINUX Products GmbH, Nuernberg, Germany. # @@ -23,14 +23,13 @@ License: zlib/libpng License Group: Productivity/Archiving/Compression Summary: A PNG File Compressor -Version: 0.6.2 -Release: 3 +Version: 0.6.3 +Release: 1 Url: http://optipng.sourceforge.net/ BuildRoot: %{_tmppath}/%{name}-%{version}-build Source0: %name-%{version}.tar.bz2 Source1: macros.optipng Patch0: optipng-suse-paths.diff -Patch1: %{name}-%{version}-reallocation-security.diff %description OptiPNG is a PNG optimizer that recompresses image files to a smaller @@ -47,7 +46,6 @@ %prep %setup -q %patch0 -%patch1 -p1 %build ./configure -with-system-zlib -with-system-libpng @@ -68,6 +66,10 @@ /etc/rpm/macros.optipng %changelog +* Tue May 19 2009 pgajdos@suse.cz +- updated to 0.6.3 + * fixes memory reallocation vulnerability (patch removed) + * fixes use-after-free vulnerability [bnc#505103] * Wed Mar 04 2009 meissner@suse.de - build with RPM_OPT_FLAGS * Tue Feb 24 2009 pgajdos@suse.cz @@ -121,5 +123,5 @@ * Fixed behavior of -out and -dir when changing interlacing. * Sat Dec 02 2006 dmueller@suse.de - add upstream patch to fix handling of true-color RGB images -* Wed Nov 08 2006 dmueller@suse.de +* Thu Nov 09 2006 dmueller@suse.de - Initial package (0.5.4) ++++++ optipng-0.6.2.tar.bz2 -> optipng-0.6.3.tar.bz2 ++++++ ++++ 16840 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org