Hello community, here is the log from the commit of package potrace for openSUSE:Factory checked in at 2017-03-03 17:33:08 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/potrace (Old) and /work/SRC/openSUSE:Factory/.potrace.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "potrace" Fri Mar 3 17:33:08 2017 rev:27 rq:460990 version:1.14 Changes: -------- --- /work/SRC/openSUSE:Factory/potrace/potrace.changes 2015-10-24 10:30:23.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.potrace.new/potrace.changes 2017-03-03 17:33:09.581574986 +0100 @@ -1,0 +2,12 @@ +Tue Feb 28 14:18:04 CET 2017 - sbrabec@suse.com + +- Update to version 1.14: + * Bugs triggered by malformed BMP files have been fixed, + including CVE-2016-8685 (bsc#1005026) and CVE-2016-8686. + * Error reporting has been improved. + * The image size is now truncated when the bitmap data ends + prematurely. + * It is now possible to use negative dy in bitmap data. +- Upstream prefers clang to compile potrace. Use clang if possible. + +------------------------------------------------------------------- Old: ---- potrace-1.13.tar.gz New: ---- potrace-1.14.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ potrace.spec ++++++ --- /var/tmp/diff_new_pack.w7l3s1/_old 2017-03-03 17:33:10.161493047 +0100 +++ /var/tmp/diff_new_pack.w7l3s1/_new 2017-03-03 17:33:10.161493047 +0100 @@ -1,7 +1,7 @@ # # spec file for package potrace # -# Copyright (c) 2015 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: potrace -Version: 1.13 +Version: 1.14 Release: 0 Summary: Utility for Tracing a Bitmap to Scalable Outline Image License: GPL-2.0+ @@ -25,6 +25,10 @@ Url: http://potrace.sourceforge.net/ Source: http://potrace.sourceforge.net/download/%{version}/%{name}-%{version}.tar.gz BuildRequires: zlib-devel +%ifnarch ppc s390 +# gcc is supported as well, but clang is preferred by the upstream. +BuildRequires: clang +%endif Provides: bitmap_tracing BuildRoot: %{_tmppath}/%{name}-%{version}-build ++++++ potrace-1.13.tar.gz -> potrace-1.14.tar.gz ++++++ ++++ 35955 lines of diff (skipped)