Mailinglist Archive: opensuse-factory (446 mails)

< Previous Next >
[opensuse-factory] New Tumbleweed snapshot 20161202 released!

Please note that this mail was generated by a script.
The described changes are computed based on the x86_64 DVD.
The full online repo contains too many changes to be listed here.

Please check the known defects of this snapshot before upgrading:
https://openqa.opensuse.org/tests/overview?distri=opensuse&groupid=1&version=Tumbleweed&build=20161202

When you reply to report some issues, make sure to change the subject.
It is not helpful to keep the release announcement subject in a thread
while discussing a specific problem.

Packages changed:
Mesa (13.0.1 -> 13.0.2)
amarok
ffmpeg (3.2 -> 3.2.1)
git (2.10.2 -> 2.11.0)
irqbalance
ispell
k3b
libteam (1.22 -> 1.26)
libuv (1.10.0 -> 1.10.1)
libvorbis
lxpanel
obs-service-tar_scm (0.6.1.1473925745.c5264bb -> 0.7.0.1480000004.4027270)
openSUSE-build-key
perl-Class-Inspector (1.28 -> 1.31)
postfix
python-simplejson (3.6.5 -> 3.8.2)
python3-setuptools (28.8.0 -> 29.0.1)
python3-smbc (1.0.15.5 -> 1.0.15.6)
spice-vdagent (0.16.0 -> 0.17.0)
subversion (1.9.4 -> 1.9.5)
tcsh (6.19.00 -> 6.20.00)
texlive-specs-m (2016.111.svn40218 -> 2016.112.svn40218)
texlive-specs-n (2016.111.2.004svn28119 -> 2016.112.2.004svn28119)
tiff (4.0.6 -> 4.0.7)
w3m (0.5.3 -> 0.5.3.git20161120)
xf86-video-chips
xf86-video-glint
xf86-video-mga
xf86-video-savage
xf86-video-siliconmotion
xf86-video-sisusb
xf86-video-tdfx
xf86-video-trident

=== Details ===

==== Mesa ====
Version update (13.0.1 -> 13.0.2)
Subpackages: Mesa-32bit Mesa-dri-devel Mesa-dri-nouveau Mesa-libEGL-devel
Mesa-libEGL1 Mesa-libEGL1-32bit Mesa-libGL-devel Mesa-libGL1 Mesa-libGL1-32bit
Mesa-libGLESv2-2 Mesa-libglapi0 Mesa-libglapi0-32bit Mesa-libva libOSMesa9
libOSMesa9-32bit libgbm1 libgbm1-32bit libvdpau_nouveau libvdpau_r300
libvdpau_r600 libvdpau_radeonsi libvulkan_intel libwayland-egl1 libxatracker2

- update to 13.0.2
* fdo#97321 Query INFO_LOG_LENGTH for empty info log should return 0
* fdo#97420 &quot;#version 0&quot; crashes glsl_compiler
* i965: Add some APL and KBL SKU strings
* i965: Reorder PCI ID list to match release order
* i965/glk: Add basic Geminilake support
* wsi: fix VK_INCOMPLETE for vkGetSwapchainImagesKHR
* ac/nir/llvm: fix channel in texture gather lowering code.
* vulkan/wsi/x11: handle timeouts properly in next image acquire (v1.1)
* vulkan/wsi: store present mode in swapchain base class
* vulkan/wsi/x11: add support for IMMEDIATE present mode
* vulkan/wsi/x11: Fix behavior of vkGetPhysicalDeviceSurfaceFormatsKHR
* vulkan/wsi/x11: Fix behavior of vkGetPhysicalDeviceSurfacePresentModesKHR
* cherry-ignore: add reverted LLVM_LIBDIR patch
* anv: fix enumeration of properties
* vc4: Don't abort when a shader compile fails.
* vc4: Clamp the shadow comparison value.
* vc4: Fix register class handling of DDX/DDY arguments.
* util/disk_cache: close a previously opened handle in disk_cache_put (v2)
* anv: Fix unintentional integer overflow in anv_CreateDmaBufImageINTEL
* anv/format: handle unsupported formats properly
* glcpp: Handle '#version 0' and other invalid values
* glsl: Parse 0 as a preprocessor INTCONSTANT
* anv/gen8: Stall when needed in Cmd(Set|Reset)Event
* anv/wsi: Set the fence to signaled in AcquireNextImageKHR
* anv: Rework fences
* vulkan/wsi/wayland: Include pthread.h
* vulkan/wsi/wayland: Clean up some error handling paths
* vulkan/wsi: Report the correct min/maxImageCount
* i965/gs: Allow primitive id to be a system value
* anv: Handle null in all destructors
* anv/fence: Handle ANV_FENCE_CREATE_SIGNALED_BIT
* nir/spirv: Fix handling of gl_PrimitiveId
* anv/blorp: Ignore clears for attachments first used as resolve destinations
* anv: Implement a depth stall restriction on gen7
* anv/cmd_buffer: Handle running out of binding tables in compute shaders
* anv/cmd_buffer: Emit a CS stall before setting a CS pipeline
* vulkan/wsi/x11: Implement FIFO mode.
* isl: Fix height calculation in isl_msaa_interleaved_scale_px_to_sa
* i965/hsw: Set integer mode in sampling state for stencil texturing
* intel: Set min_ds_entries on Broxton.
* i965: Fix compute shader crash.
* mesa: Drop PATH_MAX usage.
* i965: Fix GS push inputs with enhanced layouts.
* vulkan/wsi: Add a thread-safe queue implementation
* anv: fix multi level clears with VK_REMAINING_MIP_LEVELS
* gbm: request correct version of the DRI2_FENCE extension
* radeonsi: store group_size_variable in struct si_compute
* glsl/lower_output_reads: fix geometry shader output handling with
conditional emit
* Fix races during _mesa_HashWalk().
* mesa: fix empty program log length
- baselibs.conf: enabled build of 32bit Mesa-dri-nouveau package,
e.g. required for Steam (bnc#1011156)

==== amarok ====

- Expand macro kde4_runtime_requires only when its available
to fix quilt setup

==== ffmpeg ====
Version update (3.2 -> 3.2.1)
Subpackages: libavcodec57 libavformat57 libavutil55 libswresample2 libswscale4

- Update to version 3.2.1:
* avcodec/aac_adtstoasc_bsf: validate and forward extradata
if the stream is already ASC
* libopusdec: default to stereo for invalid number of
channels
* sbgdec: prevent NULL pointer access
* rmdec: validate block alignment
* smacker: limit recursion depth of smacker_decode_bigtree
* mxfdec: fix NULL pointer dereference in mxf_read_packet_old
* ffmdec: validate codec parameters
* avformat/mpeg: Adjust vid probe threshold to correct
mis-detection
* avcodec/avpacket: fix leak on realloc in
av_packet_add_side_data()
* avformat/apngenc: use the stream parameters extradata if
available
* ffprobe: fix crash in case -of is specified with an empty
string
* exr: fix out-of-bounds read
* libschroedingerdec: fix leaking of framewithpts
* filmstripdec: correctly check image dimensions
* icodec: fix leaking pkt on error
* dvbsubdec: fix division by zero in compute_default_clut
* escape124: reject codebook size 0
* mpegts: prevent division by zero
* matroskadec: fix NULL pointer dereference in
webm_dash_manifest_read_header
* mxfdec: fix NULL pointer dereference
* avcodec/mpeg4videodec: Workaround interlaced mpeg4 edge MC
bug
* avcodec/mpegvideo: Fix edge emu buffer overlap with
interlaced mpeg4
* avcodec/ituh263dec: Avoid spending a long time in slice
sync
* avcodec: Check side data size before use
* avformat/flvdec: Fix regression losing streams

==== git ====
Version update (2.10.2 -> 2.11.0)
Subpackages: git-core git-cvs git-daemon git-email git-gui git-svn git-web gitk

- git 2.11.0:
* backward compatibility:
+ empty string (matching everything) used as pathspec now
triggers a warning
+ historical argument order "git merge <msg> HEAD <commit>..."
is deprecated
+ default abbreviation length of 7 now scales by repo size
* updates
+ new version of git-gui
+ many new command line and configuration options
+ many workflow and output improvements
* dropped upstreamed patches:
+ git-setup-i18n-fix.patch
+ git-tclIndex.patch

==== irqbalance ====

- Set-fd-limit.patch: Increase limit on file descriptors (bsc#998399)
(fate#321645)

==== ispell ====
Subpackages: ispell-american ispell-british

- Extend patch boo966124.dif for bug boo#1010330

==== k3b ====

- Obsolete k3b-codecs, the additional codecs are part of the main
package now
- Restore conditionals for lame and libmad
- Expand macro kde4_runtime_requires only when its available
to fix quilt setup

==== libteam ====
Version update (1.22 -> 1.26)

- Update to new upstream release 1.26
* dbus: don't do <deny send_interface="..." /> in template
dbus s. f.
* teamd: do correct l3/l4 tx hashing with vlans
* teamd: lacp: use original hwaddr as source address in lacpdus
* libteam: fix TEAM_OPTION_TYPE_BOOL type for big-endian
architectures
* teamd: handle vlan 0 packets
* misc: fix an out-of-bound write with zero-length
hardware address
* teamd: fix the issue that network blocks when issuing
`systemctl stop teamd`
* teamd: lacp: Do not unselect port if it changes state
to "expired"

==== libuv ====
Version update (1.10.0 -> 1.10.1)

- Update to 1.10.1
* win: fix anonymous union syntax
* unix: use uv__is_closing everywhere
* win: add missing break statement
* doc: fix wrong man page link for uv_fs_lstat()
* win, tty: handle empty buffer in uv_tty_write_bufs
* doc: add cjihrig alternative GPG ID
* Revert "win,tty: add support for ANSI codes in win10 v1511"
- Add signature and keyring for GPG source verification

==== libvorbis ====
Subpackages: libvorbis-devel libvorbis0 libvorbis0-32bit libvorbisenc2
libvorbisenc2-32bit libvorbisfile3 libvorbisfile3-32bit

- Added 32bit libvorbis-devel in baselibs.conf

==== lxpanel ====
Subpackages: liblxpanel0 lxpanel-lang

- Reword description.

==== obs-service-tar_scm ====
Version update (0.6.1.1473925745.c5264bb -> 0.7.0.1480000004.4027270)

- Update to version 0.7.0.1480000004.4027270:
* fixed pip8 problems
* keep checkout while running with osc
- Update to version 0.7.0.1478249268.e162c66:
* prevent key errors when $HOME is not set
- Update to version 0.7.0.1477858520.51a62fb:
* added locking for cachedir in jailed mode
* removed setup_tracking_branches and '--dissociate'
* inital version of TarSCM classes
* scm_object generation moved to singletask
* FETCH_UPSTREAM_COMMANDS into classes
* moved update_cache_* to classes
* moved detect_version into classes and refactored calls of get_timestamp_*
* moved get_timestamp functions into scm classes
* git_ref_exists -> TarSCM.git._ref_exists
* fetch_upstream_git_submodules -> fetch_submodules to get rid of exceptions
for git
* just moved some functions for better overview
* refactor of detect_changes into classes
* url as attribute of TarSCM.scm
* run_cmd and safe_run moved into class helpers
* combine os.path.join statement
* refactoring fetch_upstream to be part of TarSCM.scm
* new classes for archives
* common method 'get_current_commit' to get rid of execption for git
* refactored detect_changes to get rid of changesgenerate exception
* get_repocachedir -> TarSCM.scm
* revision, repodir and repocachedir as attribute for TarSCM.<scm>
* new class TarSCM.cli to make testing easier
* testing script name more reliable
* fixed arguments for singletask in case of snapcraft
* refactored snapcraft code + first tests for snapcraft
* added testcase for snapcraft finalize
* split classes into serveral files
* more testing for TarSCM.tasks
* clone_dir/repodir/arch_dir(tar_dir) now attributes of scm objects
* test case for save_run
* major refactor of git cache handling
* consolidation of archive.obscpio and archive.tar parameters
* next test cases
* sytnax fix for "tar" service
* fixed tests for tar
* unset CACHEDIRECTORY env variable in unit tests
* update atime/mtime of repocachedir if already exists
- Update to version 0.7.0.1474270818.3e05f80:
*
- Update to version 0.7.0.1477567374.d44d677:
* use '--dissociate' for git if package-meta is set
* added locking for cachedir in jailed mode
* removed setup_tracking_branches and '--dissociate'
* inital version of TarSCM classes
* scm_object generation moved to singletask
* FETCH_UPSTREAM_COMMANDS into classes
* moved update_cache_* to classes
* moved detect_version into classes and refactored calls of get_timestamp_*
* moved get_timestamp functions into scm classes
* git_ref_exists -> TarSCM.git._ref_exists
* fetch_upstream_git_submodules -> fetch_submodules to get rid of exceptions
for git
* just moved some functions for better overview
* refactor of detect_changes into classes
* url as attribute of TarSCM.scm
* run_cmd and safe_run moved into class helpers
* combine os.path.join statement
* refactoring fetch_upstream to be part of TarSCM.scm
* new classes for archives
* common method 'get_current_commit' to get rid of execption for git
* refactored detect_changes to get rid of changesgenerate exception
* get_repocachedir -> TarSCM.scm
* revision, repodir and repocachedir as attribute for TarSCM.<scm>
* new class TarSCM.cli to make testing easier
* testing script name more reliable
* fixed arguments for singletask in case of snapcraft
* refactored snapcraft code + first tests for snapcraft
* added testcase for snapcraft finalize
* split classes into serveral files
* more testing for TarSCM.tasks
* clone_dir/repodir/arch_dir(tar_dir) now attributes of scm objects
* test case for save_run
* major refactor of git cache handling
* consolidation of archive.obscpio and archive.tar parameters
* next test cases
* sytnax fix for "tar" service
- Update to version 0.7.0.1476904507.e88eed1:
* fixed arguments for singletask in case of snapcraft
* refactored snapcraft code + first tests for snapcraft
* added testcase for snapcraft finalize
* split classes into serveral files
* more testing for TarSCM.tasks
* clone_dir/repodir/arch_dir(tar_dir) now attributes of scm objects
* test case for save_run
* major refactor of git cache handling
* consolidation of archive.obscpio and archive.tar parameters
* next test cases

==== openSUSE-build-key ====

- modify dumpsigs to deal with fingerprint lines in gpg output

==== perl-Class-Inspector ====
Version update (1.28 -> 1.31)

- updated to 1.31
see /usr/share/doc/packages/perl-Class-Inspector/Changes
1.31 2016-11-25 09:33:47 -0500
- Migrated from Module::Install to Dist::Zilla and ExtUtils::MakeMaker
- Fixed meta for repository which was pointing to the wrong URL
- updated to 1.30
see /usr/share/doc/packages/perl-Class-Inspector/Changes
1.30 23 Nov 2016
- Moving to prod release
1.29_02 23 Nov 2016
- Update metadata to point to github repository.
Plus some other minor dist meta tweaks.
- Note: planning on doing a migration from Module::Install
to ExtUtils::MakeMaker shortly AFTER the next production
release.
1.29_01 22 Nov 2016
- Fix Makefile.PL to work with Perls without '.' in @INC
- Fix for the installed method when used with a PAR archive (rt#42846)
- Minor documentation fixes (grammar, spelling: rt#74481, rt#85356)

==== postfix ====
Subpackages: postfix-doc

- improve config.postfix
* improve SASL stuff
* add POSTFIX_SMTP_AUTH_SERVICE=(cyrus|dovecot)
- improve config.postfix
* improve with MySQL stuff
- update vda patch to latest available
* remove postfix-vda-v13-3.10.0.patch
* add postfix-vda-v14-3.0.3.patch
- rebase patches (and to be p0)
* pointer_to_literals.patch
* postfix-main.cf.patch
* postfix-master.cf.patch
* postfix-no-md5.patch
* postfix-ssl-release-buffers.patch
- add /etc/postfix/ssl as default DIR for SSL stuff
* cacerts -> ../../ssl/certs/
* certs/
- revert POSTFIX_SSL_PATH from '/etc/ssl' to '/etc/postfix/ssl'
- improve config.postfix
* revert smtpd_tls_CApath to POSTFIX_SSL_PATH/cacerts which is a
symlink to /etc/ssl/certs
Without reverting, 'gen_CA' would create files which would then be on
the previous defined 'sslpath(/etc/ssl)/certs' (smtpd_tls_CApath)
Cert reqs would be placed in 'sslpath(/etc/ssl)/certs/postfixreq.pem'
which is not a good idea.
* mkchroot: sync '/etc/postfix/ssl' to chroot
* improve PCONF for smtp{,d}_tls_{cert,key}_file, adding/removing from
main.cf, show warning if enabled and file is missing

==== python-simplejson ====
Version update (3.6.5 -> 3.8.2)

- update to 3.8.2:
* Fix implicit cast compiler warning in _speedups.c
* simplejson is now available as wheels for OS X and Windows thanks to
Travis-CI
and AppVeyor respectively! Many thanks to @aebrahim for getting this party
started.
* Fix issue with iterable_as_array and indent option
* Fix typo in keyword argument name introduced in 3.8.0
* New iterable_as_array encoder option to perform lazy serialization of
any iterable objects, without having to convert to tuple or list.
* Fix typo introduced in 3.7.0 (behavior should be indistinguishable)

https://github.com/simplejson/simplejson/commit/e18cc09b688ea1f3305c27616fd3cadd2adc6d31#commitcomment-11443842
* Do not cache Decimal class in encoder, only reference the decimal module.
This may make reload work in more common scenarios.
* Fix compilation with MSVC
https://github.com/simplejson/simplejson/pull/119
* simplejson no longer trusts custom str/repr methods for int, long, float
subclasses. These instances are now formatted as if they were exact
instances of those types.
https://github.com/simplejson/simplejson/issues/118

==== python3-setuptools ====
Version update (28.8.0 -> 29.0.1)

- update to version 29.0.1:
* #861: Re-release of v29.0.1 with the executable script launchers
bundled. Now, launchers are included by default and users that
want to disable this behavior must set the environment variable
'SETUPTOOLS_INSTALL_WINDOWS_SPECIFIC_FILES' to a false value like
"false" or "0".
- update to version 29.0.0:
* #841: Drop special exception for packages invoking win32com during
the build/install process. See Distribute #118 for history.

==== python3-smbc ====
Version update (1.0.15.5 -> 1.0.15.6)

- update to version 1.0.15.6:
(no changelog available)

==== spice-vdagent ====
Version update (0.16.0 -> 0.17.0)

- Add pkgconfig(glib-2.0) BuildRequires: Explicit dependency.
- Handle spice-vdagentd.target in pre/post/preun/postun.
- Handle spice-vdagentd.conf in post via tmpfiles_create macro.
- Update to 0.17.0
* Denies file-transfer in locked sessions
* Denies file-transfer in login screen
* Bump glib version to 2.28
* Set exit code to 1 instead of 0 when virtio device cannot be
opened
* Fix double-free on uinput->screen_info (rhbz#1262635)
* Code improvement over unix domain client server support (udcs)
* Fix build compatiblity with different libsystemd versions
(fdo#94209)
- obsoleted patches removed:
8c465007-vdagentd-fixes-small-leak.patch
f97751fa-revert-uinput-fix-small-leak-of-screen_info.patch
- package: add explicit buildrequires for pkgconfig(dbus-1)

==== subversion ====
Version update (1.9.4 -> 1.9.5)
Subpackages: libsvn_auth_gnome_keyring-1-0 libsvn_auth_kwallet-1-0
subversion-bash-completion subversion-devel subversion-perl subversion-python
subversion-server subversion-tools

- Version update to 1.9.5:
* bsc#1011552 CVE-2016-8734 Unrestricted XML entity expansion in
mod_dontdothat and Subversion clients using http(s)://
- Client-side bugfixes:
* fix accessing non-existent paths during reintegrate merge (r1766699 et al)
* fix handling of newly secured subdirectories in working copy (r1724448)
* info: remove trailing whitespace in --show-item=revision (issue #4660)
* fix recording wrong revisions for tree conflicts (r1734106)
* gpg-agent: improve discovery of gpg-agent sockets (r1766327)
* gpg-agent: fix file descriptor leak (r1766323)
* resolve: fix --accept=mine-full for binary files (issue #4647)
* merge: fix possible crash (issue #4652)
* resolve: fix possible crash (r1748514)
* fix potential crash in Win32 crash reporter (r1663253 et al)
- Server-side bugfixes:
* fsfs: fix "offset too large" error during pack (issue #4657)
* svnserve: enable hook script environments (r1769152)
* fsfs: fix possible data reconstruction error (issue #4658)
* fix source of spurious 'incoming edit' tree conflicts (r1770108)
* fsfs: improve caching for large directories (r1721285)
* fsfs: fix crash when encountering all-zero checksums (r1759686)
* fsfs: fix potential source of repository corruptions (r1756266)
* mod_dav_svn: fix excessive memory usage with mod_headers/mod_deflate
(issue #3084)
* mod_dav_svn: reduce memory usage during GET requests (r1757529 et al)
* fsfs: fix unexpected "database is locked" errors (r1741096 et al)
* fsfs: fix opening old repositories without db/format files (r1720015)
- Client-side and server-side bugfixes:
* fix possible crash when reading invalid configuration files (r1715777)
- Bindings bugfixes:
* swig-pl: do not corrupt "{DATE}" revision variable (r1767768)
* javahl: fix temporary accepting SSL server certificates (r1764851)
* swig-pl: fix possible stack corruption (r1683266, r1683267)
- Drop no longer needed patch:
* subversion-1.8.11-swig-py-comment-3.patch

==== tcsh ====
Version update (6.19.00 -> 6.20.00)
Subpackages: tcsh-lang

- Add patch tcsh-6.20-rmstar.patch from mailing list to restore
the correct behaviour of `rm *' if rmstar is set
- Update to tcsh bug fix version V6.20.00 - 20161124
* Don't resize the screen if it did not change size.
* restore file description when cleaning up after eval:
repeat 99 time
* PR/572: Fix $SHLVL issue when exec'ing subshells.
* PR/403: Fix backquote expansion for multi-byte character sets.
* Fix drawing issu with multi-line prompt (Kensuke Iwahashi/David Kaspar)
* always send prusage to stdout.
* PR/526: Fix double \\ printing from previous fix in history expansion.
* Android updates from Corinna Vinschen
* PR/526: Quote backslashes properly so they can be preserved in ``
expansions
* Fix memory leak for paraml
* Add notempty and ask values for the noclobber setting (Martin Tournoij)
* more correct $wordchars for vimode (Luke Mewburn)
* expose VImode in $vimode (Luke Mewburn)
* display what the compiled in editor is in bindkey -d (Luke Mewburn)
* run-fg-editor improvements and documentation (Luke Mewburn)
* Fix parsing of 'if (cond)then' (Fridolin Pokorny)
* PR/437: Fix handling of invalid unicode characters.
* PR/451: Fix error messages containing %c to be always '%c'
- Rename patch tcsh-6.18.03.dif which becomes tcsh-6.20.00.dif now
- Drop patch union-wait.patch as now upstream
- Modify patches
tcsh-6.15.00-pipe.dif
tcsh-6.17.06-dspmbyte.dif
tcsh-6.18.03-colorls.dif
tcsh-6.18.03-history-file-locking.patch
tcsh-6.19.00-history-file-locking-order.patch
- Add patch tcsh-6.19.00-history-file-locking-order.patch
Make a copy of the file descriptor of the history file to be
able not only to lock but also unlock this file (bsc#992577)

==== texlive-specs-m ====
Version update (2016.111.svn40218 -> 2016.112.svn40218)

- Fix language code: pt-br --> pt_BR and es-ve --> es_VE

==== texlive-specs-n ====
Version update (2016.111.2.004svn28119 -> 2016.112.2.004svn28119)

- Fix language code: pt-br --> pt_BR and es-ve --> es_VE

==== tiff ====
Version update (4.0.6 -> 4.0.7)
Subpackages: libtiff-devel libtiff5 libtiff5-32bit

- Upgrade to upstream release 4.0.7
* libtiff/tif_aux.c
+ Fix crash in TIFFVGetFieldDefaulted() when requesting
Predictor tag and that the zip/lzw codec is not configured.
Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2591
* libtiff/tif_compress.c
+ Make TIFFNoDecode() return 0 to indicate an error and make
upper level read routines treat it accordingly. (linked to the
test case of http://bugzilla.maptools.org/show_bug.cgi?id=2517)
* libtiff/tif_dir.c
+ Discard values of SMinSampleValue and SMaxSampleValue when
they have been read and the value of SamplesPerPixel is
changed afterwards (like when reading a OJPEG compressed image
with a missing SamplesPerPixel tag, and whose photometric is
RGB or YCbCr, forcing SamplesPerPixel being 3). Otherwise when
rewriting the directory (for example with tiffset, we will
expect 3 values whereas the array had been allocated with just
one), thus causing a out of bound read access. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2500
(CVE-2014-8127, bsc#914890, duplicate: CVE-2016-3658, bsc#974840)
* libtiff/tif_dirread.c
+ In TIFFFetchNormalTag(), do not dereference NULL pointer when
values of tags with TIFF_SETGET_C16_ASCII/TIFF_SETGET_C32_ASCII
access are 0-byte arrays. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2593 (regression
introduced by previous fix done on 2016-11-11 for
CVE-2016-9297, bsc#1010161). Assigned as CVE-2016-9448,
bsc#1011103
+ In TIFFFetchNormalTag(), make sure that values of tags with
TIFF_SETGET_C16_ASCII/TIFF_SETGET_C32_ASCII access are null
terminated, to avoid potential read outside buffer in
_TIFFPrintField(). Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2590
(CVE-2016-9297, bsc#1010161)
+ Initialize doubledata at line 3693 to NULL to please MSVC 2013
+ Prevent reading ColorMap or TransferFunction if
BitsPerPixel > 24, so as to avoid huge memory allocation and
file read attempts
+ Reject images with OJPEG compression that have no
TileOffsets/StripOffsets tag, when OJPEG compression is
disabled. Prevent null pointer dereference in
TIFFReadRawStrip1() and other functions that expect
td_stripbytecount to be non NULL. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2585
+ When compiled with DEFER_STRILE_LOAD, fix regression, when
reading a one-strip file without a StripByteCounts tag.
+ Workaround false positive warning of Clang Static Analyzer
about null pointer dereference in TIFFCheckDirOffset().
* libtiff/tif_dirwrite.c
+ Avoid null pointer dereference on td_stripoffset when writing
directory, if FIELD_STRIPOFFSETS was artificially set for a
hack case in OJPEG case. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2500
(CVE-2014-8127, bsc#914890, duplicate: CVE-2016-3658,
bsc#974840)
+ Fix truncation to 32 bit of file offsets in TIFFLinkDirectory()
and TIFFWriteDirectorySec() when aligning directory offsets on
an even offset (affects BigTIFF).
* libtiff/tif_dumpmode.c
+ DumpModeEncode() should return 0 in case of failure so that
the above mentionned functions detect the error.
* libtiff/tif_fax3.c
+ remove dead assignment in Fax3PutEOLgdal().
* libtiff/tif_fax3.h
+ make Param member of TIFFFaxTabEnt structure a uint16 to
reduce size of the binary.
* libtiff/tif_getimage.c
+ Fix out-of-bound reads in TIFFRGBAImage interface in case of
unsupported values of SamplesPerPixel/ExtraSamples for
LogLUV/CIELab. Add explicit call to TIFFRGBAImageOK() in
TIFFRGBAImageBegin(). Fix CVE-2015-8665 and CVE-2015-8683.
+ Fix some benign warnings which appear in 64-bit compilation
under Microsoft Visual Studio of the form "Arithmetic
overflow: 32-bit value is shifted, then cast to 64-bit value.
Results might not be an expected value."
+ TIFFRGBAImageOK: Reject attempts to read floating point images.
* libtiff/tif_luv.c
+ Fix potential out-of-bound writes in decode functions in non
debug builds by replacing assert()s by regular if checks
(http://bugzilla.maptools.org/show_bug.cgi?id=2522). Fix
potential out-of-bound reads in case of short input data.
+ Validate that for COMPRESSION_SGILOG and PHOTOMETRIC_LOGL,
there is only one sample per pixel. Avoid potential invalid
memory write on corrupted/unexpected images when using the
TIFFRGBAImageBegin() interface
* libtiff/tif_next.c
+ Fix potential out-of-bound write in NeXTDecode()
(http://bugzilla.maptools.org/show_bug.cgi?id=2508)
* libtiff/tif_pixarlog.c
+ Avoid zlib error messages to pass a NULL string to %s
formatter, which is undefined behaviour in sprintf().
+ Fix out-of-bounds write vulnerabilities in heap allocated
buffers. Reported as MSVR 35094.
+ Fix potential buffer write overrun in PixarLogDecode() on
corrupted/unexpected images (CVE-2016-5875, bsc#987351)
+ Fix write buffer overflow in PixarLogEncode if more input
samples are provided than expected by PixarLogSetupEncode.
Idea based on libtiff-CVE-2016-3990.patch from
libtiff-4.0.3-25.el7_2.src.rpm, but with different and simpler
check. (http://bugzilla.maptools.org/show_bug.cgi?id=2544,
bsc#975069)
* libtiff/tif_predict.c
+ PredictorSetup: Enforce bits-per-sample requirements of
floating point predictor (3). Fixes CVE-2016-3622 "Divide By
Zero in the tiff2rgba tool." (bsc#974449)
* libtiff/tif_predict.h, libtiff/tif_predict.c
+ Replace assertions by runtime checks to avoid assertions in
debug mode, or buffer overflows in release mode. Can happen
when dealing with unusual tile size like YCbCr with
subsampling. Reported as MSVR 35105.
* libtiff/tif_read.c
+ Fix out-of-bounds read on memory-mapped files in
TIFFReadRawStrip1() and TIFFReadRawTile1() when stripoffset
is beyond tmsize_t max value
+ Make TIFFReadEncodedStrip() and TIFFReadEncodedTile() directly
use user provided buffer when no compression (and other
conditions) to save a memcpy().
* libtiff/tif_strip.c
+ Make TIFFNumberOfStrips() return the td->td_nstrips value when
it is non-zero, instead of recomputing it. This is needed in
TIFF_STRIPCHOP mode where td_nstrips is modified. Fixes a read
outsize of array in tiffsplit (or other utilities using
TIFFNumberOfStrips()). Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2587
(CVE-2016-9273, bsc#1010163)
* libtiff/tif_write.c
+ Fix issue in error code path of TIFFFlushData1() that didn't
reset the tif_rawcc and tif_rawcp members. I'm not completely
sure if that could happen in practice outside of the odd
behaviour of t2p_seekproc() of tiff2pdf). The report points
that a better fix could be to check the return value of
TIFFFlushData1() in places where it isn't done currently, but
it seems this patch is enough. Reported as MSVR 35095.
+ Make TIFFWriteEncodedStrip() and TIFFWriteEncodedTile()
directly use user provided buffer when no compression to save
a memcpy().
+ TIFFWriteEncodedStrip() and TIFFWriteEncodedTile() should
return -1 in case of failure of tif_encodestrip() as documented
* tools/fax2tiff.c
+ Fix segfault when specifying -r without argument. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2572
* tools/Makefile.am
+ The libtiff tools bmp2tiff, gif2tiff, ras2tiff, sgi2tiff,
sgisv, and ycbcr are completely removed from the distribution.
The libtiff tools rgb2ycbcr and thumbnail are only built in
the build tree for testing. Old files are put in new 'archive'
subdirectory of the source repository, but not in
distribution archives. These changes are made in order to
lessen the maintenance burden.
* tools/rgb2ycbcr.c
+ Validate values of -v and -h parameters to avoid potential
divide by zero. Fixes CVE-2016-3623, bsc#974618
(http://bugzilla.maptools.org/show_bug.cgi?id=2569)
* tools/tiff2bw.c
+ Fix weight computation that could result of color value
overflow (no security implication). Fix
http://bugzilla.maptools.org/show_bug.cgi?id=2550.
* tools/tiff2pdf.c
+ Avoid undefined behaviour related to overlapping of source and
destination buffer in memcpy() call in
t2p_sample_rgbaa_to_rgb() Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2577
+ Fix out-of-bounds write vulnerabilities in heap allocate buffer
in t2p_process_jpeg_strip(). Reported as MSVR 35098.
+ Fix potential integer overflows on 32 bit builds in
t2p_read_tiff_size() Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2576
+ Fix read -largely- outsize of buffer in
t2p_readwrite_pdf_image_tile(), causing crash, when reading a
JPEG compressed image with TIFFTAG_JPEGTABLES length being one.
Reported as MSVR 35101. CVE-2016-9453, bsc#1011107
+ Fix write buffer overflow of 2 bytes on JPEG compressed images.
Reported as TALOS-CAN-0187, CVE-2016-5652, bsc#1007280. Also
prevents writing 2 extra uninitialized bytes to the file
stream.
* tools/tiff2rgba.c
+ Fix integer overflow in size of allocated buffer, when -b mode
is enabled, that could result in out-of-bounds write. Based
initially on patch tiff-CVE-2016-3945.patch from
libtiff-4.0.3-25.el7_2.src.rpm, with correction for invalid
tests that rejected valid files.
(http://bugzilla.maptools.org/show_bug.cgi?id=2545, bsc#974614)
* tools/tiffcp.c
+ Fix out-of-bounds write on tiled images with odd tile width vs
image width. Reported as MSVR 35103.
+ Fix read of undefined variable in case of missing required
tags. Found on test case of MSVR 35100.
* tools/tiffcrop.c
+ Avoid access outside of stack allocated array on a tiled
separate TIFF with more than 8 samples per pixel.
(CVE-2016-5321, CVE-2016-5323,
http://bugzilla.maptools.org/show_bug.cgi?id=2558,
http://bugzilla.maptools.org/show_bug.cgi?id=2559, bsc#984813,
bsc#984815)
+ Fix memory leak in (recent) error code path. Fixes Coverity
1394415.
+ Fix multiple uint32 overflows in writeBufferToSeparateStrips(),
writeBufferToContigTiles() and writeBufferToSeparateTiles()
that could cause heap buffer overflows. Fixes
http://bugzilla.maptools.org/show_bug.cgi?id=2592
+ Fix out-of-bound read of up to 3 bytes in
readContigTilesIntoBuffer(). Reported as MSVR 35092.
+ Fix out-of-bounds write in loadImage(). From patch
libtiff-CVE-2016-3991.patch from
libtiff-4.0.3-25.el7_2.src.rpm
(http://bugzilla.maptools.org/show_bug.cgi?id=2543, bsc#975070)
+ Fix read of undefined buffer in readContigStripsIntoBuffer()
due to uint16 overflow. Reported as MSVR 35100.
+ Fix various out-of-bounds write vulnerabilities in heap or
stack allocated buffers. Reported as MSVR 35093, MSVR 35096
and MSVR 35097.
+ readContigTilesIntoBuffer: Fix signed/unsigned comparison
warning.
* tools/tiffdump.c
+ Fix a few misaligned 64-bit reads warned by -fsanitize
+ ReadDirectory: Remove uint32 cast to_TIFFmalloc() argument
which resulted in Coverity report. Added more mutiplication
overflow checks
* tools/tiffinfo.c
+ Fix out-of-bound read on some tiled images.
(http://bugzilla.maptools.org/show_bug.cgi?id=2517)
+ TIFFReadContigTileData: Fix signed/unsigned comparison warning.
+ TIFFReadSeparateTileData: Fix signed/unsigned comparison
warning.
- Removed patches:
* tiff-4.0.4-uninitialized_mem_NeXTDecode.patch
* tiff-4.0.6-CVE-2015-8782.patch
* tiff-4.0.6-CVE-2016-3186.patch
* tiff-4.0.6-CVE-2016-3623.patch
* tiff-4.0.6-CVE-2016-3945.patch
* tiff-4.0.6-CVE-2016-3990.patch
* tiff-4.0.6-CVE-2016-3991.patch
* tiff-4.0.6-libtiff-tif_getimage.c-TIFFRGBAImageOK-Reject-attemp.patch
* tiff-4.0.6-libtiff-tif_luv.c-validate-that-for-COMPRESSION_SGIL.patch
* tiff-4.0.6-libtiff-tif_pixarlog.c-fix-potential-buffer-write-ov.patch
* tiff-4.0.6-libtiff-tif_read.c-make-TIFFReadEncodedStrip-and.patch
* tiff-4.0.6-tools-tiffcrop.c-fix-various-out-of-bounds-write-vul.patch
- Fixed in the upsteam release
- Changed patch:
* tiff-4.0.6-CVE-2015-7554.patch -> tiff-4.0.7-CVE-2015-7554.patch
- Rediffed to the changed context

==== w3m ====
Version update (0.5.3 -> 0.5.3.git20161120)

- update to debian git version (bsc#1011293)
addressed security issues:
CVE-2016-9621: w3m: global-buffer-overflow write (bsc#1012020)
CVE-2016-9622: w3m: null deref (bsc#1012021)
CVE-2016-9623: w3m: null deref (bsc#1012022)
CVE-2016-9624: w3m: near-null deref (bsc#1012023)
CVE-2016-9625: w3m: stack overflow (bsc#1012024)
CVE-2016-9626: w3m: stack overflow (bsc#1012025)
CVE-2016-9627: w3m: heap overflow read + deref (bsc#1012026)
CVE-2016-9628: w3m: null deref (bsc#1012027)
CVE-2016-9629: w3m: null deref (bsc#1012028)
CVE-2016-9630: w3m: global-buffer-overflow read (bsc#1012029)
CVE-2016-9631: w3m: null deref (bsc#1012030)
CVE-2016-9632: w3m: global-buffer-overflow read (bsc#1012031)
CVE-2016-9633: w3m: OOM (bsc#1012032)
CVE-2016-9434: w3m: null deref (bsc#1011283)
CVE-2016-9435: w3m: use uninit value (bsc#1011284)
CVE-2016-9436: w3m: use uninit value (bsc#1011285)
CVE-2016-9437: w3m: write to rodata (bsc#1011286)
CVE-2016-9438: w3m: null deref (bsc#1011287)
CVE-2016-9439: w3m: stack overflow (bsc#1011288)
CVE-2016-9440: w3m: near-null deref (bsc#1011289)
CVE-2016-9441: w3m: near-null deref (bsc#1011290)
CVE-2016-9442: w3m: potential heap buffer corruption (bsc#1011291)
CVE-2016-9443: w3m: null deref (bsc#1011292)
dropped patches:
w3m-fix-build-with-imlib2-1.4.6.patch
w3m-scheme.patch
w3mman-formatting.patch
w3m-parallel-make.patch
w3m-gc7.diff
w3m-openssl.patch
w3m-closedir.patch
w3m-fh-def.patch
w3m-ssl-verify.patch
w3m-parsetagx-crash.patch
w3m-tempdir-override.patch
w3m-0.5.1-no-ASCII-equivalents-by-default.patch
w3m-uninitialized.patch
w3m-inline-image.patch
w3m-0.4.1-textarea-segfault.dif
ported patches:
w3m-disable-cookie-special-domain-check.patch to
0001-allow-to-configure-the-accept-option-for-bad-cookies.patch
w3m-0.4.1-session-mgmt.dif to
0001-implements-simple-session-management.patch
w3m-history-crossdev.patch to
0001-handle-EXDEV-during-history-file-rename.patch
w3mman-formatting.patch to
0001-w3mman-don-t-show-invalid-characters-bsc-950800.patch

==== xf86-video-chips ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-glint ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-mga ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-savage ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-siliconmotion ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-sisusb ====

- u_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-tdfx ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

==== xf86-video-trident ====

- U_Adapt-Block-WakeupHandler-signature-for-ABI-23.patch
* Adapt Block/WakeupHandler signature for ABI 23

--
To unsubscribe, e-mail: opensuse-factory+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse-factory+owner@xxxxxxxxxxxx

< Previous Next >
This Thread
  • No further messages