ID | 195748 |
Package Name | pngcheck |
Version | 2.4.0 |
Release | 8.fc33 |
Epoch | |
Source | git+https://src.fedoraproject.org/rpms/pngcheck.git#6f0467f303c643a7ae5460f684a71842757814a9 |
Summary |
Description |
Built by | davidlt |
State |
complete
|
Volume |
DEFAULT |
Started | Fri, 07 May 2021 06:43:39 UTC |
Completed | Fri, 07 May 2021 07:04:07 UTC |
Task | build (f33, /rpms/pngcheck.git:6f0467f303c643a7ae5460f684a71842757814a9) |
Extra | {'source': {'original_url': 'git+https://src.fedoraproject.org/rpms/pngcheck.git#6f0467f303c643a7ae5460f684a71842757814a9'}} |
Tags |
|
RPMs |
src | |
|
pngcheck-2.4.0-8.fc33.src.rpm (info) (download) |
riscv64 |
|
pngcheck-2.4.0-8.fc33.riscv64.rpm (info) (download)
|
|
pngcheck-extras-2.4.0-8.fc33.riscv64.rpm (info) (download)
|
|
pngcheck-debuginfo-2.4.0-8.fc33.riscv64.rpm (info) (download)
|
|
pngcheck-debugsource-2.4.0-8.fc33.riscv64.rpm (info) (download)
|
|
pngcheck-extras-debuginfo-2.4.0-8.fc33.riscv64.rpm (info) (download)
|
|
Logs |
|
Changelog |
* Mon Apr 26 2021 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-8
- Backport fix for RHBZ#1949800 from upstream release 3.0.3
* Thu Jan 07 2021 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-7
- Fix buffer overflow on large MNG LOOP chunk (RHBZ#1908559)
* Thu Jan 07 2021 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-6
- Fix a buffer overrun for certain invalid MNG PPLT chunk contents
(RHBZ#1907428).
* Mon Dec 14 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-5
- Previous fix for buffer overrun printing the contents of the sPLT chunk in
certain malformed inputs (RHBZ#1905775) was incomplete; it should be properly
fixed now.
* Sun Dec 13 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.4.0-4
- Bounds-check all accesses into enumerated-value name arrays; a malformed file
could have caused a buffer overrun in several of these cases. (RHBZ#1902810)
- Fix buffer overrun when print_buffer() is passed a nonpositive size, which
can occur in practice for certain malformed inputs. (RHBZ#1902810)
- In some cases, the chunk length from the file data (sz) is used to index into
the read buffer without sufficient bounds-checking, leading to a buffer
overrun. Fix this for PPLT, hIST, sCAL, FRAM, SAVE, nEED, PAST, DISC, DROP,
DBYK, ORDR, and SEEK chunks. (RHBZ#1902810)
- Fix buffer overrun printing the contents of the sPLT chunk in certain
malformed inputs. (RHBZ#1905775)
- Backport fix for off-by-one bug in check_magic() from 3.0.0
- Backport fix for zlib version warnings going to stdout from 3.0.0
- Use name macro when referencing patches.
- Add BR on make in anticipation of
https://fedoraproject.org/wiki/Changes/Remove_make_from_BuildRoot.
- New upstream version 2.4.0
- Added new license file for main package (same MIT-style license)
- Drop format-security patch, now upstreamed
- Use upstreamed man pages; no need to generate with help2man anymore
- Add rpmlintrc rules for -extras subpackage
- Add rpmlintrc file to suppress spurious rpmlint warnings
* Mon Nov 30 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-5
- Fix null pointer dereference in pngcheck when -f is given and the sCAL chunk
is missing the pixel height.
* Fri Nov 13 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-4
- Fix buffer overflow (RHBZ #1897485)
* Wed Oct 28 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-3
- Add _hardened_build macro for EPEL
* Wed Oct 28 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-2
- Work around Makefile.unx not actually using LDFLAGS; this fixes hardened
build (PIE)
* Thu Oct 15 2020 Benjamin A. Beasley <code@musicinmybrain.net> - 2.3.0-1
- Initial import (#1886858)
|