Luigi Baldoni
2061409424
- Update to version 0.12
* Fix some build issues:
+ build with libxml >= 2.12
+ clang warnings
* Minor fix: potential undefined behavior on corrupt input
* Code cleanup
version 0.11:
* fixed multiple buffer over-reads and null pointer
dereferences that can be triggered with crafted input. The
security impact of these bugs is low, they can cause crashes.
These bugs were identified by extensive fuzzing by various
researchers.
Some of these vulnerabilities have been assigned CVEs:
CVE-2022-1533, CVE-2022-1534, CVE-2022-1907, CVE-2022-1908,
CVE-2022-1987, CVE-2022-2279, CVE-2022-29788.
* fixed potential leak in dictionary parsing on corrupt data
* improved portability of encryption key generation
version 0.10:
* adds functions to allow encryption of documents
* improves decryption routines
* adds new tool mobidrm that handles documents encryption and
decryption
Other changes:
* adds function to split hybrid files
* adds helper functions for retrieving orthographic index
entries
* adds basic CMake support
* small fixes in autotools project
OBS-URL: https://build.opensuse.org/request/show/1186144
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/libmobi?expand=0&rev=2
37 lines
1.4 KiB
Plaintext
37 lines
1.4 KiB
Plaintext
-------------------------------------------------------------------
|
|
Sat Jul 6 09:07:05 UTC 2024 - Luigi Baldoni <aloisio@gmx.com>
|
|
|
|
- Update to version 0.12
|
|
* Fix some build issues:
|
|
+ build with libxml >= 2.12
|
|
+ clang warnings
|
|
* Minor fix: potential undefined behavior on corrupt input
|
|
* Code cleanup
|
|
version 0.11:
|
|
* fixed multiple buffer over-reads and null pointer
|
|
dereferences that can be triggered with crafted input. The
|
|
security impact of these bugs is low, they can cause crashes.
|
|
These bugs were identified by extensive fuzzing by various
|
|
researchers.
|
|
Some of these vulnerabilities have been assigned CVEs:
|
|
CVE-2022-1533, CVE-2022-1534, CVE-2022-1907, CVE-2022-1908,
|
|
CVE-2022-1987, CVE-2022-2279, CVE-2022-29788.
|
|
* fixed potential leak in dictionary parsing on corrupt data
|
|
* improved portability of encryption key generation
|
|
version 0.10:
|
|
* adds functions to allow encryption of documents
|
|
* improves decryption routines
|
|
* adds new tool mobidrm that handles documents encryption and
|
|
decryption
|
|
Other changes:
|
|
* adds function to split hybrid files
|
|
* adds helper functions for retrieving orthographic index
|
|
entries
|
|
* adds basic CMake support
|
|
* small fixes in autotools project
|
|
|
|
-------------------------------------------------------------------
|
|
Sat Dec 18 19:46:58 UTC 2021 - Luigi Baldoni <aloisio@gmx.com>
|
|
|
|
- Initial package (v0.9)
|