Accepting request 725412 from home:mgorse:branches:games

- Add CVE-2019-13616.patch: fix heap buffer overflow when reading a crafted bmp file (boo#1141844 CVE-2019-13616). potential security exploits (boo#1142031 CVE-2019-13626) OBS-URL: https://build.opensuse.org/request/show/725412 OBS-URL: https://build.opensuse.org/package/show/games/SDL2?expand=0&rev=89
2019-08-22 20:06:02 +00:00
parent bbd15f9ec1
commit 49aed970ee
3 changed files with 23 additions and 1 deletions
--- a/SDL2.changes
+++ b/SDL2.changes
@@ -1,3 +1,9 @@
+-------------------------------------------------------------------
+Thu Aug 22 16:43:13 UTC 2019 - Michael Gorse <mgorse@suse.com>
+
+- Add CVE-2019-13616.patch: fix heap buffer overflow when reading 
+  a crafted bmp file (boo#1141844 CVE-2019-13616).
+
 -------------------------------------------------------------------
 Sun Aug 11 04:29:55 UTC 2019 - Jan Engelhardt <jengelh@inai.de>

@@ -44,7 +50,7 @@ Fri Jul 26 07:44:39 UTC 2019 - Luigi Baldoni <aloisio@gmx.com>
  * Added the hint SDL_HINT_MOUSE_TOUCH_EVENTS to control
    whether SDL will synthesize touch events from mouse events
  * Improved handling of malformed WAVE and BMP files, fixing
-    potential security exploits
+    potential security exploits (boo#1142031 CVE-2019-13626)
  * Removed the Mir video driver in favor of Wayland

 - Refreshed sdl2-symvers.patch