pool/chmlib
SHA256
17
0
Fork 1
Code Issues Pull Requests Activity
Files
factory
chmlib/chmlib.changes
Dirk Mueller 5a9ad107ea Accepting request 1291013 from home:pgajdos 
- security update
- added patches
  CVE-2025-48172 [bsc#1245803], integer overflow in _chm_decompress_block of chm_lib.c can lead to heap buffer overflow
  + chmlib-CVE-2025-48172.patch

OBS-URL: https://build.opensuse.org/request/show/1291013
OBS-URL: https://build.opensuse.org/package/show/X11:common:Factory/chmlib?expand=0&rev=17
2025-07-09 08:59:44 +00:00

94 lines
3.3 KiB
Plaintext
Raw Permalink Blame History

-------------------------------------------------------------------
Mon Jul 7 10:05:58 UTC 2025 - pgajdos@suse.com
- security update
- added patches
CVE-2025-48172 [bsc#1245803], integer overflow in _chm_decompress_block of chm_lib.c can lead to heap buffer overflow
+ chmlib-CVE-2025-48172.patch
-------------------------------------------------------------------
Thu Oct 5 09:50:41 UTC 2023 - Dirk Müller <dmueller@suse.com>
- drop chmlib-0.39.diff - superseded by
chmlib-0001-Patch-to-fix-integer-types-problem-by-Goswin-von-Bre.patch
- add
chmlib-0001-Patch-to-fix-integer-types-problem-by-Goswin-von-Bre.patch,
chmlib-0002-Fix-for-extract_chmLib-confusing-empty-files-with-di.patch,
chm_http-port-shortopt.patch, chm_http-bind-localhost.patch,
chm_http-output-server-address.patch, chmlib-c99.patch: restrict
access to localhost to somewhat reduce reach
-------------------------------------------------------------------
Mon Jun 14 11:27:41 UTC 2021 - Jan Engelhardt <jengelh@inai.de>
- Upgrade old specfile constructs.
- Remove --with-pic (no effect with --disable-static).
-------------------------------------------------------------------
Sun May 10 11:51:04 UTC 2015 - mpluskal@suse.com
- Use url for source
- Cleanup spec file with spec-cleaner
-------------------------------------------------------------------
Mon Feb 13 10:44:58 UTC 2012 - coolo@suse.com
- patch license to follow spdx.org standard
-------------------------------------------------------------------
Sat Sep 17 22:55:07 UTC 2011 - jengelh@medozas.de
- Remove redundant tags/sections from specfile
- Use %_smp_mflags for parallel build
- Implement shlib policy
-------------------------------------------------------------------
Sat Jul 25 18:33:55 CEST 2009 - beineri@opensuse.org
- build examples to an -examples sub-package (bnc#488307)
-------------------------------------------------------------------
Sun May 24 14:16:05 CEST 2009 - vuntz@novell.com
- Update to version 0.40:
+ minor bugfix release
+ fix a few bugs related to the example programs, including
stability issues related to chm_http.
+ remove the bashisms from mozilla_helper.sh.
-------------------------------------------------------------------
Fri Feb 27 23:19:57 CET 2009 - crrodriguez@suse.de
- remove static libraries and "la" files
-------------------------------------------------------------------
Thu Feb 8 10:32:09 CET 2007 - dmueller@suse.de
- fix -devel requir'ing release number
-------------------------------------------------------------------
Mon Jan 29 15:20:20 CET 2007 - stbinner@suse.de
- update to version 0.39:
* all of the dynamically-sized buffers which were allocated on
the stack before have been changed to heap allocations. This
circumvents some dangerous security flaws. (#239747)
-------------------------------------------------------------------
Wed Aug 9 09:22:26 CEST 2006 - stbinner@suse.de
- update to version 0.38:
* fix extract_chmLib directory traversal problem (#197808)
* bugfix to allow successful reading of more chm files
-------------------------------------------------------------------
Sat Jun 3 11:45:28 CEST 2006 - schwab@suse.de
- Port to all future systems.
-------------------------------------------------------------------
Mon May 22 11:52:11 CEST 2006 - stbinner@suse.de
- Initial package of version 0.37.4
Reference in New Issue View Git Blame Copy Permalink