From a635d5eed4694dc103b192aa5534995c51d7f0d71d5a51309f71cbb7ce47ca6e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ismail=20D=C3=B6nmez?= Date: Wed, 23 Mar 2016 08:28:51 +0000 Subject: [PATCH] - Update to version 5.1.3 * Prevent malloc randomess from causing the header output routine to emit a GIF89 version string even when no GIF89 features are present. * Prevent malloc randomess from producing sporadic failures by causing sanity checks added in 5.1.2 to misfire. * Bulletproof gif2rgb against 0-height images. Addressed sf#78: Heap overflow in gif2rgb with images of size 0, also sf#82. * Remove unnecessary duplicate EGifClose() in gifcolor.c. Fixes sf#83 introduced in 5.1.2. * Fix sf#84: incorrect return of DGifSlurp(). - Add giflib-sf-88.patch to fix sf#88 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/giflib?expand=0&rev=37 --- giflib-5.1.2.tar.bz2 | 3 --- giflib-5.1.3.tar.bz2 | 3 +++ giflib-sf-88.patch | 12 ++++++++++++ giflib.changes | 16 ++++++++++++++++ giflib.spec | 10 +++++----- 5 files changed, 36 insertions(+), 8 deletions(-) delete mode 100644 giflib-5.1.2.tar.bz2 create mode 100644 giflib-5.1.3.tar.bz2 create mode 100644 giflib-sf-88.patch diff --git a/giflib-5.1.2.tar.bz2 b/giflib-5.1.2.tar.bz2 deleted file mode 100644 index 3584069..0000000 --- a/giflib-5.1.2.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:76c0a084c3b02f9315ff937b8be6096186002fea26f33e2123081ba2be6e2a7c -size 638967 diff --git a/giflib-5.1.3.tar.bz2 b/giflib-5.1.3.tar.bz2 new file mode 100644 index 0000000..2d6eab4 --- /dev/null +++ b/giflib-5.1.3.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:5096d27805283599b01074d487ad3f8e02bd26b84d759b9017be876ca3d5b81d +size 639420 diff --git a/giflib-sf-88.patch b/giflib-sf-88.patch new file mode 100644 index 0000000..a88ea84 --- /dev/null +++ b/giflib-sf-88.patch @@ -0,0 +1,12 @@ +Index: giflib-5.1.3/util/gifbuild.c +=================================================================== +--- giflib-5.1.3.orig/util/gifbuild.c ++++ giflib-5.1.3/util/gifbuild.c +@@ -724,6 +724,7 @@ static void DumpExtensions(GifFileType * + printf("end\n\n"); + } + else if (ep->Function == APPLICATION_EXT_FUNC_CODE ++ && ep->ByteCount >= 11 + && memcmp(ep->Bytes, "NETSCAPE2.0", 11) == 0) { + unsigned char *params = (++ep)->Bytes; + unsigned int loopcount = params[1] | (params[2] << 8); diff --git a/giflib.changes b/giflib.changes index 084bd24..cc37029 100644 --- a/giflib.changes +++ b/giflib.changes @@ -1,3 +1,19 @@ +------------------------------------------------------------------- +Wed Mar 23 08:23:32 UTC 2016 - idonmez@suse.com + +- Update to version 5.1.3 + * Prevent malloc randomess from causing the header output routine + to emit a GIF89 version string even when no GIF89 features are + present. + * Prevent malloc randomess from producing sporadic failures by causing + sanity checks added in 5.1.2 to misfire. + * Bulletproof gif2rgb against 0-height images. Addressed sf#78: + Heap overflow in gif2rgb with images of size 0, also sf#82. + * Remove unnecessary duplicate EGifClose() in gifcolor.c. Fixes sf#83 + introduced in 5.1.2. + * Fix sf#84: incorrect return of DGifSlurp(). +- Add giflib-sf-88.patch to fix sf#88 + ------------------------------------------------------------------- Tue Jan 19 12:59:02 UTC 2016 - fstrba@suse.com diff --git a/giflib.spec b/giflib.spec index 0614a17..7786a5b 100644 --- a/giflib.spec +++ b/giflib.spec @@ -18,18 +18,17 @@ %define lname libgif7 Name: giflib -Version: 5.1.2 +Version: 5.1.3 Release: 0 Summary: A Library for Working with GIF Images License: MIT Group: Development/Libraries/C and C++ Url: http://giflib.sf.net/ -#Git-Clone: git://git.code.sf.net/p/giflib/code -#Freecode-URL: http://freecode.com/projects/giflib Source: http://downloads.sf.net/giflib/%{name}-%{version}.tar.bz2 Source2: baselibs.conf Patch1: giflib-visibility.patch Patch2: giflib-automake-1_13.patch +Patch3: giflib-sf-88.patch BuildRequires: libtool >= 2 BuildRequires: xorg-x11-libICE-devel BuildRequires: xorg-x11-libSM-devel @@ -71,8 +70,9 @@ have expired, giflib can again be used instead of libungif. %prep %setup -q -# LT_INIT requires libtool >= 2 -%patch -P 1 -P 2 -p1 +%patch1 -p1 +%patch2 -p1 +%patch3 -p1 # USE __TIMESTAMP__ instead of __DATE__ , __TIME__ # this change is pointless unless we preserve the original