* Update to version 1.12.3.
* Drop upstreamed patches: Remove-duplicate-code.patch, H5O__pline_decode-Make-more-resilient-to-out-of-bounds-read.patch, H5O_dtype_decode_helper-Parent-of-enum-needs-to-have-same-size-as-enum-itself.patch, Pass-compact-chunk-size-info-to-ensure-requested-elements-are-within-bounds.patch, Make-sure-info-block-for-external-links-has-at-least-3-bytes.patch, Compound-datatypes-may-not-have-members-of-size-0.patch, H5IMget_image_info-H5Sget_simple_extent_dims-does-not-exceed-array-size.patch, Check-for-overflow-when-calculating-on-disk-attribute-data-size-2459.patch
* New BuildRequires: hostname.
* Work around an sed hack in upstream configure file by dropping "-Werror=return-type" from RPM %optflags.
OBS-URL: https://build.opensuse.org/request/show/1173662
OBS-URL: https://build.opensuse.org/package/show/science/hdf5?expand=0&rev=174
- Update to version 1.10.7
* https://support.hdfgroup.org/ftp/HDF5/releases/hdf5-1.10/hdf5-1.10.6/src/hdf5-1.10.6-RELEASE.txt
* https://support.hdfgroup.org/ftp/HDF5/releases/hdf5-1.10/hdf5-1.10.7/src/hdf5-1.10.7-RELEASE.txt
- Security bugs fixed:
* CVE-2018-13870: heap-based buffer over-read in the function
H5O_link_decode in H5Olink.c (bsc#1101493)
* CVE-2018-13869: memcpy parameter overlap in the function
H5O_link_decode in H5Olink.c (bsc#1101495)
* CVE-2018-17438: A SIGFPE signal is raised in the function
H5D__select_io() of H5Dselect.c in the HDF HDF5 through 1.10.3
library during an attempted parse of a crafted HDF file,
because of incorrect protection against division
(bsc#1109570)
* CVE-2018-17435: A heap-based buffer over-read in H5O_attr_decode()
in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows
attackers to cause a denial of service via a crafted HDF5 file.
(bsc#1109567)
- Refresh patches
- Security bugs fixed:
* CVE-2018-17233: A SIGFPE signal is raised in the function
H5D__create_chunk_file_map_hyper. (bsc#1109166)
* CVE-2018-17434: Memory leak in the H5O__chunk_deserialize()
function in H5Ocache.c (bsc#1109167)
* CVE-2018-17437: A SIGFPE signal is raised in the function
H5D__chunk_set_info_real. (bsc#1109168)
- Security bugs fixed:
* CVE-2017-17505: NULL pointer dereference in the function
H5O_pline_decode allowing for DoS via crafted file (bsc#1072087)
* CVE-2017-17506: Out of bounds read in the function
OBS-URL: https://build.opensuse.org/request/show/848496
OBS-URL: https://build.opensuse.org/package/show/science/hdf5?expand=0&rev=139
- Update to version 1.10.5:
* https://support.hdfgroup.org/ftp/HDF5/releases/hdf5-1.10/hdf5-1.10.5/src/hdf5-1.10.5-RELEASE.txt
- Bump fortran library soname, sonum_F from 100 to 102.
- Adjust library installation path, use %hpc_prefix/lib64 in x86_64
and %hpc_libdir in all other cases
- Patches refreshed:
* hdf5-LD_LIBRARY_PATH.patch
* hdf5-1.8.11-abort_unknown_host_config.patch
* PPC64LE-Fix-long-double-handling.patch
* hdf5-Remove-timestamps-from-binaries.patch
* Disable-phdf5-tests.patch
- Patch disabled, upstream have changed the file that was being patched,
while it could be ported, it's unknown if this patch is still needed.
* hdf5-mpi.patch
- Patch removed, merged upstream
* 0001-Fix-return-value-in-test_libver_bounds_open.patch
OBS-URL: https://build.opensuse.org/request/show/726430
OBS-URL: https://build.opensuse.org/package/show/science/hdf5?expand=0&rev=111
- updated to 1.8.3:
- Added an H5free_memory API call. This should be used to free memory
that has been allocated by HDF5 API calls. H5Tget_member_name and
H5Pget_class_name are two examples. The main motivation for this call
is Windows, where it is common for application code and the HDF5 Library
to be using different C run-time libraries (CRT). Using the new call
ensures that the same CRT handles both the allocation and free. This
new function can also be useful in any case where the library uses a
different memory manager than the application, such as when a debug
memory manager is in use or when the HDF5 Library is wrapped for use
in a managed language like Python or Java. Fixes HDFFV-7710, 8519,
and 8851. (DER - 2014/04/11)
- The Core VFD (aka Memory VFD) can now be configured to track dirty
regions in the file and only write out the changed regions on
flush/close. Additionally, a "page aggregation" size can be set that
will aggregate small writes into larger writes. For example, setting
a 1 MiB page aggregation size will logically partition the the
in-memory file into 1 MiB pages that will be written out in their
entirety if even a single byte is dirtied. The feature is controlled
via the new H5Pset/get_core_write_tracking() API call. A new
"core_paged" target has been added to the check-vfd target in
test/Makefile.am that exercises the feature over all HDF5 VFD-aware
tests. (DER - 2014/04/12)
- see http://www.hdfgroup.org/ftp/HDF5/current/src/hdf5-1.8.13-RELEASE.txt
for more
- modified patches:
* hdf5-LD_LIBRARY_PATH.patch
OBS-URL: https://build.opensuse.org/request/show/238365
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/hdf5?expand=0&rev=19
