Accepting request 562173 from home:ailin_nemui:branches:server:irc

- update to 1.0.6 - Fix invalid memory access when reading hilight configuration (#787, #788). - Fix null pointer dereference when the channel topic is set without specifying a sender (GL#20, GL!25). CVE-2018-5206 - Fix return of random memory when using incomplete escape codes (GL#21, GL!26). CVE-2018-5205 - Fix heap buffer overflow when completing certain strings (GL#19, GL!27). CVE-2018-5208 - Fix return of random memory when using an incomplete variable argument (GL#18, GL!28). CVE-2018-5207 OBS-URL: https://build.opensuse.org/request/show/562173 OBS-URL: https://build.opensuse.org/package/show/server:irc/irssi?expand=0&rev=96
2018-01-06 14:02:02 +00:00
parent 5537ca1c5b
commit 7b677901da
6 changed files with 26 additions and 11 deletions
--- a/irssi-1.0.5.tar.xz
+++ b/irssi-1.0.5.tar.xz
@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:c2556427e12eb06cabfed40839ac6f57eb8b1aa6365fab6dfcd331b7a04bb914
-size 1032308
--- a/irssi-1.0.5.tar.xz.asc
+++ b/irssi-1.0.5.tar.xz.asc
@@ -1,6 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iF0EABECAB0WIQR+5l4wgqX7Bqx8No0AzLWH3b7w4QUCWeoXfAAKCRAAzLWH3b7w
-4V4fAKCFQv0QZ5fRqkEemOkYYKXV/bI53QCfWx2ScwDs15115ceOGrxQLIIDv54=
-=Atv1
-----END PGP SIGNATURE-----
--- a/irssi-1.0.6.tar.xz
+++ b/irssi-1.0.6.tar.xz
@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:029e884f3ebf337f7266d8ed4e1a035ca56d9f85015d74c868b488f279de8585
+size 1033428
--- a/irssi-1.0.6.tar.xz.asc
+++ b/irssi-1.0.6.tar.xz.asc
@@ -0,0 +1,6 @@
+-----BEGIN PGP SIGNATURE-----
+
+iF0EABECAB0WIQR+5l4wgqX7Bqx8No0AzLWH3b7w4QUCWk7ByAAKCRAAzLWH3b7w
+4fk/AJ47FNq1NPyteq5jUhB90uLMFXMXrACfS/qQbgx2rEImlCwF9QzcFGG+Bt4=
+=NtZ8
+-----END PGP SIGNATURE-----
--- a/irssi.changes
+++ b/irssi.changes
@@ -1,3 +1,18 @@
+-------------------------------------------------------------------
+Sat Jan  6 13:47:12 UTC 2018 - ailin.nemui@gmail.com
+
+- update to 1.0.6
+  - Fix invalid memory access when reading hilight configuration
+    (#787, #788).
+  - Fix null pointer dereference when the channel topic is set
+    without specifying a sender (GL#20, GL!25). CVE-2018-5206
+  - Fix return of random memory when using incomplete escape
+    codes (GL#21, GL!26). CVE-2018-5205
+  - Fix heap buffer overflow when completing certain strings
+    (GL#19, GL!27). CVE-2018-5208
+  - Fix return of random memory when using an incomplete
+    variable argument (GL#18, GL!28). CVE-2018-5207
+
 -------------------------------------------------------------------
 Sun Oct 22 13:46:51 UTC 2017 - ailin.nemui@gmail.com

--- a/irssi.spec
+++ b/irssi.spec
@@ -1,7 +1,7 @@
 #
 # spec file for package irssi
 #
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -18,7 +18,7 @@

 %bcond_with socks
 Name:           irssi
-Version:        1.0.5
+Version:        1.0.6
 Release:        0
 #
 Summary:        Modular, Secure, and Well Designed IRC Client