Accepting request 535789 from home:ailin_nemui:branches:server:irc

- update to 1.0.5 - Fix missing -sasl_method '' in /NETWORK (#718, #719). - Fix incorrect restoration of term state when hitting SUSP inside screen (#737, #733). - Fix out of bounds read when compressing colour sequences. Found by Hanno Böck (GL#12, GL!18). CVE-2017-15228 - Fix use after free condition during a race condition when waiting on channel sync during a rejoin (GL#13, GL!19). CVE-2017-15227 - Fix null pointer dereference when parsing certain malformed CTCP DCC messages (GL#14, GL!20). CVE-2017-15721 - Fix crash due to null pointer dereference when failing to split messages due to overlong nick or target (GL#15, GL!21). CVE-2017-15723 - Fix out of bounds read when trying to skip a safe channel ID without verifying that the ID is long enough (GL#16, GL!22). CVE-2017-15722 - Fix return of random memory when inet_ntop failed (#769). - Minor statusbar help update. By Robert Bisewski (#758, #763). OBS-URL: https://build.opensuse.org/request/show/535789 OBS-URL: https://build.opensuse.org/package/show/server:irc/irssi?expand=0&rev=93
2017-10-22 14:36:47 +00:00 · 2017-10-22 14:36:47 +00:00 · 910c0df5a3
commit 910c0df5a3
parent c416bbfc70
6 changed files with 35 additions and 10 deletions
--- a/irssi-1.0.4.tar.xz
+++ b/irssi-1.0.4.tar.xz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:b85c07dbafe178213eccdc69f5f8f0ac024dea01c67244668f91ec1c06b986ca
-size 1030956
--- a/irssi-1.0.4.tar.xz.asc
+++ b/irssi-1.0.4.tar.xz.asc
@ -1,6 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iF0EABECAB0WIQR+5l4wgqX7Bqx8No0AzLWH3b7w4QUCWV1CpAAKCRAAzLWH3b7w
-4Tm1AJ9nRPAFLh7sttB4cRFFgRP1Z7h4XACfd78nuZRIjdfdl7fdAt4FB3/4ee4=
-=qXos
-----END PGP SIGNATURE-----
--- a/irssi-1.0.5.tar.xz
+++ b/irssi-1.0.5.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:c2556427e12eb06cabfed40839ac6f57eb8b1aa6365fab6dfcd331b7a04bb914
+size 1032308
--- a/irssi-1.0.5.tar.xz.asc
+++ b/irssi-1.0.5.tar.xz.asc
@ -0,0 +1,6 @@
+-----BEGIN PGP SIGNATURE-----
+
+iF0EABECAB0WIQR+5l4wgqX7Bqx8No0AzLWH3b7w4QUCWeoXfAAKCRAAzLWH3b7w
+4V4fAKCFQv0QZ5fRqkEemOkYYKXV/bI53QCfWx2ScwDs15115ceOGrxQLIIDv54=
+=Atv1
+-----END PGP SIGNATURE-----
--- a/irssi.changes
+++ b/irssi.changes
@ -1,3 +1,28 @@
+-------------------------------------------------------------------
+Sun Oct 22 13:46:51 UTC 2017 - ailin.nemui@gmail.com
+
+- update to 1.0.5
+  - Fix missing -sasl_method '' in /NETWORK (#718, #719).
+  - Fix incorrect restoration of term state when hitting SUSP
+    inside screen (#737, #733).
+  - Fix out of bounds read when compressing colour
+    sequences. Found by Hanno Böck (GL#12, GL!18). CVE-2017-15228
+  - Fix use after free condition during a race condition when
+    waiting on channel sync during a rejoin (GL#13, GL!19).
+    CVE-2017-15227
+  - Fix null pointer dereference when parsing certain malformed
+    CTCP DCC messages (GL#14, GL!20).
+    CVE-2017-15721
+  - Fix crash due to null pointer dereference when failing to
+    split messages due to overlong nick or target (GL#15, GL!21).
+    CVE-2017-15723
+  - Fix out of bounds read when trying to skip a safe channel ID
+    without verifying that the ID is long enough (GL#16, GL!22).
+    CVE-2017-15722
+  - Fix return of random memory when inet_ntop failed (#769).
+  - Minor statusbar help update. By Robert Bisewski (#758,
+    #763).
+
 -------------------------------------------------------------------
 Thu Jul  6 13:41:08 UTC 2017 - ailin.nemui@gmail.com

--- a/irssi.spec
+++ b/irssi.spec
@ -18,7 +18,7 @@

 %bcond_with socks
 Name:           irssi
-Version:        1.0.4
+Version:        1.0.5
 Release:        0
 #
 Summary:        Modular, Secure, and Well Designed IRC Client