Accepting request 180706 from X11:XOrg

update to version 1.0.9 (forwarded request 180665 from tobijk) OBS-URL: https://build.opensuse.org/request/show/180706 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libXv?expand=0&rev=7
2013-06-25 07:28:35 +00:00 · 2013-06-25 07:28:35 +00:00 · 1bbcf1f8b5
commit 1bbcf1f8b5
parent 74a9f5e50f 711caebdaa
4 changed files with 14 additions and 4 deletions
--- a/libXv-1.0.8.tar.bz2
+++ b/libXv-1.0.8.tar.bz2
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:4f00eb5347390909cea4e53a69425839d2a6a44e0e0613321d59e7e4aeaf73d7
-size 308065
--- a/libXv-1.0.9.tar.bz2
+++ b/libXv-1.0.9.tar.bz2
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a874dbf864d0271bbe795af67ef5b3f20096c92fc11eacbf0d2af00e32bc5b4b
+size 309744
--- a/libXv.changes
+++ b/libXv.changes
@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Sun Jun 23 14:47:39 UTC 2013 - tobias.johannes.klausmann@mni.thm.de
+
+- Update to version 1.0.9:
+  This quick fix release corrects an issue with the security fix from 1.0.8,
+  in which, if the size checks did determine the response from the X server
+  was too large to fit in the buffer it had allocated, XvQueryPortAttributes
+  could return a pointer to the caller that pointed to uninitialized memory
+  where the caller expected a nil-terminated string.
+
 -------------------------------------------------------------------
 Sat Jun  1 20:25:05 UTC 2013 - tobias.johannes.klausmann@mni.thm.de

--- a/libXv.spec
+++ b/libXv.spec
@ -18,7 +18,7 @@

 Name:           libXv
 %define lname	libXv1
-Version:        1.0.8
+Version:        1.0.9
 Release:        0
 Summary:        X Video extension library
 License:        MIT