Accepting request 180665 from home:tobijk:X11:XOrg

update to version 1.0.9 OBS-URL: https://build.opensuse.org/request/show/180665 OBS-URL: https://build.opensuse.org/package/show/X11:XOrg/libXv?expand=0&rev=10
2013-06-24 07:43:23 +00:00 · 2013-06-24 07:43:23 +00:00 · 711caebdaa
commit 711caebdaa
parent 439c476594
4 changed files with 14 additions and 4 deletions
--- a/libXv-1.0.8.tar.bz2
+++ b/libXv-1.0.8.tar.bz2
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:4f00eb5347390909cea4e53a69425839d2a6a44e0e0613321d59e7e4aeaf73d7
-size 308065
--- a/libXv-1.0.9.tar.bz2
+++ b/libXv-1.0.9.tar.bz2
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:a874dbf864d0271bbe795af67ef5b3f20096c92fc11eacbf0d2af00e32bc5b4b
+size 309744
--- a/libXv.changes
+++ b/libXv.changes
@ -1,3 +1,13 @@
+-------------------------------------------------------------------
+Sun Jun 23 14:47:39 UTC 2013 - tobias.johannes.klausmann@mni.thm.de
+
+- Update to version 1.0.9:
+  This quick fix release corrects an issue with the security fix from 1.0.8,
+  in which, if the size checks did determine the response from the X server
+  was too large to fit in the buffer it had allocated, XvQueryPortAttributes
+  could return a pointer to the caller that pointed to uninitialized memory
+  where the caller expected a nil-terminated string.
+
 -------------------------------------------------------------------
 Sat Jun  1 20:25:05 UTC 2013 - tobias.johannes.klausmann@mni.thm.de

--- a/libXv.spec
+++ b/libXv.spec
@ -18,7 +18,7 @@

 Name:           libXv
 %define lname	libXv1
-Version:        1.0.8
+Version:        1.0.9
 Release:        0
 Summary:        X Video extension library
 License:        MIT