- Translation updates: es, pl, uk, fr
- EXIF_TAG_SENSITIVITY_TYPE decoder added, added some more Exif 2.3 tags:
EXIF_TAG_STANDARD_OUTPUT_SENSITIVITY
EXIF_TAG_RECOMMENDED_EXPOSURE_INDEX
EXIF_TAG_ISO_SPEED
EXIF_TAG_ISO_SPEEDLatitudeYYY
EXIF_TAG_ISO_SPEEDLatitudeZZZ
EXIF_TAG_OFFSET_TIME
EXIF_TAG_OFFSET_TIME_ORIGINAL
EXIF_TAG_OFFSET_TIME_DIGITIZED
EXIF_TAG_IMAGE_DEPTH
- be more relaxed to out of order JPG / EXIF dataheaders in files generated by some tools
- default GPS IFD table added
- Decode more Nikon Makernote tag names
- Added Apple iOS Makernote
- Security fixes:
- CVE-2020-0198: unsigned integer overflow in exif_data_load_data_content
- CVE-2020-0452: compiler optimization could remove an a
bufferoverflow check, making a buffer overflow possible with some
EXIF tags
- some more denial of service (compute time or stack exhaustion) counter-measures
added that avoid minutes of decoding time with malformed files found
by OSS-Fuzz
OBS-URL: https://build.opensuse.org/package/show/graphics/libexif?expand=0&rev=41
* Fixed some buffer overflows in exif_entry_format_value()
This fixes CVE-2012-2814. Reported by Mateusz Jurczyk of
Google Security Team
* Fixed an off-by-one error in exif_convert_utf16_to_utf8()
This can cause a one-byte NUL write past the end of the buffer.
This fixes CVE-2012-2840
* Don't read past the end of a tag when converting from UTF-16
This fixes CVE-2012-2813. Reported by Mateusz Jurczyk of
Google Security Team
* Fixed an out of bounds read on corrupted input
The EXIF_TAG_COPYRIGHT tag ought to be, but perhaps is not,
NUL-terminated.
This fixes CVE-2012-2812. Reported by Mateusz Jurczyk of
Google Security Team
* Fixed a buffer overflow problem in exif_entry_get_value
If the application passed in a buffer length of 0, then it would
be treated as the buffer had unlimited length.
This fixes CVE-2012-2841
* Fix a buffer overflow on corrupt EXIF data.
This fixes bug #3434540 and fixes part of CVE-2012-2836
Reported by Yunho Kim
* Fix a buffer overflow on corrupted JPEG data
An unsigned data length might wrap around when decremented
below zero, bypassing sanity checks on length.
This code path can probably only occur if exif_data_load_data()
is called directly by the application on data that wasn't parsed
by libexif itself.
This solves the other part of CVE-2012-2836
* Fixed some possible division-by-zeros in Olympus-style makernotes
OBS-URL: https://build.opensuse.org/package/show/graphics/libexif?expand=0&rev=18
* New translations: bs, tr
* Updated translations: be, cs, da, de, en_GB, en_CA, it, ja, nl, pl, pt_BR,
pt, ru, sk, sq, sr, sv, vi, zh_CN
* Fixed some problems in the write-exif.c example program
* Stop listing -lm as a required library for dynamic linking in libexif.pc
* Turned on the --enable-silent-rules configure option
* Changed a lot of strings to make the case of the text more consistent
* exif_entry_dump() now displays the correct tag name for GPS tags
* Fixed some invalid format specifiers that caused problems on some platforms
* Display rational numbers with the right number of significant figures
- remove "la" files
* Enhanced support of Canon and Olympus makernotes
- fixed endless loop problem in exif_content_remove_entry()
- rpmlint fixes
OBS-URL: https://build.opensuse.org/package/show/graphics/libexif?expand=0&rev=9
