Commit Graph

73 Commits

Author SHA256 Message Date
f1496fc12e OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=145 2023-06-27 13:20:09 +00:00
96d33f7940 - merge two spec files into one
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=144
2023-06-23 17:40:39 +00:00
f8e48b34a7 revert last change
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=143
2023-06-02 08:12:26 +00:00
741902d408 - security update
- added patches
  fix CVE-2023-2804 [bsc#1211542], heap-buffer-overflow in h2v2_merged_upsample_internal() at /libjpeg-turbo/jdmrgext.c
  + libjpeg-turbo-CVE-2023-2804.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=142
2023-06-02 07:32:10 +00:00
cc64f95dae Accepting request 1070184 from home:pluskalm:branches:graphics
- Build AVX2 enabled hwcaps library for x86_64-v3

OBS-URL: https://build.opensuse.org/request/show/1070184
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=138
2023-03-13 09:23:32 +00:00
cf899b3057 Accepting request 1066935 from home:polslinux:branches:graphics
- update to 2.1.5.1:
  * Fixed a regression introduced by 2.0 beta1[15] that caused a buffer
    overrun in the progressive Huffman encoder when attempting to transform
    a specially-crafted malformed 12-bit-per-component JPEG image into a
    progressive 12-bit-per-component JPEG image using a 12-bit-per-component
    build of libjpeg-turbo.
  * Fixed an issue whereby, when using a 12-bit-per-component build of
    libjpeg-turbo (-DWITH_12BIT=1), passing samples with values greater than 4095
    or less than 0 to jpeg_write_scanlines() caused a buffer overrun or
    underrun in the RGB-to-YCbCr color converter.
  * Fixed a floating point exception that occurred when attempting to use
    the jpegtran -drop and -trim options to losslessly transform a
    specially-crafted malformed JPEG image.
  * Fixed an issue in tjBufSizeYUV2() whereby it returned a bogus result,
    rather than throwing an error, if the align parameter was not a power of 2.
  * Fixed a similar issue in tjCompressFromYUV() whereby it generated a corrupt
    JPEG image in certain cases, rather than throwing an error,
    if the align parameter was not a power of 2.
  * Fixed an issue whereby tjDecompressToYUV2(), which is a wrapper for
    tjDecompressToYUVPlanes(), used the desired YUV image dimensions
    rather than the actual scaled image dimensions when computing the plane
    pointers and strides to pass to tjDecompressToYUVPlanes().
    This caused a buffer overrun and subsequent segfault if the desired
    image dimensions exceeded the scaled image dimensions.
  * Fixed an issue whereby, when decompressing a 12-bit-per-component JPEG
    image (-DWITH_12BIT=1) using an alpha-enabled output color space such as
    JCS_EXT_RGBA, the alpha channel was set to 255 rather than 4095.
  * Fixed an issue whereby the Java version of TJBench did not accept a range
    of quality values.
  * Fixed an issue whereby, when -progressive was passed to TJBench,

OBS-URL: https://build.opensuse.org/request/show/1066935
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=136
2023-02-24 07:32:56 +00:00
97b8d40324 Accepting request 1045193 from home:dstoecker:branches:graphics
- Add explicit provides for jpegtran, so it can be installed easier

Adds an explicit provides line, so that "zypper in jpegtran" will work in future instead of having to search which package contains it. I don't consider the other bin-contents important enough, only jpegtran.

OBS-URL: https://build.opensuse.org/request/show/1045193
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=134
2023-01-02 11:58:40 +00:00
Dirk Stoecker
290b7f1397 Accepting request 995212 from home:derselbst:branches:graphics
- update to 2.1.4:
  * Fixed a regression introduced in 2.1.3 that caused build failures with
    Visual Studio 2010.
  * The tjDecompressHeader3() function in the TurboJPEG C API and the
    TJDecompressor.setSourceImage() method in the TurboJPEG Java API now
    accept "abbreviated table specification" (AKA "tables-only") datastreams,
    which can be used to prime the decompressor with quantization and Huffman
    tables that can be used when decompressing subsequent "abbreviated image"
    datastreams.
  * libjpeg-turbo now performs run-time detection of AltiVec instructions on
    OS X/PowerPC systems if AltiVec instructions are not enabled at compile
    time. This allows both AltiVec-equipped (PowerPC G4 and G5) and
    non-AltiVec-equipped (PowerPC G3) CPUs to be supported using the same
    build of libjpeg-turbo.
  * Fixed an error ("Bogus virtual array access") that occurred when
    attempting to decompress a progressive JPEG image with a height less than
    or equal to one iMCU (8 * the vertical sampling factor) using
    buffered-image mode with interblock smoothing enabled. This was a
    regression introduced by 2.1 beta1[6(b)].
  * Fixed two issues that prevented partial image decompression from working
    properly with buffered-image mode:
      * Attempting to call jpeg_crop_scanline() after jpeg_start_decompress()
        but before jpeg_start_output() resulted in an error ("Improper call to
        JPEG library in state 207".)
      * Attempting to use jpeg_skip_scanlines() resulted in an error ("Bogus
        virtual array access") under certain circumstances.

OBS-URL: https://build.opensuse.org/request/show/995212
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=132
2022-08-18 13:43:40 +00:00
9b97acbf83 Accepting request 970636 from home:elvigia:branches:graphics
- Use nasm instead of yasm, the latter has not released any update 
   in 7 years.

OBS-URL: https://build.opensuse.org/request/show/970636
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=128
2022-04-19 07:32:27 +00:00
8f7a11c0e3 OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=126 2022-04-11 18:23:05 +00:00
e2f53ca477 Accepting request 967883 from home:dirkmueller:Factory
- update to 2.1.3:
  * Fixed a regression introduced by 2.0 beta1[7] whereby cjpeg compressed PGM
    input files into full-color JPEG images unless the `-grayscale` option was
    used.
  
  * cjpeg now automatically compresses GIF and 8-bit BMP input files into
    grayscale JPEG images if the input files contain only shades of gray.
  
  * The build system now enables the intrinsics implementation of the AArch64
    (Arm 64-bit) Neon SIMD extensions by default when using GCC 12 or later.
  
  * Fixed a segfault that occurred while decompressing a 4:2:0 JPEG image using
    the merged (non-fancy) upsampling algorithms (that is, with
    `cinfo.do_fancy_upsampling` set to `FALSE`) along with `jpeg_crop_scanline()`.
    Specifically, the segfault occurred if the number of bytes remaining in the
    output buffer was less than the number of bytes required to represent one
    uncropped scanline of the output image.  For that reason, the issue could only
    be reproduced using the libjpeg API, not using djpeg.

OBS-URL: https://build.opensuse.org/request/show/967883
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=125
2022-04-11 18:18:29 +00:00
bba0261cec Accepting request 933591 from home:dirkmueller:Factory
- update to 2.1.2:
  * Fixed a regression introduced by 2.1 beta1[13] that caused the remaining
    GAS implementations of AArch64 (Arm 64-bit) Neon SIMD functions (which are used
    by default with GCC for performance reasons) to be placed in the `.rodata`
    section rather than in the `.text` section.  This caused the GNU linker to
    automatically place the `.rodata` section in an executable segment, which
    prevented libjpeg-turbo from working properly with other linkers and also
    represented a potential security risk.
  * Fixed an issue whereby the `tjTransform()` function incorrectly computed the
    MCU block size for 4:4:4 JPEG images with non-unary sampling factors and thus
    unduly rejected some cropping regions, even though those regions aligned with
    8x8 MCU block boundaries.
  * Fixed a regression introduced by 2.1 beta1[13] that caused the build system
    to enable the Arm Neon SIMD extensions when targetting Armv6 and other legacy
    architectures that do not support Neon instructions.
  * libjpeg-turbo now performs run-time detection of AltiVec instructions on
    FreeBSD/PowerPC systems if AltiVec instructions are not enabled at compile
    time.  This allows both AltiVec-equipped and non-AltiVec-equipped CPUs to be
    supported using the same build of libjpeg-turbo.
  * cjpeg now accepts a `-strict` argument similar to that of djpeg and
    jpegtran, which causes the compressor to abort if an LZW-compressed GIF input
    image contains incomplete or corrupt image data.

OBS-URL: https://build.opensuse.org/request/show/933591
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=124
2021-11-25 10:04:41 +00:00
6e2a30ff1f - version update to 2.1.1
1. Fixed a regression introduced in 2.1.0 that caused build failures
     with non-GCC-compatible compilers for Un*x/Arm platforms.
  2. Fixed a regression introduced by 2.1 beta1[13] that prevented the
     Arm 32-bit (AArch32) Neon SIMD extensions from building unless
     the C compiler flags included -mfloat-abi=softfp or -mfloat-abi=hard.
  3. Fixed an issue in the AArch32 Neon SIMD Huffman encoder whereby
     reliance on undefined C compiler behavior led to crashes
     ("SIGBUS: illegal alignment") on Android systems when running
     AArch32/Thumb builds of libjpeg-turbo built with recent versions
     of Clang.
  4. Added a command-line argument (-copy icc) to jpegtran that causes
     it to copy only the ICC profile markers from the source file and
     discard any other metadata.
  5. libjpeg-turbo should now build and run on CHERI-enabled
     architectures, which use capability pointers that are larger than
     the size of size_t.
  6. Fixed a regression introduced by 2.1 beta1[5] that caused a segfault
     in the 64-bit SSE2 Huffman encoder when attempting to losslessly
     transform a specially-crafted malformed JPEG image.

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=122
2021-08-20 11:49:34 +00:00
ba50c0c1ed Accepting request 890322 from home:dirkmueller:Factory
- disable SIMD for armv6hl, not available

OBS-URL: https://build.opensuse.org/request/show/890322
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=120
2021-05-04 11:15:25 +00:00
4dabc5c6a4 Accepting request 888693 from home:Guillaume_G:branches:graphics
- version update to 2.1.0

OBS-URL: https://build.opensuse.org/request/show/888693
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=117
2021-04-27 07:58:42 +00:00
c6188bbe9e Accepting request 862263 from home:Andreas_Schwab:Factory
- Fix setting of FLOATTEST

OBS-URL: https://build.opensuse.org/request/show/862263
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=115
2021-01-12 09:46:34 +00:00
40ed13eecb - version update to 2.0.6
1. Fixed "using JNI after critical get" errors that occurred on Android
  platforms when using any of the YUV encoding/compression/decompression/decoding
  methods in the TurboJPEG Java API.
  2. Fixed or worked around multiple issues with `jpeg_skip_scanlines()`:
       - Fixed segfaults or "Corrupt JPEG data: premature end of data segment"
  errors in `jpeg_skip_scanlines()` that occurred when decompressing 4:2:2 or
  4:2:0 JPEG images using merged (non-fancy) upsampling/color conversion (that
  is, when setting `cinfo.do_fancy_upsampling` to `FALSE`.)  2.0.0[6] was a
  similar fix, but it did not cover all cases.
       - `jpeg_skip_scanlines()` now throws an error if two-pass color
  quantization is enabled.  Two-pass color quantization never worked properly
  with `jpeg_skip_scanlines()`, and the issues could not readily be fixed.
       - Fixed an issue whereby `jpeg_skip_scanlines()` always returned 0 when
  skipping past the end of an image.
  3. The Arm 64-bit (Armv8) Neon SIMD extensions can now be built using MinGW
  toolchains targetting Arm64 (AArch64) Windows binaries.
  4. Fixed unexpected visual artifacts that occurred when using
  `jpeg_crop_scanline()` and interblock smoothing while decompressing only the DC
  scan of a progressive JPEG image.
  5. Fixed an issue whereby libjpeg-turbo would not build if 12-bit-per-component
  JPEG support (`WITH_12BIT`) was enabled along with libjpeg v7 or libjpeg v8
  API/ABI emulation (`WITH_JPEG7` or `WITH_JPEG8`.)
- modified sources
  % libjpeg-turbo.keyring

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=113
2020-12-28 15:40:36 +00:00
2e077f9912 Accepting request 826111 from home:elimat:branches:graphics
- Update to version 2.0.5
  * Worked around issues in the MIPS DSPr2 SIMD extensions that caused failures
    in the libjpeg-turbo regression tests. Specifically, the 
	jsimd_h2v1_downsample_dspr2() and jsimd_h2v2_downsample_dspr2() functions
	in the MIPS DSPr2 SIMD extensions are now disabled until/unless they can be
    fixed, and other functions that are incompatible with big endian MIPS CPUs
	are disabled when building libjpeg-turbo for such CPUs.
  * Fixed an oversight in the TJCompressor.compress(int) method in the
    TurboJPEG Java API that caused an error ("java.lang.IllegalStateException:
	No source image is associated with this instance") when attempting to use
	that method to compress a YUV image.
  * Fixed an issue (CVE-2020-13790) in the PPM reader that caused a buffer
    overrun in cjpeg, TJBench, or the tjLoadImage() function if one of the
	values in a binary PPM/PGM input file exceeded the maximum value defined in
	the file's header and that maximum value was less than 255. libjpeg-turbo
	1.5.0 already included a similar fix for binary PPM/PGM files with maximum
	values greater than 255.
  * The TurboJPEG API library's global error handler, which is used in
    functions such as tjBufSize() and tjLoadImage() that do not require a
	TurboJPEG instance handle, is now thread-safe on platforms that support
	thread-local storage.
- Fix source verification
- Drop patches fixed upstream:
  * ctest-depends.patch
  * libjpeg-turbo-CVE-2020-13790.patch
- Run spec-cleaner
  * Remove package groups
  * Use make macros
- Update to version 2.0.5
  * Worked around issues in the MIPS DSPr2 SIMD extensions that caused failures
    in the libjpeg-turbo regression tests. Specifically, the 
	jsimd_h2v1_downsample_dspr2() and jsimd_h2v2_downsample_dspr2() functions
	in the MIPS DSPr2 SIMD extensions are now disabled until/unless they can be
    fixed, and other functions that are incompatible with big endian MIPS CPUs
	are disabled when building libjpeg-turbo for such CPUs.
  * Fixed an oversight in the TJCompressor.compress(int) method in the
    TurboJPEG Java API that caused an error ("java.lang.IllegalStateException:
	No source image is associated with this instance") when attempting to use
	that method to compress a YUV image.
  * Fixed an issue (CVE-2020-13790) in the PPM reader that caused a buffer
    overrun in cjpeg, TJBench, or the tjLoadImage() function if one of the
	values in a binary PPM/PGM input file exceeded the maximum value defined in
	the file's header and that maximum value was less than 255. libjpeg-turbo
	1.5.0 already included a similar fix for binary PPM/PGM files with maximum
	values greater than 255.
  * The TurboJPEG API library's global error handler, which is used in
    functions such as tjBufSize() and tjLoadImage() that do not require a
	TurboJPEG instance handle, is now thread-safe on platforms that support
	thread-local storage.
- Drop patches fixed upstream:
  * ctest-depends.patch
  * libjpeg-turbo-CVE-2020-13790.patch
- Run spec-cleaner
  * Remove package groups
  * Use make macros

OBS-URL: https://build.opensuse.org/request/show/826111
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=111
2020-08-13 07:14:02 +00:00
5ce7ee4837 - security update
- added patches
  fix CVE-2020-13790 [bsc#1172491], heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file
  + libjpeg-turbo-CVE-2020-13790.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=108
2020-06-08 11:50:37 +00:00
a98b45b3af OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=105 2020-03-30 08:15:14 +00:00
6c22e4b5a5 Accepting request 789475 from home:ukbeast89:branches:graphics
- Upate to version 2.0.4:
- bug 388 was fixed upstream
  https://github.com/libjpeg-turbo/libjpeg-turbo/issues/388
- removed patches, as it is included in this release.
  * Fixed a regression in the Windows packaging system 
   (introduced by 2.0 beta1[2]) whereby, if both the 64-bit libjpeg-turbo 
   SDK for GCC and the 64-bit libjpeg-turbo SDK for Visual C++ were installed 
   on the same system, only one of them could be uninstalled.
  * Fixed a signed integer overflow and subsequent segfault that occurred when 
    attempting to decompress images with more than 715827882 pixels using the 64-bit C version of TJBench.
  * Fixed out-of-bounds write in tjDecompressToYUV2() and tjDecompressToYUVPlanes() 
    (sometimes manifesting as a double free) that occurred when attempting to decompress 
    grayscale JPEG images that were compressed with a sampling factor other than 1 
    (for instance, with cjpeg -grayscale -sample 2x2).
  * Fixed a regression introduced by 2.0.2[5] that caused the TurboJPEG API to incorrectly 
    identify some JPEG images with unusual sampling factors as 4:4:4 JPEG images. 
    This was known to cause a buffer overflow when attempting to decompress some such images using 
    tjDecompressToYUV2() or tjDecompressToYUVPlanes().
  * Fixed an issue, detected by ASan, whereby attempting to losslessly transform a specially-crafted 
    malformed JPEG image containing an extremely-high-frequency coefficient block 
    (junk image data that could never be generated by a legitimate JPEG compressor) could cause the 
    Huffman encoder's local buffer to be overrun. (Refer to 1.4.0[9] and 1.4beta1[15].) 
    Given that the buffer overrun was fully contained within the stack and did not cause a segfault 
    or other user-visible errant behavior, and given that the lossless transformer (unlike the decompressor) 
    is not generally exposed to arbitrary data exploits, this issue did not likely pose a security risk.
    The ARM 64-bit (ARMv8) NEON SIMD assembly code now stores constants in a separate read-only data 
    section rather than in the text section, to support execute-only memory layouts.
- Upate to version 2.0.4:
  * Fixed a regression in the Windows packaging system 
   (introduced by 2.0 beta1[2]) whereby, if both the 64-bit libjpeg-turbo 
   SDK for GCC and the 64-bit libjpeg-turbo SDK for Visual C++ were installed 
   on the same system, only one of them could be uninstalled.
  * Fixed a signed integer overflow and subsequent segfault that occurred when 
    attempting to decompress images with more than 715827882 pixels using the 64-bit C version of TJBench.
  * Fixed out-of-bounds write in tjDecompressToYUV2() and tjDecompressToYUVPlanes() 
    (sometimes manifesting as a double free) that occurred when attempting to decompress 
    grayscale JPEG images that were compressed with a sampling factor other than 1 
    (for instance, with cjpeg -grayscale -sample 2x2).
  * Fixed a regression introduced by 2.0.2[5] that caused the TurboJPEG API to incorrectly 
    identify some JPEG images with unusual sampling factors as 4:4:4 JPEG images. 
    This was known to cause a buffer overflow when attempting to decompress some such images using 
    tjDecompressToYUV2() or tjDecompressToYUVPlanes().
  * Fixed an issue, detected by ASan, whereby attempting to losslessly transform a specially-crafted 
    malformed JPEG image containing an extremely-high-frequency coefficient block 
    (junk image data that could never be generated by a legitimate JPEG compressor) could cause the 
    Huffman encoder's local buffer to be overrun. (Refer to 1.4.0[9] and 1.4beta1[15].) 
    Given that the buffer overrun was fully contained within the stack and did not cause a segfault 
    or other user-visible errant behavior, and given that the lossless transformer (unlike the decompressor) 
    is not generally exposed to arbitrary data exploits, this issue did not likely pose a security risk.
    The ARM 64-bit (ARMv8) NEON SIMD assembly code now stores constants in a separate read-only data 
    section rather than in the text section, to support execute-only memory layouts.

OBS-URL: https://build.opensuse.org/request/show/789475
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=104
2020-03-30 07:51:51 +00:00
551c77d69b Accepting request 786667 from home:GeoDerp:branches:graphics
- Added If statments for Fedora not having sertain openSUSE macros
- Added If statments for Fedora not having sertain openSUSE macros

OBS-URL: https://build.opensuse.org/request/show/786667
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=103
2020-03-30 07:45:57 +00:00
fb14e2719a - fix upstream bug 388 [bsc#1156402]
- added patches
  https://github.com/libjpeg-turbo/libjpeg-turbo/issues/388
  + libjpeg-turbo-issue-388.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=100
2019-11-12 14:10:19 +00:00
8d141fa87b Accepting request 735401 from home:iznogood:branches:graphics
New upstream release

OBS-URL: https://build.opensuse.org/request/show/735401
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=98
2019-10-07 07:26:37 +00:00
5f700723e3 - use -O0 for debugging like everywhere (better experience)
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=96
2019-03-27 06:47:52 +00:00
b61c1b9bd4 - updated to version 2.0.2:
1. Fixed a regression introduced by 2.0.1[5] that prevented a runtime search
  path (rpath) from being embedded in the libjpeg-turbo shared libraries and
  executables for macOS and iOS.  This caused a fatal error of the form
  "dyld: Library not loaded" when attempting to use one of the executables,
  unless `DYLD_LIBRARY_PATH` was explicitly set to the location of the
  libjpeg-turbo shared libraries.
  2. Fixed an integer overflow and subsequent segfault (CVE-2018-20330) that
  occurred when attempting to load a BMP file with more than 1 billion pixels
  using the `tjLoadImage()` function.
  3. Fixed a buffer overrun (CVE-2018-19664) that occurred when attempting to
  decompress a specially-crafted malformed JPEG image to a 256-color BMP using
  djpeg.
  4. Fixed a floating point exception that occurred when attempting to
  decompress a specially-crafted malformed JPEG image with a specified image
  width or height of 0 using the C version of TJBench.
  5. The TurboJPEG API will now decompress 4:4:4 JPEG images with 2x1, 1x2, 3x1,
  or 1x3 luminance and chrominance sampling factors.  This is a non-standard way
  of specifying 1x subsampling (normally 4:4:4 JPEGs have 1x1 luminance and
  chrominance sampling factors), but the JPEG format and the libjpeg API both
  allow it.
  6. Fixed a regression introduced by 2.0 beta1[7] that caused djpeg to generate
  incorrect PPM images when used with the `-colors` option.
  7. Fixed an issue whereby a static build of libjpeg-turbo (a build in which
  `ENABLE_SHARED` is `0`) could not be installed using the Visual Studio IDE.
  8. Fixed a severe performance issue in the Loongson MMI SIMD extensions that
  occurred when compressing RGB images whose image rows were not 64-bit-aligned.
- modified patches
  % ctest-depends.patch (refreshed)
- deleted patches

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=94
2019-03-13 12:04:41 +00:00
c4626aa891 Accepting request 668258 from home:jengelh:branches:graphics
- Use -Og for debug_build

OBS-URL: https://build.opensuse.org/request/show/668258
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=92
2019-01-24 09:15:00 +00:00
715593d829 - security update
* CVE-2018-20330 [bsc#1120646]
    + libjpeg-turbo-CVE-2018-20330.patch

- security update
  * CVE-2018-20330 [bsc#1120646]
    + libjpeg-turbo-CVE-2018-20330.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=90
2019-01-03 16:48:10 +00:00
74293dc58b - security update
* CVE-2018-19644 [bsc#1117890]
    + libjpeg-turbo-CVE-2018-19644.patch

- security update
  * CVE-2018-19644 [bsc#1117890]
    + libjpeg-turbo-CVE-2018-19644.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=89
2019-01-02 10:16:30 +00:00
e2b114a63d - asan_build: build ASAN included
- debug_build: build more suitable for debugging

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=87
2018-12-03 13:22:26 +00:00
61501d0852 - update to version 2.0.1:
* jsimd_quantize_float_dspr2() and jsimd_convsamp_float_dspr2()
    functions in the MIPS DSPr2 SIMD extensions are now disabled
    at compile time if the soft float ABI is enabled
  * Fixed a regression in the SIMD feature detection code,
    introduced by the AVX2 SIMD extensions
  * Fixed out-of-bounds read in cjpeg that occurred when attempting
    to compress a specially-crafted malformed color-index
    (8-bit-per-sample) Targa file

- update to version 2.0.1:
  * jsimd_quantize_float_dspr2() and jsimd_convsamp_float_dspr2() 
    functions in the MIPS DSPr2 SIMD extensions are now disabled
    at compile time if the soft float ABI is enabled
  * Fixed a regression in the SIMD feature detection code,
    introduced by the AVX2 SIMD extensions
  * Fixed out-of-bounds read in cjpeg that occurred when attempting
    to compress a specially-crafted malformed color-index
    (8-bit-per-sample) Targa file

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=85
2018-11-13 11:14:28 +00:00
8be3fb3b5b Accepting request 637382 from home:Andreas_Schwab:Factory
- Define FLOATTEST=64bit on ppc
- ctest-depends.patch: Add missing testsuite depedencies

OBS-URL: https://build.opensuse.org/request/show/637382
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=83
2018-09-24 08:15:46 +00:00
Ismail Dönmez
adaa56e011 Accepting request 628184 from home:jengelh:branches:graphics
- Update description and switch out MMX/SSE by the more generic
  term SIMD.

OBS-URL: https://build.opensuse.org/request/show/628184
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=81
2018-08-08 18:05:14 +00:00
70d2b5c6bc Accepting request 626889 from home:scarabeus_iv:branches:graphics
- Version update to 2.0.0:
  * Cmake as a buildsystem
  * avx support
  * Better error handling
  * More use of SSE2
- Drop patch libjpeg-1.4.0-ocloexec.patch; conflicts, would be better
  handled by upstream anyway
- Drop patches merged upstream:
  * libjpeg-turbo-CVE-2018-11813.patch
  * libjpeg-turbo-CVE-2018-1152.patch

- Version update to 2.0.0:
  * Cmake as a buildsystem
  * avx support
  * Better error handling
  * More use of SSE2
- Drop patch libjpeg-1.4.0-ocloexec.patch; conflicts, would be better
  handled by upstream anyway
- Drop patches merged upstream:
  * libjpeg-turbo-CVE-2018-11813.patch
  * libjpeg-turbo-CVE-2018-1152.patch

OBS-URL: https://build.opensuse.org/request/show/626889
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=79
2018-08-01 12:49:51 +00:00
596364ea42 - security update:
* CVE-2018-1152 [bsc#1098155]
    + libjpeg-turbo-CVE-2018-1152.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=76
2018-06-19 13:41:42 +00:00
6a32bbef39 - security update:
* CVE-2018-11813 [bsc#1096209]
    + libjpeg-turbo-CVE-2018-11813.patch
  * remove redundant libjpeg-turbo-CVE-2017-15232.patch
    [bsc#1062937#c17]

- security update:
  * CVE-2018-11813 [bsc#1096209]
    + libjpeg-turbo-CVE-2018-11813.patch
  * remove redundant libjpeg-turbo-CVE-2017-15232.patch
    [bsc#1062937#c17]

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=75
2018-06-13 07:38:59 +00:00
14882e0733 - update to version 1.5.3
1. Fixed a NullPointerException in the TurboJPEG Java wrapper that occurred
  when using the YUVImage constructor that creates an instance backed by separate
  image planes and allocates memory for the image planes.
  2. Fixed an issue whereby the Java version of TJUnitTest would fail when
  testing BufferedImage encoding/decoding on big endian systems.
  3. Fixed a segfault in djpeg that would occur if an output format other than
  PPM/PGM was selected along with the `-crop` option.  The `-crop` option now
  works with the GIF and Targa formats as well (unfortunately, it cannot be made
  to work with the BMP and RLE formats due to the fact that those output engines
  write scanlines in bottom-up order.)  djpeg will now exit gracefully if an
  output format other than PPM/PGM, GIF, or Targa is selected along with the
  `-crop` option.
  4. Fixed an issue whereby `jpeg_skip_scanlines()` would segfault if color
  quantization was enabled.
  5. TJBench (both C and Java versions) will now display usage information if any
  command-line argument is unrecognized.  This prevents the program from silently
  ignoring typos.
  6. Fixed an access violation in tjbench.exe (Windows) that occurred when the
  program was used to decompress an existing JPEG image.
  7. Fixed an ArrayIndexOutOfBoundsException in the TJExample Java program that
  occurred when attempting to decompress a JPEG image that had been compressed
  with 4:1:1 chrominance subsampling.
  8. Fixed an issue whereby, when using `jpeg_skip_scanlines()` to skip to the
  end of a single-scan (non-progressive) image, subsequent calls to
  `jpeg_consume_input()` would return `JPEG_SUSPENDED` rather than
  `JPEG_REACHED_EOI`.
  9. `jpeg_crop_scanlines()` now works correctly when decompressing grayscale
  JPEG images that were compressed with a sampling factor other than 1 (for
  instance, with `cjpeg -grayscale -sample 2x2`).

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=72
2017-12-18 13:08:44 +00:00
200c331ef4 - security update:
* CVE-2017-15232 [bsc#1062937]
    + libjpeg-turbo-CVE-2017-15232.patch

- security update:
  * CVE-2017-15232 [bsc#1062937]
    + libjpeg-turbo-CVE-2017-15232.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=70
2017-10-12 11:25:22 +00:00
39d197e0da - Update to version 1.5.2
+ Fixed several memory leaks in the TurboJPEG API library that
    could occur if the library was built with certain compilers
    and optimization levels.
  + The libjpeg-turbo memory manager will now honor the
    max_memory_to_use structure member in jpeg_memory_mgr, 
    which can be set to the maximum amount of memory (in bytes)
    that libjpeg-turbo should use during decompression or 
    multi-pass (including progressive) compression. This limit 
    can also be set using the JPEGMEM environment variable or 
    using the -maxmemory switch in cjpeg/djpeg/jpegtran.
  + TJBench will now run each benchmark for 1 second prior to 
    starting the timer, in order to improve the consistency of
    the results. Furthermore, the -warmup option is now used to
    specify the amount of warmup time rather than the number of
    warmup iterations.
  + Fixed an error (short jump is out of range) that occurred 
    when assembling the 32-bit x86 SIMD extensions with NASM
    versions prior to 2.04.
  + Fixed a regression introduced by 1.5 beta1[11] that prevented
    the Java version of TJBench from outputting any reference images
    (the -nowrite switch was accidentally enabled by default.)
    libjpeg-turbo should now build and run with full AltiVec SIMD
    acceleration on PowerPC-based AmigaOS 4 and OpenBSD systems.

- Update to version 1.5.2
  + Fixed several memory leaks in the TurboJPEG API library that
    could occur if the library was built with certain compilers
    and optimization levels.
  + The libjpeg-turbo memory manager will now honor the

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=69
2017-10-12 10:36:08 +00:00
OBS User mrdocs
bec118ee3b Accepting request 503929 from home:jbohac:branches:graphics
- mention the included utilities (djpeg, jpegtran, rdjpgcom, 
  tjbench, and wrjpgcom) in the package description.

OBS-URL: https://build.opensuse.org/request/show/503929
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=65
2017-06-18 00:30:58 +00:00
Ismail Dönmez
a4655283d1 Accepting request 451086 from home:bmwiedemann:reproducible
set build date to enable reproducible builds

OBS-URL: https://build.opensuse.org/request/show/451086
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=63
2017-01-18 15:59:51 +00:00
Ismail Dönmez
6b08fa38b1 - Update to version 1.5.1
+ Fix for PowerPC platforms lacking AltiVec instructions
  + Fix ABI problem with clang/llvm on aarch64.
  + Fancy upsampling is now supported when decompressing JPEG
    images that use 4:4:0 (h1v2) chroma subsampling.
  + If merged upsampling isn't SIMD-accelerated but YCbCr-to-RGB
    conversion is, then libjpeg-turbo will now disable merged
    upsampling when decompressing YCbCr JPEG images into RGB
    or extended RGB output images. This significantly speeds up
    the decompression of 4:2:0 and 4:2:2 JPEGs on ARM platforms
    if fancy upsampling is not used 
    (for example, if the -nosmooth option to djpeg is specified.)
  + The TurboJPEG API will now decompress 4:2:2 and 4:4:0 JPEG
    images with 2x2 luminance sampling factors and 2x1 or 1x2
    chrominance sampling factors.
  + Fixed an unsigned integer overflow in the libjpeg memory manager.
  + Fixed additional negative left shifts and other issues reported
    by the GCC and Clang undefined behavior sanitizers when
    attempting to decompress specially-crafted malformed JPEG
    images. None of these issues posed a security threat, but
    removing the warnings makes it easier to detect actual
    security issues, should they arise in the future.
  + Fixed an out-of-bounds array reference, introduced by
    1.4.902 and detected by the Clang undefined behavior sanitizer,
    that could be triggered by a specially-crafted malformed
    JPEG image with more than four components. Because the
    out-of-bounds reference was still within the same structure,
    it was not known to pose a security threat, but removing
    the warning makes it easier to detect actual security issues,
    should they arise in the future.

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=61
2016-09-21 11:02:46 +00:00
Ismail Dönmez
78fc556257 - Update to version 1.5.0
+ Fixed an issue whereby a malformed motion-JPEG frame could
    cause the "fast path" of libjpeg-turbo's Huffman decoder to
    read from uninitialized memory.
  + Added libjpeg-turbo version and build information to the global
    string table of the libjpeg and TurboJPEG API libraries.
  + Fixed a couple of issues in the PPM reader that would cause
    buffer overruns in cjpeg if one of the values in a binary
    PPM/PGM input file exceeded the maximum value defined in the
    file's header. libjpeg-turbo 1.4.2 already included a similar
    fix for ASCII PPM/PGM files. Note that these issues were not
    security bugs, since they were confined to the cjpeg program
    and did not affect any of the libjpeg-turbo libraries.
  + Fixed an issue whereby attempting to decompress a JPEG file with
    a corrupt header using the tjDecompressToYUV2() function would
    cause the function to abort without returning an error and,
    under certain circumstances, corrupt the stack. This only
    occurred if tjDecompressToYUV2() was called prior to calling
    tjDecompressHeader3(), or if the return value from
    tjDecompressHeader3() was ignored (both cases represent
    incorrect usage of the TurboJPEG API.)
  + The jpeg_stdio_src(), jpeg_mem_src(), jpeg_stdio_dest(),
    and jpeg_mem_dest() functions in the libjpeg API will now
    throw an error if a source/destination manager has already
    been assigned to the compress or decompress object by a
    different function or by the calling program. 

- Update to version 1.5.0
  + Fixed an issue whereby a malformed motion-JPEG frame could
    cause the "fast path" of libjpeg-turbo's Huffman decoder to

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=59
2016-06-08 08:11:04 +00:00
Ismail Dönmez
9b7cee55f1 -
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=57
2016-03-10 13:49:28 +00:00
Ismail Dönmez
216819ba21 - Update to version 1.4.2
+ Crash fixes
  + clang compatibility fixes
  + See the included ChangeLog.txt for the details
- Drop libjpeg-turbo-1.4.0-int32.patch, not needed anymore.
- Drop libjpeg-turbo-remove-test.patch, fixed upstream.

- Update to version 1.4.2
  + Crash fixes
  + clang compatibility fixes
  + See the included ChangeLog.txt for the details
- Drop libjpeg-turbo-1.4.0-int32.patch, not needed anymore.

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=56
2015-10-08 08:08:09 +00:00
bdb19a8a8e Accepting request 289799 from home:jengelh:branches:graphics
- Remove useless same-name provides. Use download URLs not
  dependent on directory structure.

OBS-URL: https://build.opensuse.org/request/show/289799
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=54
2015-03-10 13:14:39 +00:00
391b31016e Accepting request 288518 from home:michel_mno:branches:graphics
-  Remove float tests with new libjpeg-turbo-remove-test.patch
   same as Fedora bug 1161585 related to upstream issue
   https://sourceforge.net/p/libjpeg-turbo/bugs/83/

OBS-URL: https://build.opensuse.org/request/show/288518
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=52
2015-03-03 07:35:33 +00:00
OBS User mrdocs
805f9cb0c0 Accepting request 280687 from home:posophe:branches:graphics
Update

OBS-URL: https://build.opensuse.org/request/show/280687
OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=50
2015-01-10 05:29:06 +00:00
80c5fd18af - security update CVE-2014-9092 [bnc#906761]
* added libjpeg-turbo-CVE-2014-9092.patch

- security update CVE-2014-9092 [bnc#906761]
  * added libjpeg-turbo-CVE-2014-9092.patch

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=48
2014-11-27 09:52:47 +00:00
d79190325f - Obsolete jpeg version 6b, 8.0.1 and 8.0.2 to avoid conflicts
during zypper dup

OBS-URL: https://build.opensuse.org/package/show/graphics/libjpeg-turbo?expand=0&rev=46
2014-10-15 13:42:43 +00:00