Dominique Leuenberger 2018-10-02 17:39:18 +00:00 committed by Git OBS Bridge
commit 9221e3548e
9 changed files with 296 additions and 276 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:c5a03eeef1e3660b0e8675919cffc5293962725ff0182bd60e4aa110eb690746
size 11261679

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:ac00a0756d532ba239b24a936d8ec1fa429e2a8a783519b97752a3a7d76690eb
size 1890029

View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:308d37bc839fa8b6ea6ccc4a25900c6e364617ccd7166a562acb67e7f54c6f49
size 11299411

View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:d04ebaadebd2cc896dcb1e3740b3e10e2df088a627cc401b79fa54f24cac8494
size 1879377

View File

@ -1,17 +0,0 @@
Index: netpbm-10.82.2/editor/pbmmask.c
===================================================================
--- netpbm-10.82.2.orig/editor/pbmmask.c 2018-06-27 13:03:00.431710863 +0200
+++ netpbm-10.82.2/editor/pbmmask.c 2018-06-27 15:45:40.194531538 +0200
@@ -144,6 +144,12 @@ main(int argc, char * argv[]) {
bits = pbm_readpbm( ifp, &cols, &rows );
pm_close( ifp );
+ if (cols <= 0 || rows <= 0)
+ {
+ pm_error("invalid width or height");
+ free(bits);
+ return 0;
+ }
mask = pbm_allocarray( cols, rows );
/* Clear out the mask. */

File diff suppressed because it is too large Load Diff

View File

@ -1,3 +1,41 @@
-------------------------------------------------------------------
Wed Sep 26 15:42:52 UTC 2018 - pmonrealgonzalez@suse.com
- updated to 10.83.00
* Add pamlevels. Thanks Anton Shepelev <anton.txt@gmail.com>.
* Add pamgetcolor. Thanks Anton Shepelev <anton.txt@gmail.com>.
* Add rgb-<maxval>:r/g/b color specification format.
* pngtopam: Fix bogus warning of non-square pixels when image does
not contain pixel resolution information. Introduced in Netpbm
10.48 (September 2009).
* pstopnm: Fix divide-by-zero crash when Postscript input says
the image has zero size.
* pstopnm: Fix divide-by-zero crash when computed resolution
rounds down to zero dots per inch.
* pbmmask: Fix invalid memory reference with zero-dimension
input image. Broken in primordial Netpbm, ca 1989.
[CVE-2018-8975, bsc#1086777]
https://sourceforge.net/p/netpbm/code/3279/
* libnetpbm: Add pnm_colorspec_rgb_integer,
pnm_colorspec_rgb_norm, pnm_colorspec_rgb_x11,
pnm_colorspec_dict, pnm_colorspec_dict_close.
* libnetpbm: Add pnm_parsecolor2.
* libnetpbm: Add pnm_allocpamtuplen, pnm_freepamtuplen.
* libnetpbm: Make the normalized tuple functions respect the
allocation depth specified in struct pam (member
'allocation_depth') instead of using the actual tuple depth
(member 'depth').
* ilbmtoppm: Fix bug: may fail with bogus error message about an
invalid CLUT chunk if image has a CLUT chunk. Introduced after
Netpbm 10.26 (January 2005) and at or before Netpbm 10.35
(August 2006).
- Refreshed patch netpbm-security-code.patch
- Dropped patch fixed upstream netpbm-CVE-2018-8975.patch
- Renamed script prepare-src-tarball to prepare-src-tarball.sh
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Jun 27 14:04:30 UTC 2018 - pgajdos@suse.com Wed Jun 27 14:04:30 UTC 2018 - pgajdos@suse.com

View File

@ -17,10 +17,10 @@
%define libmaj 11 %define libmaj 11
%define libmin 82 %define libmin 83
%define libver %{libmaj}.%{libmin} %define libver %{libmaj}.%{libmin}
Name: netpbm Name: netpbm
Version: 10.82.2 Version: 10.83.2
Release: 0 Release: 0
Summary: A Powerful Graphics Conversion Package Summary: A Powerful Graphics Conversion Package
License: BSD-3-Clause AND GPL-2.0-or-later AND IJG AND MIT AND SUSE-Public-Domain License: BSD-3-Clause AND GPL-2.0-or-later AND IJG AND MIT AND SUSE-Public-Domain
@ -29,7 +29,7 @@ Url: http://netpbm.sourceforge.net/
Source: netpbm-%{version}-nohpcdtoppm-noppmtompeg.tar.bz2 Source: netpbm-%{version}-nohpcdtoppm-noppmtompeg.tar.bz2
Source1: netpbm-%{version}-documentation.tar.bz2 Source1: netpbm-%{version}-documentation.tar.bz2
Source2: baselibs.conf Source2: baselibs.conf
Source3: prepare-src-tarball Source3: prepare-src-tarball.sh
# SUSE specific # SUSE specific
Patch0: %{name}-make.patch Patch0: %{name}-make.patch
Patch3: %{name}-tmpfile.patch Patch3: %{name}-tmpfile.patch
@ -37,7 +37,6 @@ Patch4: %{name}-security-code.patch
Patch5: %{name}-security-scripts.patch Patch5: %{name}-security-scripts.patch
Patch6: %{name}-gcc-warnings.patch Patch6: %{name}-gcc-warnings.patch
Patch7: makeman-py3.patch Patch7: makeman-py3.patch
Patch8: netpbm-CVE-2018-8975.patch
BuildRequires: flex BuildRequires: flex
BuildRequires: libjasper-devel BuildRequires: libjasper-devel
BuildRequires: libjpeg-devel BuildRequires: libjpeg-devel
@ -90,7 +89,6 @@ source package.
%patch5 -p1 %patch5 -p1
%patch6 -p1 %patch6 -p1
%patch7 -p1 %patch7 -p1
%patch8 -p1
mkdir pnmtopalm # for %%doc pnmtopalm mkdir pnmtopalm # for %%doc pnmtopalm
cp -p converter/other/pnmtopalm/{LICENSE,README} pnmtopalm cp -p converter/other/pnmtopalm/{LICENSE,README} pnmtopalm