Accepting request 575815 from graphics

- Update to 2.2.1 * Fix reported OpenEXR security vulnerabilities: CVE-2017-9110, CVE-2017-9111, CVE-2017-9112, CVE-2017-9113, CVE-2017-9114, CVE-2017-9115 and CVE-2017-9116 - pgajdos@suse.com: but really seem to fix only: CVE-2017-9110 [bsc#1040107], CVE-2017-9114 [bsc#1040114], CVE-2017-9116 [bsc#1040116], CVE-2017-12596 [bsc#1052522]; for the rest of issues see [bsc#1040109], [bsc#1040112], [bsc#1040113], [bsc#1040114], [bsc#1040115], and [bsc#1061305] OBS-URL: https://build.opensuse.org/request/show/575815 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/openexr?expand=0&rev=27
2018-02-15 12:20:29 +00:00 · 2018-02-15 12:20:29 +00:00 · 6a771d4044
commit 6a771d4044
parent 7917ef50be b60a9264d2
8 changed files with 24 additions and 11 deletions
--- a/baselibs.conf
+++ b/baselibs.conf
@ -1,3 +1,3 @@
-libIlmImf-2_2-22
-libIlmImfUtil-2_2-22
+libIlmImf-2_2-23
+libIlmImfUtil-2_2-23
    obsoletes "OpenEXR-<targettype> < <version>"
--- a/openexr-2.2.0.tar.gz
+++ b/openexr-2.2.0.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:36a012f6c43213f840ce29a8b182700f6cf6b214bea0d5735594136b44914231
-size 14489661
--- a/openexr-2.2.0.tar.gz.sig
+++ b/openexr-2.2.0.tar.gz.sig
--- a/openexr-2.2.1.tar.gz
+++ b/openexr-2.2.1.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:8f9a5af6131583404261931d9a5c83de0a425cb4b8b25ddab2b169fbf113aecd
+size 18176639
--- a/openexr-2.2.1.tar.gz.sig
+++ b/openexr-2.2.1.tar.gz.sig
--- a/openexr.changes
+++ b/openexr.changes
@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Mon Jan 15 05:19:19 UTC 2018 - avindra@opensuse.org
+
+- Update to 2.2.1 
+  * Fix reported OpenEXR security vulnerabilities: CVE-2017-9110,
+    CVE-2017-9111, CVE-2017-9112, CVE-2017-9113, CVE-2017-9114,
+    CVE-2017-9115 and CVE-2017-9116
+- pgajdos@suse.com: but really seem to fix only:
+  CVE-2017-9110 [bsc#1040107], CVE-2017-9114 [bsc#1040114],
+  CVE-2017-9116 [bsc#1040116], CVE-2017-12596 [bsc#1052522]; for
+  the rest of issues see [bsc#1040109], [bsc#1040112], 
+  [bsc#1040113], [bsc#1040114], [bsc#1040115], and [bsc#1061305]
+
 -------------------------------------------------------------------
 Wed Jul 12 09:22:22 UTC 2017 - tchvatal@suse.com

--- a/openexr.keyring
+++ b/openexr.keyring
--- a/openexr.spec
+++ b/openexr.spec
@ -1,7 +1,7 @@
 #
 # spec file for package openexr
 #
-# Copyright (c) 2017 SUSE LINUX GmbH, Nuernberg, Germany.
+# Copyright (c) 2018 SUSE LINUX GmbH, Nuernberg, Germany.
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -16,12 +16,12 @@
 #


-%global so_suffix -2_2-22
+%global so_suffix -2_2-23
 # tests should run at least during local build
 # but do expect a HUGE number of memory, so beware
 %bcond_with tests
 Name:           openexr
-Version:        2.2.0
+Version:        2.2.1
 Release:        0
 Summary:        Utilities for work with HDR images in OpenEXR format
 License:        BSD-3-Clause
@ -36,7 +36,7 @@ BuildRequires:  fltk-devel
 BuildRequires:  freeglut-devel
 BuildRequires:  gcc-c++
 BuildRequires:  pkgconfig
-BuildRequires:  pkgconfig(IlmBase) = %{version}
+BuildRequires:  pkgconfig(IlmBase) >= 2.2.0
 BuildRequires:  pkgconfig(zlib)
 Obsoletes:      OpenEXR <= 1.6.1
 Provides:       OpenEXR = %{version}
@ -128,8 +128,8 @@ if cmp COPYING LICENSE; then
    ln -sf COPYING LICENSE
 fi

-# remove a non-linux file
-rm README.win32 README.OSX
+# remove non-linux file
+rm README.OSX

 %build
 export PTHREAD_LIBS="-lpthread"