Accepting request 1249618 from X11:Wayland

- Update to 0.9.4: * The last release leaked client resources and would keep capturing after all clients closed their connection. This release fixes that and a double-free on exit. OBS-URL: https://build.opensuse.org/request/show/1249618 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/neatvnc?expand=0&rev=17
- Update to 0.9.4:
2025-03-03 15:43:30 +00:00 · 2025-03-03 08:10:18 +00:00 · 2025-02-24 14:48:42 +00:00 · 2025-02-23 18:25:30 +00:00 · 2025-01-07 19:54:31 +00:00 · 2025-01-07 11:00:32 +00:00
7 changed files with 118 additions and 6 deletions
--- a/15
+++ b/15
@ -0,0 +1,15 @@
+<?xml version="1.0"?>
+<services>
+  <service name="obs_scm" mode="manual">
+    <param name="scm">git</param>
+    <param name="url">https://github.com/any1/neatvnc.git</param>
+    <param name="revision">af5811b75e63f53d1d1f1f3f337387553a96786a</param>
+    <param name="versionformat">0.9.4</param>
+  </service>
+  <service name="tar" mode="manual"/>
+  <service name="recompress" mode="manual">
+    <param name="file">*.tar</param>
+    <param name="compression">xz</param>
+  </service>
+  <service name="set_version" mode="manual" />
+</services>
--- a/fix-build-in-15.6.patch
+++ b/fix-build-in-15.6.patch
@ -0,0 +1,13 @@
+Index: neatvnc-0.9.2/meson.build
+===================================================================
+--- neatvnc-0.9.2.orig/meson.build
+++ neatvnc-0.9.2/meson.build
+@@ -54,7 +54,7 @@ libturbojpeg = dependency('libturbojpeg'
+ gnutls = dependency('gnutls', required: get_option('tls'))
+ nettle = dependency('nettle', required: get_option('nettle'))
+ hogweed = dependency('hogweed', required: get_option('nettle'))
+-gmp = dependency('gmp', required: get_option('nettle'))
+gmp = cc.find_library('gmp')
+ zlib = dependency('zlib')
+ gbm = dependency('gbm', required: get_option('gbm'))
+ libdrm = dependency('libdrm', required: get_option('h264'))
--- a/neatvnc-0.9.4.tar.xz
+++ b/neatvnc-0.9.4.tar.xz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:19d15aebc8579938a2108d5d307e843312895e69a7def44e96469614e1a6c418
+size 785396
--- a/neatvnc.changes
+++ b/neatvnc.changes
@ -1,3 +1,82 @@
+-------------------------------------------------------------------
+Mon Mar  3 08:09:46 UTC 2025 - Michael Vetter <mvetter@suse.com>
+
+- Update to 0.9.4:
+  * The last release leaked client resources and would keep capturing
+    after all clients closed their connection. This release fixes
+    that and a double-free on exit.
+
+-------------------------------------------------------------------
+Sun Feb 23 18:23:21 UTC 2025 - Michael Vetter <mvetter@suse.com>
+
+- Update to 0.9.3:
+  * Fix some instances of use-after-free that can be reached before
+    authentication takes place. Those should be viewed as potential
+    vulnerabilities, so it would be prudent to upgrade ASAP if you're
+    running Neat VNC on the internet.
+  * Fix a few issues with WebSockets. One of those bugs will allow
+    an unauthenticated client to put the server into an endless
+    loop when parsing HTTP headers. There were also problems with
+    ping message handling and the way some legacy clients/browsers
+    were being dealt with that he fixed.
+
+-------------------------------------------------------------------
+Mon Dec 30 11:06:23 UTC 2024 - Michael Vetter <mvetter@suse.com>
+
+- Update to 0.9.2:
+  * This patch release adds missing bounds checks.
+    Two buffer overflow vulnerabilities were reported by Frederik
+    Reiter who also provided patches to fix them.
+    There are potential security implications, but only authenticated
+    clients would be able to exploit these vulnerabilities, if at all.
+    Nevertheless, it is prudent to update as soon as possible.
+
+-------------------------------------------------------------------
+Mon Dec 30 11:05:56 UTC 2024 - Michael Vetter <mvetter@suse.com>
+
+- Update to 0.9.1:
+  * Fix a data type mismatch in the clipboard code that caused the
+    build to fail for 32 bit architectures.
+
+-------------------------------------------------------------------
+Mon Dec 30 11:05:23 UTC 2024 - Michael Vetter <mvetter@suse.com>
+
+- Update to 0.9.0:
+  Highlights:
+  * A v4l2m2m based H.264 encoder that works on Raspberry Pi 1 to 4,
+    sponsored by Raspberry Pi Ltd.
+  * Extended clipboard for UTF-8 text was implemented by Attila Fidan.
+  * Listening on a pre-bound file descriptor, implemented by Attila Fidan.
+  * The continuous updates extension was implemented by Philipp Zabel.
+  * We now have simple bandwidth estimation and improved frame pacing.
+  * Methods for rating pixel formats and modifiers have according to Neat VNC's
+    preferences have been added.
+  * The Qemu/VMWare LED state extensions have been implemented.
+  * H.264 encoders will now encode the correct colour space into the elementary
+    stream.
+  Bug fixes:
+  * Some memory leaks and reference counting errors have been eradicated.
+  * A race between resizing events and framebuffer updates that would cause a
+    buffer with the previous size to be sent after a resize event has been fixed.
+  * Buffers with 24 bits per pixel will now result in 32 bpp being reported to
+    the client because 24 bpp is not allowed by the protocol. Nvidia users should
+    now be able to use a wider selection of clients as a result of this change.
+- Update fix-build-in-15.6.patch
+  15e56b8e444532d299598b753f760cf0d4d9a4e2 added the LIBAVFILTER_VERSION_INT
+
+-------------------------------------------------------------------
+Wed Oct 23 07:57:14 UTC 2024 - Antonio Larrosa <alarrosa@suse.com>
+
+- Update to 0.8.1+git20241008.b539421 adding a _service file to
+  get the sources from git. This fixes a FTBFS with ffmpeg-7 in
+  Factory. Note that we can't use @PARENT_TAG@ in the _service
+  file because 0.8.1 was branched from the v0.8 branch so using it
+  would look like going back to 0.8.0.
+- Add a patch to keep building with older ffmpeg versions too
+  as well as find the gmp dependency, which can't be found using
+  pkgconfig in 15.6:
+  * fix-build-in-15.6.patch
+
 -------------------------------------------------------------------
 Fri Aug  2 06:25:29 UTC 2024 - Michael Vetter <mvetter@suse.com>

--- a/neatvnc.obsinfo
+++ b/neatvnc.obsinfo
@ -0,0 +1,4 @@
+name: neatvnc
+version: 0.9.4
+mtime: 1740304370
+commit: af5811b75e63f53d1d1f1f3f337387553a96786a
--- a/neatvnc.spec
+++ b/neatvnc.spec
@ -1,7 +1,7 @@
 #
 # spec file for package neatvnc
 #
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -19,13 +19,14 @@
 %define libsoname libneatvnc0

 Name:           neatvnc
-Version:        0.8.1
+Version:        0.9.4
 Release:        0
 Summary:        A VNC server library
 License:        ISC
 Group:          System/GUI/Other
 URL:            https://github.com/any1/neatvnc
-Source0:        %url/archive/v%{version}.tar.gz
+Source0:        %{name}-%{version}.tar.xz
+Patch0:         fix-build-in-15.6.patch

 BuildRequires:  meson
 BuildRequires:  pkgconfig
--- a/v0.8.1.tar.gz
+++ b/v0.8.1.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:51ef4d02f1621c947d58f2454e8fd4582a66439f09d409c103424c9d34839757
-size 661911
Author	SHA256	Message	Date
Ana Guerrero	301c8a30de	Accepting request 1249618 from X11:Wayland - Update to 0.9.4: * The last release leaked client resources and would keep capturing after all clients closed their connection. This release fixes that and a double-free on exit. OBS-URL: https://build.opensuse.org/request/show/1249618 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/neatvnc?expand=0&rev=17	2025-03-03 15:43:30 +00:00
Michael Vetter	088941ea8e	- Update to 0.9.4: * The last release leaked client resources and would keep capturing after all clients closed their connection. This release fixes that and a double-free on exit. OBS-URL: https://build.opensuse.org/package/show/X11:Wayland/neatvnc?expand=0&rev=36	2025-03-03 08:10:18 +00:00
Dominique Leuenberger	dbac61387c	Accepting request 1247934 from X11:Wayland - Update to 0.9.3: * Fix some instances of use-after-free that can be reached before authentication takes place. Those should be viewed as potential vulnerabilities, so it would be prudent to upgrade ASAP if you're running Neat VNC on the internet. * Fix a few issues with WebSockets. One of those bugs will allow an unauthenticated client to put the server into an endless loop when parsing HTTP headers. There were also problems with ping message handling and the way some legacy clients/browsers were being dealt with that he fixed. OBS-URL: https://build.opensuse.org/request/show/1247934 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/neatvnc?expand=0&rev=16	2025-02-24 14:48:42 +00:00
Michael Vetter	121f2789b7	- Update to 0.9.3: * Fix some instances of use-after-free that can be reached before authentication takes place. Those should be viewed as potential vulnerabilities, so it would be prudent to upgrade ASAP if you're running Neat VNC on the internet. * Fix a few issues with WebSockets. One of those bugs will allow an unauthenticated client to put the server into an endless loop when parsing HTTP headers. There were also problems with ping message handling and the way some legacy clients/browsers were being dealt with that he fixed. OBS-URL: https://build.opensuse.org/package/show/X11:Wayland/neatvnc?expand=0&rev=34	2025-02-23 18:25:30 +00:00
Ana Guerrero	e269acbfdc	Accepting request 1235573 from X11:Wayland - Update to 0.9.2: * This patch release adds missing bounds checks. Two buffer overflow vulnerabilities were reported by Frederik Reiter who also provided patches to fix them. There are potential security implications, but only authenticated clients would be able to exploit these vulnerabilities, if at all. Nevertheless, it is prudent to update as soon as possible. - Update to 0.9.1: * Fix a data type mismatch in the clipboard code that caused the build to fail for 32 bit architectures. - Update to 0.9.0: Highlights: * A v4l2m2m based H.264 encoder that works on Raspberry Pi 1 to 4, sponsored by Raspberry Pi Ltd. * Extended clipboard for UTF-8 text was implemented by Attila Fidan. * Listening on a pre-bound file descriptor, implemented by Attila Fidan. * The continuous updates extension was implemented by Philipp Zabel. * We now have simple bandwidth estimation and improved frame pacing. * Methods for rating pixel formats and modifiers have according to Neat VNC's preferences have been added. * The Qemu/VMWare LED state extensions have been implemented. * H.264 encoders will now encode the correct colour space into the elementary stream. Bug fixes: * Some memory leaks and reference counting errors have been eradicated. * A race between resizing events and framebuffer updates that would cause a buffer with the previous size to be sent after a resize event has been fixed. * Buffers with 24 bits per pixel will now result in 32 bpp being reported to OBS-URL: https://build.opensuse.org/request/show/1235573 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/neatvnc?expand=0&rev=15	2025-01-07 19:54:31 +00:00
Michael Vetter	9aaba48e23	OBS-URL: https://build.opensuse.org/package/show/X11:Wayland/neatvnc?expand=0&rev=32	2025-01-07 11:00:32 +00:00
Michael Vetter	1a598e9a51	- Update to 0.9.2: * This patch release adds missing bounds checks. Two buffer overflow vulnerabilities were reported by Frederik Reiter who also provided patches to fix them. There are potential security implications, but only authenticated clients would be able to exploit these vulnerabilities, if at all. Nevertheless, it is prudent to update as soon as possible. - Update to 0.9.1: * Fix a data type mismatch in the clipboard code that caused the build to fail for 32 bit architectures. - Update to 0.9.0: Highlights: * A v4l2m2m based H.264 encoder that works on Raspberry Pi 1 to 4, sponsored by Raspberry Pi Ltd. * Extended clipboard for UTF-8 text was implemented by Attila Fidan. * Listening on a pre-bound file descriptor, implemented by Attila Fidan. * The continuous updates extension was implemented by Philipp Zabel. * We now have simple bandwidth estimation and improved frame pacing. * Methods for rating pixel formats and modifiers have according to Neat VNC's preferences have been added. * The Qemu/VMWare LED state extensions have been implemented. * H.264 encoders will now encode the correct colour space into the elementary stream. Bug fixes: * Some memory leaks and reference counting errors have been eradicated. * A race between resizing events and framebuffer updates that would cause a buffer with the previous size to be sent after a resize event has been fixed. * Buffers with 24 bits per pixel will now result in 32 bpp being reported to OBS-URL: https://build.opensuse.org/package/show/X11:Wayland/neatvnc?expand=0&rev=31	2025-01-07 10:56:20 +00:00
Ana Guerrero	d3fa733938	Accepting request 1217333 from X11:Wayland OBS-URL: https://build.opensuse.org/request/show/1217333 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/neatvnc?expand=0&rev=14	2024-10-23 19:14:03 +00:00
Michael Vetter	15270f9dc5	I'm sorry, I forgot to remove this file as part of the previous SR. I don't think it deserves a changelog entry since submitting the file was a mistake that shouldn't have never been in obs. OBS-URL: https://build.opensuse.org/package/show/X11:Wayland/neatvnc?expand=0&rev=29	2024-10-23 11:27:57 +00:00
Michael Vetter	62a03f6a4c	- Update to 0.8.1+git20241008.b539421 adding a _service file to get the sources from git. This fixes a FTBFS with ffmpeg-7 in Factory. Note that we can't use @PARENT_TAG@ in the _service file because 0.8.1 was branched from the v0.8 branch so using it would look like going back to 0.8.0. - Add a patch to keep building with older ffmpeg versions too as well as find the gmp dependency, which can't be found using pkgconfig in 15.6: * fix-build-in-15.6.patch OBS-URL: https://build.opensuse.org/package/show/X11:Wayland/neatvnc?expand=0&rev=28	2024-10-23 10:11:19 +00:00