File libslirp.changes of Package libslirp.24201
-------------------------------------------------------------------
Mon Apr 25 02:37:20 UTC 2022 - Simon Lees <sflees@suse.de>
- Fix a dhcp regression [bsc#1198773]
+libslirp-fix-dhcp-1.patch
+libslirp-fix-dhcp-2.patch
-------------------------------------------------------------------
Wed Feb 23 08:48:33 UTC 2022 - pgajdos@suse.com
- security update
- added patches
fix CVE-2021-3592 [bsc#1187364], invalid pointer initialization may lead to information disclosure (bootp)
+ libslirp-CVE-2021-3592.patch
fix CVE-2021-3594 [bsc#1187367], invalid pointer initialization may lead to information disclosure (udp)
+ libslirp-CVE-2021-3594.patch
fix CVE-2021-3595 [bsc#1187366], invalid pointer initialization may lead to information disclosure (tftp)
+ libslirp-CVE-2021-3595.patch
-------------------------------------------------------------------
Wed Jul 8 14:53:54 UTC 2020 - Ralf Haferkamp <rhafer@suse.com>
- Update to 4.3.1 (bsc#1172380)
- A silent truncation could occur in `slirp_fmt()`, which will
now print a critical message. See also #22.
- CVE-2020-10756 - Drop bogus IPv6 messages that could lead to
data leakage. See !44 and !42.
- Fix win32 builds by using the SLIRP_PACKED definition.
- Various coverity scan errors fixed. !41
- Fix new GCC warnings. !43
- Packaging changes
- Enable "set_version" source service in _service file
- Move "tar" and "recompress" service to "buildtime" as outlined
in the OBS user guide
- Enable "package-meta" as the libslirp build process now
requires access to the git metadata.
-------------------------------------------------------------------
Mon May 4 10:16:40 UTC 2020 - Richard Brown <rbrown@suse.com>
- Update to 4.3.0
- Fix use-afte-free in ip_reass() (CVE-2020-1983)
-------------------------------------------------------------------
Tue Apr 21 12:10:07 UTC 2020 - Oliver Bengs <appleonkel@opensuse.org> - 4.2.0-2
- Initial package, adapted specfile from Fedora to work on openSUSE
