Request 712284: Submit bzip2 - openSUSE Build Service

Overview

Request 712284 accepted

- Update to version 1.0.7:
* Fix undefined behavior in the macros SET_BH, CLEAR_BH, &
ISSET_BH.
* bzip2: Fix return value when combining --test,-t and -q.
* bzip2recover: Fix buffer overflow for large argv[0].
* bzip2recover: Fix use after free issue with outFile
(CVE-2016-3189).
* Make sure nSelectors is not out of range (CVE-2019-12900).
- Drop patches fixed upstream:
* bzip2-unsafe_strcpy.patch.
* bzip2-1.0.6-CVE-2016-3189.patch.
- Refresh patches with quilt.

Created by iznogood almost 5 years ago
In state accepted
Package maintainers: ateixeira and dspinella

Submit bzip2

Comments for request 712284 1

Martin Pluskal (pluskalm) - almost 5 years ago

target maintainer

@iznogood - see sr#712346 - that happens if source referenced source or patch has been locally changed ...

Login required, please login in order to comment

Request History

iznogood created request almost 5 years ago

- Update to version 1.0.7:
* Fix undefined behavior in the macros SET_BH, CLEAR_BH, &
ISSET_BH.
* bzip2: Fix return value when combining --test,-t and -q.
* bzip2recover: Fix buffer overflow for large argv[0].
* bzip2recover: Fix use after free issue with outFile
(CVE-2016-3189).
* Make sure nSelectors is not out of range (CVE-2019-12900).
- Drop patches fixed upstream:
* bzip2-unsafe_strcpy.patch.
* bzip2-1.0.6-CVE-2016-3189.patch.
- Refresh patches with quilt.

pluskalm accepted request almost 5 years ago

thx

openSUSE Build Service is sponsored by