Overview

Request 725638 accepted

- Add CVE-2019-13616.patch: fix heap buffer overflow when reading
a crafted bmp file (boo#1141844 CVE-2019-13616).

- Update to new upstream release 2.0.5
* Fixed TALOS-2019-0820 CVE-2019-5051
* Fixed TALOS-2019-0821 CVE-2019-5052
* Fixed TALOS-2019-0841 CVE-2019-5057 boo#1143763
* Fixed TALOS-2019-0842 CVE-2019-5058 boo#1143764
* Fixed TALOS-2019-0843 CVE-2019-5059 boo#1143766
* Fixed TALOS-2019-0844 CVE-2019-5060 boo#1143768
- Not mentioned by upstream, but issues seemingly further fixed:
* Fixed CVE-2019-12218 boo#1135789
* Fixed CVE-2019-12217 boo#1135787
* Fixed CVE-2019-12220 boo#1135806
* Fixed CVE-2019-12221 boo#1135796
* Fixed CVE-2019-12222 boo#1136101

Loading...

Leap Reviewbot's avatar

games/SDL2_image@407f5662326422de1856bb46264a927d -> openSUSE:Leap:15.1:Update/SDL2_image

expected origin is 'openSUSE:Leap:15.0:Update' (changed)

Request History
Jan Engelhardt's avatar

jengelh created request

- Add CVE-2019-13616.patch: fix heap buffer overflow when reading
a crafted bmp file (boo#1141844 CVE-2019-13616).

- Update to new upstream release 2.0.5
* Fixed TALOS-2019-0820 CVE-2019-5051
* Fixed TALOS-2019-0821 CVE-2019-5052
* Fixed TALOS-2019-0841 CVE-2019-5057 boo#1143763
* Fixed TALOS-2019-0842 CVE-2019-5058 boo#1143764
* Fixed TALOS-2019-0843 CVE-2019-5059 boo#1143766
* Fixed TALOS-2019-0844 CVE-2019-5060 boo#1143768
- Not mentioned by upstream, but issues seemingly further fixed:
* Fixed CVE-2019-12218 boo#1135789
* Fixed CVE-2019-12217 boo#1135787
* Fixed CVE-2019-12220 boo#1135806
* Fixed CVE-2019-12221 boo#1135796
* Fixed CVE-2019-12222 boo#1136101


Marcus Meissner's avatar

msmeissn moved maintenance target to openSUSE:Maintenance:10934


Factory Auto's avatar

factory-auto accepted review

Check script succeeded


Maintenance Bot's avatar

maintbot accepted review

ok


Saul Goodman's avatar

licensedigger accepted review

ok


Saul Goodman's avatar

licensedigger approved review

ok


Marcus Meissner's avatar

msmeissn accepted request

ok

openSUSE Build Service is sponsored by