Overview
Request 825730 accepted
- Version update to 2.3.0:
### Security
- Potential double-free in gdImage*Ptr(). (CVE-2019-6978)
- gdImageColorMatch() out of bounds write on heap. (CVE-2019-6977)
- Uninitialized read in gdImageCreateFromXbm(). (CVE-2019-11038)
- Double-free in gdImageBmp. (CVE-2018-1000222)
- Potential NULL pointer dereference in gdImageClone(). (CVE-2018-14553)
- Potential infinite loop in gdImageCreateFromGifCtx(). (CVE-2018-5711)
### Fixed
- Fix #597: add codecov support
- Fix #596: gdTransformAffineCopy run error
- Fix #589: Install dependencies move to .travis.yml
- Fix #586: gdTransformAffineCopy() segfaults on palette images
- Fix #585: gdTransformAffineCopy() changes interpolation method
- Fix #584: gdImageSetInterpolationMethod(im, GD_DEFAULT) inconsistent
- Fix #583: gdTransformAffineCopy() may use unitialized values
- Fix #533: Remove cmake modules
- Fix #539: Add RAQM support for cmake
- Fix #499: gdImageGifAnimAddPtr: heap corruption with 2 identical images
- Fix #486: gdImageCropAuto(…, GD_CROP_SIDES) crops left but not right
- Fix #485: auto cropping has insufficient precision
- Fix #479: Provide a suitable malloc function to liq
- Fix #474: libtiff link returns 404 HTTP code
- Fix #450: Failed to open 1 bit per pixel bitmap
- Fix #440: new_width & new_height exception handling
- Fix #432: gdImageCrop neglecting transparency
- Fix #420: Potential infinite loop in gdImageCreateFromGifCtx
- Fix #411: gd_gd.c format documentation appears to be incorrect
- Fix #369: Fix new_a init error in gdImageConvolution()
- Fix #351: gdImageFilledArc() doesn't properly draw pies
- Fix #338: Fatal and normal libjpeg/libpng errors not distinguishable
- Fix #169: Update var type to hold bigger w&h for ellipse
- Fix #164: update doc files install directory in CMakeLists.txt
- Correct some test depend errors
- Update cmake min version to 3.7
- Delete libimagequant source code download action in CMakeLists.txt
- Improve msys support
- Fix some logic error in CMakeLists.txt
- Remove the following macro: HAVE_STDLIB_H, HAVE_STRING_H, HAVE_STDDEF_H,
HAVE_LIMITS_H, HAVE_ERRNO_H, AC_C_CONST
### Added
- test cases for following API: gdImageCopyResized(), gdImageWebpEx(),
gdImageCreateFromGd2PartPtr(), gdImageCloneMatch(),
gdImageColorClosestHWB(), gdImageColorMatch(), gdImageStringUp(),
gdImageStringUp16(), gdImageString(), gdImageString16(),
gdImageCopyMergeGray(), gdImageCopyMerge()
- Drop CVE patches now fixed upstream:
- gd-CVE-2018-1000222.patch
- gd-CVE-2018-14553.patch
- gd-CVE-2018-5711.patch
- gd-CVE-2019-11038.patch
- gd-CVE-2019-6977.patch
- gd-CVE-2019-6978.patch
- Drop patch: libgd-config.patch since upstream have dropped libgd-config binary
- Run spec-cleaner
+ Remove package groups
+ use license macro
+ use make macros (forwarded request 825196 from elimat)
Request History
pgajdos created request
- Version update to 2.3.0:
### Security
- Potential double-free in gdImage*Ptr(). (CVE-2019-6978)
- gdImageColorMatch() out of bounds write on heap. (CVE-2019-6977)
- Uninitialized read in gdImageCreateFromXbm(). (CVE-2019-11038)
- Double-free in gdImageBmp. (CVE-2018-1000222)
- Potential NULL pointer dereference in gdImageClone(). (CVE-2018-14553)
- Potential infinite loop in gdImageCreateFromGifCtx(). (CVE-2018-5711)
### Fixed
- Fix #597: add codecov support
- Fix #596: gdTransformAffineCopy run error
- Fix #589: Install dependencies move to .travis.yml
- Fix #586: gdTransformAffineCopy() segfaults on palette images
- Fix #585: gdTransformAffineCopy() changes interpolation method
- Fix #584: gdImageSetInterpolationMethod(im, GD_DEFAULT) inconsistent
- Fix #583: gdTransformAffineCopy() may use unitialized values
- Fix #533: Remove cmake modules
- Fix #539: Add RAQM support for cmake
- Fix #499: gdImageGifAnimAddPtr: heap corruption with 2 identical images
- Fix #486: gdImageCropAuto(…, GD_CROP_SIDES) crops left but not right
- Fix #485: auto cropping has insufficient precision
- Fix #479: Provide a suitable malloc function to liq
- Fix #474: libtiff link returns 404 HTTP code
- Fix #450: Failed to open 1 bit per pixel bitmap
- Fix #440: new_width & new_height exception handling
- Fix #432: gdImageCrop neglecting transparency
- Fix #420: Potential infinite loop in gdImageCreateFromGifCtx
- Fix #411: gd_gd.c format documentation appears to be incorrect
- Fix #369: Fix new_a init error in gdImageConvolution()
- Fix #351: gdImageFilledArc() doesn't properly draw pies
- Fix #338: Fatal and normal libjpeg/libpng errors not distinguishable
- Fix #169: Update var type to hold bigger w&h for ellipse
- Fix #164: update doc files install directory in CMakeLists.txt
- Correct some test depend errors
- Update cmake min version to 3.7
- Delete libimagequant source code download action in CMakeLists.txt
- Improve msys support
- Fix some logic error in CMakeLists.txt
- Remove the following macro: HAVE_STDLIB_H, HAVE_STRING_H, HAVE_STDDEF_H,
HAVE_LIMITS_H, HAVE_ERRNO_H, AC_C_CONST
### Added
- test cases for following API: gdImageCopyResized(), gdImageWebpEx(),
gdImageCreateFromGd2PartPtr(), gdImageCloneMatch(),
gdImageColorClosestHWB(), gdImageColorMatch(), gdImageStringUp(),
gdImageStringUp16(), gdImageString(), gdImageString16(),
gdImageCopyMergeGray(), gdImageCopyMerge()
- Drop CVE patches now fixed upstream:
- gd-CVE-2018-1000222.patch
- gd-CVE-2018-14553.patch
- gd-CVE-2018-5711.patch
- gd-CVE-2019-11038.patch
- gd-CVE-2019-6977.patch
- gd-CVE-2019-6978.patch
- Drop patch: libgd-config.patch since upstream have dropped libgd-config binary
- Run spec-cleaner
+ Remove package groups
+ use license macro
+ use make macros (forwarded request 825196 from elimat)
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
dimstar_suse set openSUSE:Factory:Staging:I as a staging project
Being evaluated by staging project "openSUSE:Factory:Staging:I"
dimstar_suse accepted review
Picked "openSUSE:Factory:Staging:I"
dimstar accepted review
dimstar_suse accepted review
Staging Project openSUSE:Factory:Staging:I got accepted.
dimstar_suse approved review
Staging Project openSUSE:Factory:Staging:I got accepted.
dimstar_suse accepted request
Staging Project openSUSE:Factory:Staging:I got accepted.
