|Index||index by Group||index by Distribution||index by Vendor||index by creation date||index by Name||Mirrors||Help||Search|
|Name: libgif7-32bit||Distribution: SUSE Linux Enterprise 15|
|Version: 5.2.1||Vendor: SUSE LLC <https://www.suse.com/>|
|Release: 150000.4.8.1||Build date: Fri Apr 15 14:20:35 2022|
|Group: Unspecified||Build host: sheep27|
|Size: 34364||Source RPM: giflib-5.2.1-150000.4.8.1.src.rpm|
|Summary: A Library for Working with GIF Images|
This Library allows manipulating GIF Image files. Since the LZW patents have expired, giflib can again be used instead of libungif.
* Thu Apr 15 2021 firstname.lastname@example.org - prep section should just extract and patch, further modifications have to be done in the build section * Wed Apr 14 2021 email@example.com - Added patch: * PIE.patch + build path independent objects and inherit CFLAGS from the build system (bsc#1184123) * Fri Jul 10 2020 firstname.lastname@example.org - Update to version 5.2.1 * In gifbuild.c, avoid a core dump on no color map. * Restore inadvertently removed library version numbers in Makefile. - Changes in version 5.2.0 * The undocumented and deprecated GifQuantizeBuffer() entry point has been moved to the util library to reduce libgif size and attack surface. Applications needing this function are couraged to link the util library or make their own copy. * The following obsolete utility programs are no longer installed: gifecho, giffilter, gifinto, gifsponge. These were either installed in error or have been obsolesced by modern image-transformmation tools like ImageMagick convert. They may be removed entirely in a future release. * Address SourceForge issue #136: Stack-buffer-overflow in gifcolor.c:84 * Address SF bug #134: Giflib fails to slurp significant number of gifs * Apply SPDX convention for license tagging. - Changes in version 5.1.9 * The documentation directory now includes an HTMlified version of the GIF89 standard, and a more detailed description of how LZW compression is applied to GIFs. * Address SF bug #129: The latest version of giflib cannot be build on windows. * Address SF bug #126: Cannot compile giflib using c89 - Changes in version 5.1.8 * Address SF bug #119: MemorySanitizer: FPE on unknown address (CVE-2019-15133 bsc#1146299) * Address SF bug #125: 5.1.7: xmlto is still required for tarball * Address SF bug #124: 5.1.7: ar invocation is not crosscompile compatible * Address SF bug #122: 5.1.7 installs manpages to wrong directory * Address SF bug #121: make: getversion: Command not found * Address SF bug #120: 5.1.7 does not build a proper library - no - Changes in version 5.1.7 * Correct a minor packaging error (superfluous symlinks) in the 5.1.6 tarballs. - Changes in version 5.1.6 * Fix library installation in the Makefile. - Changes in version 5.1.5 * Fix SF bug #114: Null dereferences in main() of gifclrmp * Fix SF bug #113: Heap Buffer Overflow-2 in function DGifDecompressLine() in cgif.c. This had been assigned (CVE-2018-11490 bsc#1094832). * Fix SF bug #111: segmentation fault in PrintCodeBlock * Fix SF bug #109: Segmentation fault of giftool reading a crafted file * Fix SF bug #107: Floating point exception in giftext utility * Fix SF bug #105: heap buffer overflow in DumpScreen2RGB in gif2rgb.c:317 * Fix SF bug #104: Ineffective bounds check in DGifSlurp * Fix SF bug #103: GIFLIB 5.1.4: DGifSlurp fails on empty comment * Fix SF bug #87: Heap buffer overflow in 5.1.2 (gif2rgb). (CVE-2016-3977 bsc#974847) * The horrible old autoconf build system has been removed with extreme prejudice. You now build this simply by running "make" from the top-level directory. - Run spec-cleaner - Drop patches fixed upstream: * giflib-visibility.patch * giflib-automake-1_13.patch * giflib-CVE-2016-3977.patch * fix-autoconf11.patch - Change build system to Make only (upstream not using autoconf) * Fri Nov 09 2018 email@example.com - Remove unused build requires on X libraries - Use %license * Wed Jul 05 2017 firstname.lastname@example.org - Keep timestamps before patch updates them to fix build-compare * Fri May 13 2016 email@example.com - Added fix-autoconf11.patch for fixing build with older autoconf, requires for SLE11. * Tue Apr 12 2016 firstname.lastname@example.org - Update to version 5.1.4 * Fix SF bug #94: giflib 5 loves to fail to load images... a LOT. * Fix SF Bug #92: Fix buffer overread in gifbuild. * Fix SF Bug #93: Add bounds check in gifbuild netscape2.0 path * Fix SF Bug #89: Fix buffer overread in gifbuild. - Removed patch: * giflib-sf-88.patch + Integrated upstream - Added patch: * giflib-CVE-2016-3977.patch - Fix CVE-2016-3977: heap buffer overflow in gif2rgb (bsc#974847) * Wed Mar 23 2016 email@example.com - Update to version 5.1.3 * Prevent malloc randomess from causing the header output routine to emit a GIF89 version string even when no GIF89 features are present. * Prevent malloc randomess from producing sporadic failures by causing sanity checks added in 5.1.2 to misfire. * Bulletproof gif2rgb against 0-height images. Addressed sf#78: Heap overflow in gif2rgb with images of size 0, also sf#82. * Remove unnecessary duplicate EGifClose() in gifcolor.c. Fixes sf#83 introduced in 5.1.2. * Fix sf#84: incorrect return of DGifSlurp(). - Add giflib-sf-88.patch to fix sf#88 * Tue Jan 19 2016 firstname.lastname@example.org - Update to version 5.1.2 (fixes CVE-2015-7555, bsc#960319) * Code Fixes + Code hardening using reallocarray() from OpenBSD. + Sanity check in giffilter catches files with malformed extension records. Fixes SourceForge bug #63: malformed gif causes segfault in giffilter. + Inexpensive sanity check in DGifSlurp() catches malformed files with no image descriptor. Fixes SourceForge bug #64: malformed gif causes crash in giftool. + Fix SourceForge bug #66: GifDrawBoxedText8x8() modifying constant input parameter. + Bail out of GIF read on invalid pixel width. Addresses Savannah bug #67: invalid shift in dgif_lib.c + Fix SourceForge bug #69: #69 Malformed: Gif file with no extension block after a GRAPHICS_EXT_FUNC_CODE extension causes segfault (in giftext). + Fix SourceForge bug #71: Buffer overwrite when giffixing a malformed gif. + Fix SourceForge bug #73: Null pointer deference in gifclrmap (only reachable with malformed GIF). + Fix SourceForge bug #74: Double free in gifsponge under 5.1,1, for any valid gif image. + Fix SourceForge bug #75: GAGetArgs overflows due to uncounted use of va_arg. + Sanity check in giffix catches some malformed files. Addresses SourceForge bug #77: dgif_lib.c: extension processing error - Modified patches: * giflib-automake-1_13.patch * giflib-visibility.patch + rediff to changed context * Thu Jan 15 2015 email@example.com - Cleanup a bit - Remove obsolete sle10 deprecations - Fix one tiny rpmlint warning * Wed Jan 14 2015 firstname.lastname@example.org - Update to version 5.1.1 + Numerous minor fixes in getarg.c. Affects only the utilities, not the core library. + Fix SourceForge bug #59 DGifOpen can segfault if DGifGetScreenDesc fails. + SourceForge patch #20: In gifalloc, fix usage of realloc() in case of failure. + Fix SourceForge bug #61 Leak in gifsponge. + glibtoolize port fix for OS X.
Generated by rpm2html 1.8.1
Fabrice Bellet, Thu Jun 9 20:55:32 2022