openSUSE Build Service

Marcus Meissner (msmeissn) committed over 2 years ago (revision 44)

Marcus Meissner (msmeissn) committed over 2 years ago (revision 43)

- libexif-0.6.24 (2021-11-25):
  * Translation updates: sr, vi, pl, uk, french
  * fixed regression in exif_data_load_data which could not load EXIF in JPEG data anymore
  * Decode lots of Canon tag names
  * removed empty strings from translation (empty string would translate to the PO info header)
  * various warning removals and code improvements
  * added sample "persistent" afl fuzzer (100x faster than normal afl fuzzer)

Marcus Meissner (msmeissn) committed over 2 years ago (revision 42)

update

Marcus Meissner (msmeissn) committed over 2 years ago (revision 41)

- libexif-0.6.23 (2021-09-12):
  - Translation updates: es, pl, uk, fr
  - EXIF_TAG_SENSITIVITY_TYPE decoder added, added some more Exif 2.3 tags:
        EXIF_TAG_STANDARD_OUTPUT_SENSITIVITY
        EXIF_TAG_RECOMMENDED_EXPOSURE_INDEX
        EXIF_TAG_ISO_SPEED
        EXIF_TAG_ISO_SPEEDLatitudeYYY
        EXIF_TAG_ISO_SPEEDLatitudeZZZ
        EXIF_TAG_OFFSET_TIME
        EXIF_TAG_OFFSET_TIME_ORIGINAL
        EXIF_TAG_OFFSET_TIME_DIGITIZED
        EXIF_TAG_IMAGE_DEPTH
  - be more relaxed to out of order JPG / EXIF dataheaders in files generated by some tools
  - default GPS IFD table added
  - Decode more Nikon Makernote tag names
  - Added Apple iOS Makernote
  - Security fixes:
    - CVE-2020-0198: unsigned integer overflow in exif_data_load_data_content
    - CVE-2020-0452: compiler optimization could remove an a
      bufferoverflow check, making a buffer overflow possible with some
      EXIF tags
    - some more denial of service (compute time or stack exhaustion) counter-measures
      added that avoid minutes of decoding time with malformed files found
      by OSS-Fuzz

buildservice-autocommit accepted request 809029 from

Marcus Meissner (msmeissn) about 4 years ago (revision 40)

baserev update by copy to link target

Marcus Meissner (msmeissn) committed about 4 years ago (revision 39)

    * CVE-2020-13113: Potential use of uninitialized memory  (bsc#1172105)
    * CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes (bsc#1172116)

buildservice-autocommit accepted request 807015 from

Marcus Meissner (msmeissn) about 4 years ago (revision 38)

baserev update by copy to link target

Marcus Meissner (msmeissn) committed about 4 years ago (revision 37)

- removed patch: libexif-build-date.patch (done similar upstream)
- CVE-2016-6328.patch: in upstream release
- CVE-2017-7544.patch: in upstream release

Marcus Meissner (msmeissn) committed about 4 years ago (revision 36)

- libexif-0.6.22 (2020-05-18) release:
  * New translations: ms
  * Updated translations for most languages
  * Fixed C89 compatibility
  * Fixed warnings on recent versions of autoconf
  * Some useful EXIF 2.3 tag added:
    * EXIF_TAG_GAMMA
    * EXIF_TAG_COMPOSITE_IMAGE
    * EXIF_TAG_SOURCE_IMAGE_NUMBER_OF_COMPOSITE_IMAGE
    * EXIF_TAG_SOURCE_EXPOSURE_TIMES_OF_COMPOSITE_IMAGE
    * EXIF_TAG_GPS_H_POSITIONING_ERROR
    * EXIF_TAG_CAMERA_OWNER_NAME
    * EXIF_TAG_BODY_SERIAL_NUMBER
    * EXIF_TAG_LENS_SPECIFICATION
    * EXIF_TAG_LENS_MAKE
    * EXIF_TAG_LENS_MODEL
    * EXIF_TAG_LENS_SERIAL_NUMBER
  * Lots of fixes exposed by fuzzers like AFL, ClusterFuzz, OSSFuzz and others.
    * CVE-2018-20030: Fix for recursion DoS (bsc#1120943)
    * CVE-2020-13114: Time consumption DoS when parsing canon array markers
    * CVE-2020-13113: Potential use of uninitialized memory 
    * CVE-2020-13112: Various buffer overread fixes due to integer overflows in maker notes
    * CVE-2020-0093: read overflow (bsc#1171847)
    * CVE-2019-9278: replaced integer overflow checks the compiler could optimize away by safer constructs (bsc#1160770)
    * CVE-2020-12767: fixed division by zero (bsc#1171475)
    * CVE-2016-6328: fixed integer overflow when parsing maker notes (bsc#1171475)
    * CVE-2017-7544: fixed buffer overread (bsc#1059893)

Marcus Meissner (msmeissn) committed about 4 years ago (revision 35)

Marcus Meissner (msmeissn) committed about 4 years ago (revision 34)

buildservice-autocommit accepted request 568909 from

Ismail Dönmez (namtrac) over 6 years ago (revision 33)

baserev update by copy to link target

Ismail Dönmez (namtrac) accepted request 568875 from

Jan Engelhardt (jengelh) over 6 years ago (revision 32)

- Remove %__-type macro indirections. Fix SRPM group.
- Use %_smp_mflags for parallel build.
- Drop pointless --with-pic (no effect since --disable-static).

Marcus Meissner (msmeissn) accepted request 566573 from

Karol Babioch (kbabioch) over 6 years ago (revision 31)

- Add CVE-2016-6328.patch: Fix integer overflow in parsing MNOTE
  entry data of the input file (bnc#1055857)
- Add CVE-2017-7544.patch: Fix vulnerable out-of-bounds heap read
  vulnerability (bnc#1059893)

buildservice-autocommit accepted request 515431 from

Marcus Meissner (msmeissn) almost 7 years ago (revision 30)

baserev update by copy to link target

Marcus Meissner (msmeissn) committed almost 7 years ago (revision 29)

Ismail Dönmez (namtrac) accepted request 515133 from

Marcus Meissner (msmeissn) almost 7 years ago (revision 28)

- add a libexif-devel-biarch for building with -m32

buildservice-autocommit accepted request 246482 from

Marcus Meissner (msmeissn) almost 10 years ago (revision 27)

baserev update by copy to link target

Marcus Meissner (msmeissn) accepted request 246480 from

Frederic Crozat (fcrozat) almost 10 years ago (revision 26)

- Add obsoletes/provides to baselibs.conf.

buildservice-autocommit accepted request 235842 from

Dirk Stoecker (dstoecker) about 10 years ago (revision 25)

baserev update by copy to link target

Places

Revisions of libexif

Places