|
 |
4a042c |
Name: compat-exiv2-026
|
|
|
4a042c |
Version: 0.26
|
|
|
1ab6b5 |
Release: 7%{?dist}
|
|
|
4a042c |
Summary: Compatibility package with the exiv2 library in version 0.26
|
|
|
4a042c |
|
|
|
4a042c |
License: GPLv2+
|
|
|
4a042c |
URL: http://www.exiv2.org/
|
|
|
4a042c |
Source0: https://github.com/Exiv2/%{name}/archive/exiv2-%{version}.tar.gz
|
|
|
4a042c |
|
|
|
4a042c |
Patch0: exiv2-simplify-compiler-info-in-cmake.patch
|
|
|
4a042c |
Patch1: exiv2-do-not-build-documentation.patch
|
|
|
4a042c |
|
|
|
4a042c |
## upstream patches (lookaside cache)
|
|
|
4a042c |
Patch6: 0006-1296-Fix-submitted.patch
|
|
|
4a042c |
|
|
|
4a042c |
# Security fixes
|
|
|
4a042c |
Patch10: exiv2-CVE-2017-17723-1.patch
|
|
|
4a042c |
Patch11: exiv2-CVE-2017-17723-2.patch
|
|
|
4a042c |
Patch12: exiv2-wrong-brackets.patch
|
|
|
4a042c |
Patch13: exiv2-CVE-2017-11683.patch
|
|
|
4a042c |
Patch14: exiv2-CVE-2017-14860.patch
|
|
|
4a042c |
Patch15: exiv2-CVE-2017-14864-CVE-2017-14862-CVE-2017-14859.patch
|
|
|
4a042c |
Patch16: exiv2-CVE-2017-17725.patch
|
|
|
4a042c |
Patch17: exiv2-CVE-2017-17669.patch
|
|
|
4a042c |
Patch18: exiv2-additional-security-fixes.patch
|
|
|
4a042c |
Patch19: exiv2-CVE-2018-10958.patch
|
|
|
4a042c |
Patch20: exiv2-CVE-2018-10998.patch
|
|
|
4a042c |
Patch21: exiv2-CVE-2018-11531.patch
|
|
|
4a042c |
Patch22: exiv2-CVE-2018-12264-CVE-2018-12265.patch
|
|
|
4a042c |
Patch23: exiv2-CVE-2018-14046.patch
|
|
|
4a042c |
Patch24: exiv2-CVE-2018-5772.patch
|
|
|
4a042c |
Patch25: exiv2-CVE-2018-8976.patch
|
|
|
4a042c |
Patch26: exiv2-CVE-2018-8977.patch
|
|
|
4a042c |
Patch27: exiv2-CVE-2018-16336.patch
|
|
|
046469 |
Patch28: exiv2-CVE-2021-31291.patch
|
|
|
f77525 |
Patch29: exiv2-CVE-2021-31292.patch
|
|
|
f77525 |
Patch30: exiv2-CVE-2021-37618.patch
|
|
|
f77525 |
Patch31: exiv2-CVE-2021-37619.patch
|
|
|
1ab6b5 |
Patch32: exiv2-CVE-2020-18898.patch
|
|
|
4a042c |
|
|
|
4a042c |
## upstreamable patches
|
|
|
4a042c |
|
|
|
4a042c |
BuildRequires: cmake
|
|
|
4a042c |
BuildRequires: expat-devel
|
|
|
4a042c |
BuildRequires: gettext
|
|
|
4a042c |
BuildRequires: pkgconfig
|
|
|
4a042c |
BuildRequires: pkgconfig(libcurl)
|
|
|
4a042c |
BuildRequires: pkgconfig(libssh)
|
|
|
4a042c |
BuildRequires: zlib-devel
|
|
|
4a042c |
|
|
|
4a042c |
Conflicts: exiv2-libs < 0.27
|
|
|
4a042c |
|
|
|
4a042c |
%description
|
|
|
4a042c |
A command line utility to access image metadata, allowing one to:
|
|
|
4a042c |
* print the Exif metadata of Jpeg images as summary info, interpreted values,
|
|
|
4a042c |
or the plain data for each tag
|
|
|
4a042c |
* print the Iptc metadata of Jpeg images
|
|
|
4a042c |
* print the Jpeg comment of Jpeg images
|
|
|
4a042c |
* set, add and delete Exif and Iptc metadata of Jpeg images
|
|
|
4a042c |
* adjust the Exif timestamp (that's how it all started...)
|
|
|
4a042c |
* rename Exif image files according to the Exif timestamp
|
|
|
4a042c |
* extract, insert and delete Exif metadata (including thumbnails),
|
|
|
4a042c |
Iptc metadata and Jpeg comments
|
|
|
4a042c |
|
|
|
4a042c |
%prep
|
|
|
4a042c |
%autosetup -n exiv2-%{version} -p1
|
|
|
4a042c |
|
|
|
4a042c |
|
|
|
4a042c |
%build
|
|
|
4a042c |
# exiv2: embedded copy of exempi should be compiled with BanAllEntityUsage
|
|
|
4a042c |
# https://bugzilla.redhat.com/show_bug.cgi?id=888769
|
|
|
4a042c |
export CPPFLAGS="-DBanAllEntityUsage=1"
|
|
|
4a042c |
|
|
|
4a042c |
%{cmake} \
|
|
|
4a042c |
-DEXIV2_ENABLE_BUILD_PO:BOOL=OFF \
|
|
|
4a042c |
-DEXIV2_ENABLE_BUILD_SAMPLES:BOOL=OFF \
|
|
|
4a042c |
-DEXIV2_ENABLE_LIBXMP:BOOL=ON .
|
|
|
4a042c |
# FIXME: build this because it adds Threads library and it doesn't build without
|
|
|
4a042c |
# it from some reason
|
|
|
4a042c |
|
|
|
4a042c |
make %{?_smp_mflags}
|
|
|
4a042c |
|
|
|
4a042c |
%install
|
|
|
4a042c |
make install/fast DESTDIR=%{buildroot}
|
|
|
4a042c |
|
|
|
4a042c |
## unpackaged files
|
|
|
4a042c |
rm -rf %{buildroot}%{_bindir}/exiv2
|
|
|
4a042c |
rm -rf %{buildroot}%{_includedir}/exiv2
|
|
|
4a042c |
rm -rf %{buildroot}%{_libdir}/libexiv2.la
|
|
|
4a042c |
rm -rf %{buildroot}%{_libdir}/libxmp.a
|
|
|
4a042c |
rm -rf %{buildroot}%{_libdir}/pkgconfig/exiv2.pc
|
|
|
4a042c |
rm -rf %{buildroot}%{_libdir}/pkgconfig/exiv2.lsm
|
|
|
4a042c |
rm -rf %{buildroot}%{_datadir}/locale/*
|
|
|
4a042c |
rm -rf %{buildroot}%{_mandir}/*
|
|
|
4a042c |
rm -rf mv %{buildroot}%{_libdir}/libexiv2.so
|
|
|
4a042c |
|
|
|
4a042c |
|
|
|
4a042c |
%files
|
|
|
4a042c |
%doc COPYING README
|
|
|
4a042c |
%{_libdir}/libexiv2.so.26*
|
|
|
4a042c |
|
|
|
4a042c |
|
|
|
4a042c |
%changelog
|
|
|
1ab6b5 |
* Wed Oct 13 2021 Jan Grulich <jgrulich@redhat.com> - 0.26-7
|
|
|
1ab6b5 |
- Fix stack exhaustion issue in the printIFDStructure function
|
|
|
1ab6b5 |
Resolves: bz#2003669
|
|
|
1ab6b5 |
|
|
|
f77525 |
* Wed Aug 18 2021 Jan Grulich <jgrulich@redhat.com> - 0.26-6
|
|
|
f77525 |
- Fix out-of-bounds read in Exiv2::Jp2Image::printStructure
|
|
|
f77525 |
Resolves: bz#1993283
|
|
|
f77525 |
|
|
|
f77525 |
- Fix out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header
|
|
|
f77525 |
Resolves: bz#1993246
|
|
|
f77525 |
|
|
|
f77525 |
* Thu Aug 05 2021 Jan Grulich <jgrulich@redhat.com> - 0.26-4
|
|
|
046469 |
- Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS
|
|
|
f77525 |
Resolves: bz#1990398
|
|
|
f77525 |
|
|
|
f77525 |
- Integer overflow in CrwMap:encode0x1810 leading to heap-based buffer overflow and DoS
|
|
|
f77525 |
Resolves: bz#1990399
|
|
|
046469 |
|
|
|
4a042c |
* Thu Nov 21 2019 Jan Grulich <jgrulich@redhat.com> - 0.26-3
|
|
|
4a042c |
- Remove pre-built msvc binaries
|
|
|
4a042c |
Resolves: bz#1757349
|
|
|
4a042c |
|
|
|
4a042c |
* Wed Oct 09 2019 Tomas Pelka <tpelka@redhat.com> - 0.26-2
|
|
|
4a042c |
- bump version in order to pick up with gating
|
|
|
4a042c |
|
|
|
4a042c |
* Mon Oct 07 2019 Jan Grulich <jgrulich@redhat.com> - 0.26-1
|
|
|
4a042c |
- Spec file based on exiv2 package to provide old libraries before API change
|
|
|
4a042c |
Resolves: bz#1757349
|