|
|
2c4e85 |
|
|
|
2c4e85 |
# NOTE: packages that can use jasper:
|
|
|
2c4e85 |
# ImageMagick
|
|
|
2c4e85 |
# netpbm
|
|
|
2c4e85 |
|
|
|
2c4e85 |
Summary: Implementation of the JPEG-2000 standard, Part 1
|
|
|
2c4e85 |
Name: jasper
|
|
|
2c4e85 |
Group: System Environment/Libraries
|
|
|
2c4e85 |
Version: 1.900.1
|
|
|
afe0b4 |
Release: 33%{?dist}
|
|
|
2c4e85 |
|
|
|
2c4e85 |
License: JasPer
|
|
|
2c4e85 |
URL: http://www.ece.uvic.ca/~frodo/jasper/
|
|
|
2c4e85 |
Source0: http://www.ece.uvic.ca/~frodo/jasper/software/jasper-%{version}.zip
|
|
|
2c4e85 |
|
|
|
2c4e85 |
Patch1: jasper-1.701.0-GL.patch
|
|
|
2c4e85 |
# autoconf/automake bits of patch1
|
|
|
2c4e85 |
Patch2: jasper-1.701.0-GL-ac.patch
|
|
|
2c4e85 |
# CVE-2007-2721 (bug #240397)
|
|
|
2c4e85 |
# borrowed from http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=413041;msg=88
|
|
|
2c4e85 |
Patch3: patch-libjasper-stepsizes-overflow.diff
|
|
|
2c4e85 |
# borrowed from http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=469786
|
|
|
2c4e85 |
Patch4: jpc_dec.c.patch
|
|
|
2c4e85 |
# OpenBSD hardening patches addressing couple of possible integer overflows
|
|
|
2c4e85 |
# during the memory allocations
|
|
|
2c4e85 |
# https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-3520
|
|
|
2c4e85 |
Patch5: jasper-1.900.1-CVE-2008-3520.patch
|
|
|
2c4e85 |
# https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-3522
|
|
|
2c4e85 |
Patch6: jasper-1.900.1-CVE-2008-3522.patch
|
|
|
2c4e85 |
# add pkg-config support
|
|
|
2c4e85 |
Patch7: jasper-pkgconfig.patch
|
|
|
2c4e85 |
|
|
|
2c4e85 |
Patch8: jasper-1.900.1-CVE-2011-4516-CVE-2011-4517-CERT-VU-887409.patch
|
|
|
2c4e85 |
|
|
|
f6e2e8 |
Patch9: jasper-CVE-2014-9029.patch
|
|
|
f6e2e8 |
Patch10: jasper-CVE-2014-8137.patch
|
|
|
f6e2e8 |
Patch11: jasper-CVE-2014-8138.patch
|
|
|
60b290 |
Patch12: jasper-CVE-2014-8157.patch
|
|
|
60b290 |
Patch13: jasper-CVE-2014-8158.patch
|
|
|
f6e2e8 |
|
|
|
2c4e85 |
# Issues found by static analysis of code
|
|
|
f6e2e8 |
Patch110: jasper-1.900.1-Coverity-BAD_SIZEOF.patch
|
|
|
f6e2e8 |
Patch111: jasper-1.900.1-Coverity-CHECKED_RETURN.patch
|
|
|
f6e2e8 |
Patch112: jasper-1.900.1-Coverity-FORWARD_NULL.patch
|
|
|
f6e2e8 |
Patch113: jasper-1.900.1-Coverity-NULL_RETURNS.patch
|
|
|
f6e2e8 |
Patch114: jasper-1.900.1-Coverity-RESOURCE_LEAK.patch
|
|
|
f6e2e8 |
Patch115: jasper-1.900.1-Coverity-UNREACHABLE.patch
|
|
|
f6e2e8 |
Patch116: jasper-1.900.1-Coverity-UNUSED_VALUE.patch
|
|
|
2c4e85 |
|
|
|
94b862 |
Patch14: jasper-CVE-2015-5203-CVE-2016-9262.patch
|
|
|
94b862 |
Patch15: jasper-CVE-2015-5221.patch
|
|
|
94b862 |
Patch16: jasper-CVE-2016-1577.patch
|
|
|
94b862 |
Patch17: jasper-CVE-2016-1867.patch
|
|
|
94b862 |
Patch18: jasper-CVE-2016-2089.patch
|
|
|
94b862 |
Patch19: jasper-CVE-2016-2116.patch
|
|
|
94b862 |
Patch20: jasper-CVE-2016-8654.patch
|
|
|
94b862 |
Patch21: jasper-CVE-2016-8690-CVE-2016-8884-CVE-2016-8885.patch
|
|
|
94b862 |
Patch22: jasper-CVE-2016-8691-CVE-2016-8692.patch
|
|
|
94b862 |
Patch23: jasper-CVE-2016-8693.patch
|
|
|
94b862 |
Patch24: jasper-CVE-2016-9390.patch
|
|
|
94b862 |
Patch25: jasper-CVE-2016-9392-CVE-2016-9393-CVE-2016-9394.patch
|
|
|
94b862 |
Patch26: jasper-CVE-2016-9560.patch
|
|
|
94b862 |
Patch27: jasper-CVE-2016-10251.patch
|
|
|
94b862 |
Patch28: jasper-CVE-2016-9583.patch
|
|
|
94b862 |
Patch29: jasper-CVE-2016-9591.patch
|
|
|
94b862 |
Patch30: jasper-CVE-2016-9600.patch
|
|
|
94b862 |
Patch31: jasper-CVE-2016-10248.patch
|
|
|
94b862 |
Patch32: jasper-CVE-2016-10249.patch
|
|
|
94b862 |
Patch33: jasper-CVE-2016-8883.patch
|
|
|
94b862 |
Patch34: jasper-CVE-2016-9387.patch
|
|
|
94b862 |
Patch35: jasper-CVE-2016-9388.patch
|
|
|
94b862 |
Patch36: jasper-CVE-2016-9389.patch
|
|
|
94b862 |
Patch37: jasper-CVE-2016-9391.patch
|
|
|
94b862 |
Patch38: jasper-CVE-implicit-declaration-fix.patch
|
|
|
94b862 |
|
|
|
3acafb |
Patch39: jasper-1.900.1-define-SIZE-MAX.patch
|
|
|
afe0b4 |
Patch40: jasper-1.900.1-CVE-2016-9396.patch
|
|
|
afe0b4 |
Patch41: jasper-1.900.1-CVE-2017-1000050.patch
|
|
|
3acafb |
|
|
|
2c4e85 |
# autoreconf
|
|
|
2c4e85 |
BuildRequires: autoconf automake libtool
|
|
|
2c4e85 |
BuildRequires: freeglut-devel
|
|
|
2c4e85 |
BuildRequires: libGLU-devel
|
|
|
2c4e85 |
BuildRequires: libjpeg-devel
|
|
|
2c4e85 |
BuildRequires: pkgconfig
|
|
|
2c4e85 |
|
|
|
2c4e85 |
Requires: %{name}-libs%{?_isa} = %{version}-%{release}
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%description
|
|
|
2c4e85 |
This package contains an implementation of the image compression
|
|
|
2c4e85 |
standard JPEG-2000, Part 1. It consists of tools for conversion to and
|
|
|
2c4e85 |
from the JP2 and JPC formats.
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%package devel
|
|
|
2c4e85 |
Summary: Header files, libraries and developer documentation
|
|
|
2c4e85 |
Group: Development/Libraries
|
|
|
2c4e85 |
Provides: libjasper-devel = %{version}-%{release}
|
|
|
2c4e85 |
Requires: %{name}-libs%{?_isa} = %{version}-%{release}
|
|
|
2c4e85 |
Requires: libjpeg-devel
|
|
|
2c4e85 |
Requires: pkgconfig
|
|
|
2c4e85 |
%description devel
|
|
|
2c4e85 |
%{summary}.
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%package libs
|
|
|
2c4e85 |
Summary: Runtime libraries for %{name}
|
|
|
2c4e85 |
Group: System Environment/Libraries
|
|
|
2c4e85 |
Conflicts: jasper < 1.900.1-4
|
|
|
2c4e85 |
%description libs
|
|
|
2c4e85 |
%{summary}.
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%package utils
|
|
|
2c4e85 |
Summary: Nonessential utilities for %{name}
|
|
|
2c4e85 |
Group: Development/Libraries
|
|
|
2c4e85 |
Requires: %{name} = %{version}-%{release}
|
|
|
2c4e85 |
Requires: %{name}-libs%{?_isa} = %{version}-%{release}
|
|
|
2c4e85 |
%description utils
|
|
|
2c4e85 |
%{summary}, including jiv and tmrdemo.
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%prep
|
|
|
2c4e85 |
%setup -q -n %{name}-%{version}
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%patch1 -p1 -b .GL
|
|
|
2c4e85 |
%patch2 -p1 -b .GL-ac
|
|
|
2c4e85 |
%patch3 -p1 -b .CVE-2007-2721
|
|
|
2c4e85 |
%patch4 -p1 -b .jpc_dec_assertion
|
|
|
2c4e85 |
%patch5 -p1 -b .CVE-2008-3520
|
|
|
2c4e85 |
%patch6 -p1 -b .CVE-2008-3522
|
|
|
2c4e85 |
%patch7 -p1 -b .pkgconfig
|
|
|
2c4e85 |
%patch8 -p1 -b .CVE-2011-4516-4517
|
|
|
f6e2e8 |
%patch9 -p1 -b .CVE-2014-9029
|
|
|
f6e2e8 |
%patch10 -p1 -b .CVE-2014-8137
|
|
|
f6e2e8 |
%patch11 -p1 -b .CVE-2014-8138
|
|
|
60b290 |
%patch12 -p1 -b .CVE-2014-8157
|
|
|
60b290 |
%patch13 -p1 -b .CVE-2014-8158
|
|
|
f6e2e8 |
|
|
|
f6e2e8 |
%patch110 -p1 -b .BAD_SIZEOF
|
|
|
f6e2e8 |
%patch111 -p1 -b .CHECKED_RETURN
|
|
|
f6e2e8 |
%patch112 -p1 -b .FORWARD_NULL
|
|
|
f6e2e8 |
%patch113 -p1 -b .NULL_RETURNS
|
|
|
f6e2e8 |
%patch114 -p1 -b .RESOURCE_LEAK
|
|
|
f6e2e8 |
%patch115 -p1 -b .UNREACHABLE
|
|
|
f6e2e8 |
%patch116 -p1 -b .UNUSED_VALUE
|
|
|
2c4e85 |
|
|
|
94b862 |
%patch14 -p1 -b .CVE-2015-5203
|
|
|
94b862 |
%patch15 -p1 -b .CVE-2015-5221
|
|
|
94b862 |
%patch16 -p1 -b .CVE-2016-1577
|
|
|
94b862 |
%patch17 -p1 -b .CVE-2016-1867
|
|
|
94b862 |
%patch18 -p1 -b .CVE-2016-2089
|
|
|
94b862 |
%patch19 -p1 -b .CVE-2016-2116
|
|
|
94b862 |
%patch20 -p1 -b .CVE-2016-8654
|
|
|
94b862 |
%patch21 -p1 -b .CVE-2016-8690
|
|
|
94b862 |
%patch22 -p1 -b .CVE-2016-8691
|
|
|
94b862 |
%patch23 -p1 -b .CVE-2016-8693
|
|
|
94b862 |
%patch24 -p1 -b .CVE-2016-9390
|
|
|
94b862 |
%patch25 -p1 -b .CVE-2016-9392
|
|
|
94b862 |
%patch26 -p1 -b .CVE-2016-9560
|
|
|
94b862 |
%patch27 -p1 -b .CVE-2016-10251
|
|
|
94b862 |
%patch28 -p1 -b .CVE-2016-9583
|
|
|
94b862 |
%patch29 -p1 -b .CVE-2016-9591
|
|
|
94b862 |
%patch30 -p1 -b .CVE-2016-9600
|
|
|
94b862 |
%patch31 -p1 -b .CVE-2016-10248
|
|
|
94b862 |
%patch32 -p1 -b .CVE-2016-10249
|
|
|
94b862 |
%patch33 -p1 -b .CVE-2016-8883
|
|
|
94b862 |
%patch34 -p1 -b .CVE-2016-9387
|
|
|
94b862 |
%patch35 -p1 -b .CVE-2016-9388
|
|
|
94b862 |
%patch36 -p1 -b .CVE-2016-9389
|
|
|
94b862 |
%patch37 -p1 -b .CVE-2016-9391
|
|
|
94b862 |
%patch38 -p1 -b .CVE-implicit-declaration-fix
|
|
|
3acafb |
%patch39 -p1 -b .define-SIZE-MAX
|
|
|
afe0b4 |
%patch40 -p1 -b .CVE-2016-9396
|
|
|
afe0b4 |
%patch41 -p1 -b .CVE-2017-1000050
|
|
|
94b862 |
|
|
|
2c4e85 |
autoreconf --verbose --force --install
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%build
|
|
|
2c4e85 |
|
|
|
2c4e85 |
# jas_icc.c:744:2: warning: assuming signed overflow does not occur
|
|
|
2c4e85 |
# when assuming that (X + c) < X is always false [-Wstrict-overflow]
|
|
|
2c4e85 |
#
|
|
|
2c4e85 |
# comment from Red Hat Security Response Team:
|
|
|
2c4e85 |
# gcc inlines jas_iccattrtab_resize into jas_iccattrtab_add. Additionally, it
|
|
|
2c4e85 |
# essentially removes the "assert(maxents >= tab->numattrs);" assertion in
|
|
|
2c4e85 |
# jas_iccattrtab_resize, because it assumes that "maxents >= tab->numattrs" will
|
|
|
2c4e85 |
# always be true due to jas_iccattrtab_resize(attrtab, attrtab->numattrs + 32),
|
|
|
2c4e85 |
# especially the + 32. This assumption can only be true if it completely ignores
|
|
|
2c4e85 |
# the problem of signed integer overflows. I don't think it's a smart idea to
|
|
|
2c4e85 |
# accept that.
|
|
|
2c4e85 |
# -fno-strict-overflow forces gcc into keeping the assertion there.
|
|
|
2c4e85 |
CFLAGS="%{optflags} -fno-strict-overflow" \
|
|
|
2c4e85 |
%configure \
|
|
|
2c4e85 |
--enable-shared \
|
|
|
2c4e85 |
--disable-static
|
|
|
2c4e85 |
|
|
|
2c4e85 |
make %{?_smp_mflags}
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%install
|
|
|
2c4e85 |
|
|
|
2c4e85 |
make install DESTDIR=$RPM_BUILD_ROOT
|
|
|
2c4e85 |
|
|
|
2c4e85 |
# Unpackaged files
|
|
|
2c4e85 |
rm -f doc/README
|
|
|
2c4e85 |
rm -f $RPM_BUILD_ROOT%{_libdir}/lib*.la
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%check
|
|
|
2c4e85 |
make check
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%post libs -p /sbin/ldconfig
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%postun libs -p /sbin/ldconfig
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%files
|
|
|
2c4e85 |
%{_bindir}/imgcmp
|
|
|
2c4e85 |
%{_bindir}/imginfo
|
|
|
2c4e85 |
%{_bindir}/jasper
|
|
|
2c4e85 |
%{_mandir}/man1/img*
|
|
|
2c4e85 |
%{_mandir}/man1/jasper.1*
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%files devel
|
|
|
2c4e85 |
%doc doc/*
|
|
|
2c4e85 |
%{_includedir}/jasper/
|
|
|
2c4e85 |
%{_libdir}/libjasper.so
|
|
|
2c4e85 |
%{_libdir}/pkgconfig/jasper.pc
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%files libs
|
|
|
2c4e85 |
%doc COPYRIGHT LICENSE NEWS README
|
|
|
2c4e85 |
%{_libdir}/libjasper.so.1*
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%files utils
|
|
|
2c4e85 |
%{_bindir}/jiv
|
|
|
2c4e85 |
%{_bindir}/tmrdemo
|
|
|
2c4e85 |
%{_mandir}/man1/jiv.1*
|
|
|
2c4e85 |
|
|
|
2c4e85 |
|
|
|
2c4e85 |
%changelog
|
|
|
afe0b4 |
* Thu Jun 21 2018 Josef Ridky <jridky@redhat.com> - 1.900.1-33
|
|
|
afe0b4 |
- remove implicit declaration of jas_eprintf (#1585830)
|
|
|
afe0b4 |
|
|
|
afe0b4 |
* Thu Jun 21 2018 Josef Ridky <jridky@redhat.com> - 1.900.1-32
|
|
|
afe0b4 |
- Fix CVE-2016-9396 (#1583721)
|
|
|
afe0b4 |
- Fix CVE-2017-1000050 (#1585830)
|
|
|
afe0b4 |
|
|
|
3acafb |
* Wed May 31 2017 Josef Ridky <jridky@redhat.com> - 1.900.1-31
|
|
|
3acafb |
- Fix missing declaration of SIZE_MAX constant in jas_math.h (#1455489)
|
|
|
3acafb |
|
|
|
94b862 |
* Tue Apr 25 2017 Josef Ridky <jridky@redhat.com> - 1.900.1-30
|
|
|
94b862 |
- Multiple security fixes (fixed by thoger):
|
|
|
94b862 |
CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089
|
|
|
94b862 |
CVE-2016-2116 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692
|
|
|
94b862 |
CVE-2016-8693 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-9262
|
|
|
94b862 |
CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391
|
|
|
94b862 |
CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9560 CVE-2016-9583
|
|
|
94b862 |
CVE-2016-9591 CVE-2016-9600 CVE-2016-10248 CVE-2016-10249 CVE-2016-10251
|
|
|
94b862 |
- Fix implicit declaration warning caused by security fixes above
|
|
|
94b862 |
|
|
|
8b597b |
* Mon Jan 19 2015 Jiri Popelka <jpopelka@redhat.com> - 1.900.1-29
|
|
|
8b597b |
- CVE-2014-8157 - dec->numtiles off-by-one check in jpc_dec_process_sot() (#1183674)
|
|
|
8b597b |
- CVE-2014-8158 - unrestricted stack memory use in jpc_qmfb.c (#1183682)
|
|
|
60b290 |
|
|
|
8b597b |
* Fri Dec 12 2014 Jiri Popelka <jpopelka@redhat.com> - 1.900.1-28
|
|
|
8b597b |
- CVE-2014-8137 - double-free in in jas_iccattrval_destroy (#1173569)
|
|
|
8b597b |
- CVE-2014-8138 - heap overflow in jp2_decode (#1173569)
|
|
|
f6e2e8 |
|
|
|
8b597b |
* Sat Dec 06 2014 Jiri Popelka <jpopelka@redhat.com> - 1.900.1-27
|
|
|
f6e2e8 |
- CVE-2014-9029 - incorrect component number check in COC, RGN and QCC
|
|
|
8b597b |
marker segment decoders (#1171211)
|
|
|
f6e2e8 |
|
|
|
c3967b |
* Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 1.900.1-26
|
|
|
c3967b |
- Mass rebuild 2014-01-24
|
|
|
c3967b |
|
|
|
c3967b |
* Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 1.900.1-25
|
|
|
c3967b |
- Mass rebuild 2013-12-27
|
|
|
c3967b |
|
|
|
2c4e85 |
* Mon Mar 25 2013 Jiri Popelka <jpopelka@redhat.com> - 1.900.1-24
|
|
|
2c4e85 |
- added --force option to autoreconf (#925604)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.900.1-23
|
|
|
2c4e85 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Jan 18 2013 Adam Tkac <atkac redhat com> - 1.900.1-22
|
|
|
2c4e85 |
- rebuild due to "jpeg8-ABI" feature drop
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Thu Dec 06 2012 Jiri Popelka <jpopelka@redhat.com> - 1.900.1-21
|
|
|
2c4e85 |
- build with -fno-strict-overflow
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.900.1-20
|
|
|
2c4e85 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.900.1-19
|
|
|
2c4e85 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Dec 09 2011 Jiri Popelka <jpopelka@redhat.com> - 1.900.1-18
|
|
|
2c4e85 |
- CVE-2011-4516, CVE-2011-4517 jasper: heap buffer overflow flaws
|
|
|
2c4e85 |
lead to arbitrary code execution (CERT VU#887409) (#765660)
|
|
|
2c4e85 |
- Fixed problems found by static analysis of code (#761440)
|
|
|
2c4e85 |
- spec file modernized
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.900.1-17
|
|
|
2c4e85 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed Jun 30 2010 Rex Dieter <rdieter@fedoraproject.org> - 1.900.1-16
|
|
|
2c4e85 |
- rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Sun Feb 14 2010 Rex Dieter <rdieter@fedoraproject.org> - 1.900.1-15
|
|
|
2c4e85 |
- FTBFS jasper-1.900.1-14.fc12: ImplicitDSOLinking (#564794)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Thu Oct 29 2009 Rex Dieter <rdieter@fedoraproject.org> - 1.900.1-14
|
|
|
2c4e85 |
- add pkgconfig support
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Mon Oct 13 2009 Rex Dieter <rdieter@fedoraproject.org> - 1.900.1-13
|
|
|
2c4e85 |
- CVE-2008-3520 jasper: multiple integer overflows in jas_alloc calls (#461476)
|
|
|
2c4e85 |
- CVE-2008-3522 jasper: possible buffer overflow in
|
|
|
2c4e85 |
jas_stream_printf() (#461478)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Jul 24 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.900.1-12
|
|
|
2c4e85 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Sat Jul 18 2009 Rex Dieter <rdieter@fedoraproject.org> - 1.900.1-11
|
|
|
2c4e85 |
- FTBFS jasper-1.900.1-10.fc11 (#511743)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed Feb 25 2009 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.900.1-10
|
|
|
2c4e85 |
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Sun Jan 25 2009 Rex Dieter <rdieter@fedoraproject.org> 1.900.1-9
|
|
|
2c4e85 |
- patch for "jpc_dec_tiledecode: Assertion `dec->numcomps == 3' failed)
|
|
|
2c4e85 |
(#481284, #481291)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Feb 08 2008 Rex Dieter <rdieter@fedoraproject.org> 1.900.1-8
|
|
|
2c4e85 |
- respin (gcc43)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Mon Oct 15 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-7
|
|
|
2c4e85 |
- -libs: %%post/%%postun -p /sbin/ldconfig
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Mon Sep 17 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-6
|
|
|
2c4e85 |
- -libs: -Requires: %%name
|
|
|
2c4e85 |
- -devel: +Provides: libjasper-devel
|
|
|
2c4e85 |
- drop (unused) geojasper bits
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed Aug 22 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-4
|
|
|
2c4e85 |
- -libs subpkg to be multilib friendlier
|
|
|
2c4e85 |
- -utils subpkg for non-essential binaries jiv, tmrdemo (#244153)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Aug 17 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-3
|
|
|
2c4e85 |
- License: JasPer
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed May 23 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-2
|
|
|
2c4e85 |
- CVE-2007-2721 (#240397)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Thu Mar 29 2007 Rex Dieter <rdieter[AT]fedoraproject.org> 1.900.1-1
|
|
|
2c4e85 |
- jasper-1.900.1
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Dec 08 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.900.0-3
|
|
|
2c4e85 |
- omit deprecated memleak patch
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Dec 08 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.900.0-2
|
|
|
2c4e85 |
- jasper-1.900.0 (#218947)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Mon Sep 18 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-15
|
|
|
2c4e85 |
- memory leak (#207006)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Aug 29 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-13
|
|
|
2c4e85 |
- fc6 respin
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed Mar 1 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-12
|
|
|
2c4e85 |
- fixup build issues introduced by geojasper integration
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Wed Mar 1 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-10
|
|
|
2c4e85 |
- support/use geojasper (optional, default no)
|
|
|
2c4e85 |
- fc5: gcc/glibc respin
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Feb 10 2006 Rex Dieter <rexdieter[AT]users.sf.net>
|
|
|
2c4e85 |
- fc5: gcc/glibc respin
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Jan 31 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-9
|
|
|
2c4e85 |
- workaround "freeglut-devel should Requires: libGL-devel, libGLU-devel"
|
|
|
2c4e85 |
(#179464)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Jan 31 2006 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-8
|
|
|
2c4e85 |
- revert jasper to jaspertool rename (#176773)
|
|
|
2c4e85 |
- actually use/apply GL patch
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Oct 18 2005 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-7
|
|
|
2c4e85 |
- GL patch to remove libGL dependancy (using only freeglut)
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Oct 18 2005 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-6
|
|
|
2c4e85 |
- token %%check section
|
|
|
2c4e85 |
- --enable-shared
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Mon Oct 17 2005 Rex Dieter <rexdieter[AT]users.sf.net> 1.701.0-5
|
|
|
2c4e85 |
- use %%{?dist}
|
|
|
2c4e85 |
- BR: libGL-devel
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Apr 7 2005 Michael Schwendt <mschwendt[AT]users.sf.net>
|
|
|
2c4e85 |
- rebuilt
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Sat Oct 23 2004 Rex Dieter <rexdieter at sf.net> 0:1.701.0-0.fdr.3
|
|
|
2c4e85 |
- Capitalize summary
|
|
|
2c4e85 |
- remove 0-length ChangeLog
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Fri Jun 04 2004 Rex Dieter <rexdieter at sf.net> 0:1.701.0-0.fdr.2
|
|
|
2c4e85 |
- nuke .la file
|
|
|
2c4e85 |
- BR: glut-devel -> freeglut-devel
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Jun 01 2004 Rex Dieter <rexdieter at sf.net> 0:1.701.0-0.fdr.1
|
|
|
2c4e85 |
- 1.701.0
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Tue Jun 01 2004 Rex Dieter <rexdieter at sf.net> 0:1.700.5-0.fdr.2
|
|
|
2c4e85 |
- avoid conflicts with fc'2 tomcat by renaming /usr/bin/jasper -> jaspertool
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Mon Mar 08 2004 Rex Dieter <rexdieter at sf.net> 0:1.700.5-0.fdr.1
|
|
|
2c4e85 |
- use Epochs.
|
|
|
2c4e85 |
- -devel: Requires: %%name = %%epoch:%%version
|
|
|
2c4e85 |
|
|
|
2c4e85 |
* Thu Jan 22 2004 Rex Dieter <rexdieter at sf.net> 1.700.5-0.fdr.0
|
|
|
2c4e85 |
- first try
|
|
|
2c4e85 |
|