Summary: Library to make writing a VNC server easy Name: libvncserver Version: 0.9.11 Release: 17%{?dist} # NOTE: --with-filetransfer => GPLv2 License: GPLv2+ URL: http://libvnc.github.io/ Source0: https://github.com/LibVNC/libvncserver/archive/LibVNCServer-%{version}.tar.gz ## upstream patches Patch4: 0040-Ensure-compatibility-with-gtk-vnc-0.7.0.patch ## TLS security type enablement patches # https://github.com/LibVNC/libvncserver/pull/234 Patch10: 0001-libvncserver-Add-API-to-add-custom-I-O-entry-points.patch Patch11: 0002-libvncserver-Add-channel-security-handlers.patch ## Add API needed by gnome-remote-desktop to handle settings changes # rhbz#1684729 Patch12: 0001-auth-Add-API-to-unregister-built-in-security-handler.patch ## downstream patches Patch100: libvncserver-0.9.11-system_minilzo.patch Patch101: libvncserver-0.9.1-multilib.patch Patch102: LibVNCServer-0.9.10-system-crypto-policy.patch # revert soname bump Patch103: libvncserver-0.9.11-soname.patch # 1/2 Fix CVE-2018-7225, bug #1546860 Patch104: libvncserver-0.9.11-Validate-client-cut-text-length.patch # 2/2 Fix CVE-2018-7225, bug #1546860 Patch105: libvncserver-0.9.11-Limit-client-cut-text-length-to-1-MB.patch # Fix CVE-2018-15127 (Heap out-of-bounds write in # rfbserver.c:rfbProcessFileTransferReadBuffer()), bug #1662997, upstream bugs # # # # fixed in upstream after 0.9.12 Patch106: libvncserver-0.9.11-Fix-CVE-2018-15127-Heap-out-of-bounds-write-in-rfbse.patch # Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client), # bug #1814343, , # in upstream after 0.9.12 Patch107: libvncserver-0.9.11-libvncclient-cursor-limit-width-height-input-values.patch # https://github.com/LibVNC/libvncserver/commit/aac95a9dcf4bbba87b76c72706c3221a842ca433 Patch108: libvncserver-0.9.11-CVE-2017-18922.patch # https://github.com/LibVNC/libvncserver/pull/308 Patch109: libvncserver-0.9.11-CVE-2019-20840.patch # https://github.com/LibVNC/libvncserver/issues/291 Patch110: libvncserver-0.9.11-CVE-2019-20839.patch # https://github.com/LibVNC/libvncserver/issues/253 Patch111: libvncserver-0.9.11-CVE-2018-21247.patch # https://github.com/LibVNC/libvncserver/issues/275 Patch112: libvncserver-0.9.11-CVE-2020-14405.patch # https://github.com/LibVNC/libvncserver/pull/416 Patch113: libvncserver-0.9.11-CVE-2020-14397.patch # https://github.com/LibVNC/libvncserver/issues/409 Patch114: libvncserver-0.9.11-CVE-2020-25708.patch BuildRequires: autoconf BuildRequires: automake BuildRequires: libgcrypt-devel BuildRequires: libjpeg-devel BuildRequires: libtool BuildRequires: lzo-devel BuildRequires: lzo-minilzo BuildRequires: pkgconfig(gnutls) BuildRequires: pkgconfig(libcrypto) BuildRequires: pkgconfig(libpng) BuildRequires: pkgconfig(libssl) # Additional deps for --with-x11vnc, see https://bugzilla.redhat.com/show_bug.cgi?id=864947 BuildRequires: pkgconfig(avahi-client) BuildRequires: pkgconfig(ice) BuildRequires: pkgconfig(x11) BuildRequires: pkgconfig(xdamage) BuildRequires: pkgconfig(xext) BuildRequires: pkgconfig(xfixes) BuildRequires: pkgconfig(xi) BuildRequires: pkgconfig(xinerama) BuildRequires: pkgconfig(xrandr) BuildRequires: pkgconfig(xtst) # For %%check BuildRequires: xorg-x11-xauth BuildRequires: zlib-devel %description LibVNCServer makes writing a VNC server (or more correctly, a program exporting a frame-buffer via the Remote Frame Buffer protocol) easy. It hides the programmer from the tedious task of managing clients and compression schemata. %package devel Summary: Development files for %{name} Requires: %{name}%{?_isa} = %{version}-%{release} # libvncserver-config deps Requires: coreutils %description devel The %{name}-devel package contains libraries and header files for developing applications that use %{name}. %prep %autosetup -p1 -n %{name}-LibVNCServer-%{version} # Fix encoding for file in ChangeLog ; do mv ${file} ${file}.OLD && \ iconv -f ISO_8859-1 -t UTF8 ${file}.OLD > ${file} && \ touch --reference ${file}.OLD $file done # Needed by patch 1 (and to nuke rpath's) autoreconf -vif %build %configure \ --disable-silent-rules \ --disable-static \ --without-filetransfer \ --with-gcrypt \ --with-png \ --with-x11vnc # Hack to omit unused-direct-shlib-dependencies sed -i -e 's! -shared ! -Wl,--as-needed\0!g' libtool make %{?_smp_mflags} %install %make_install # Unpackaged files rm -fv %{buildroot}%{_bindir}/linuxvnc rm -fv %{buildroot}%{_libdir}/lib*.a rm -fv %{buildroot}%{_libdir}/lib*.la %check make -C test test ||: %post -p /sbin/ldconfig %postun -p /sbin/ldconfig %files %license COPYING %doc AUTHORS ChangeLog NEWS README TODO %{_libdir}/libvncclient.so.0* %{_libdir}/libvncserver.so.0* %files devel %{_bindir}/libvncserver-config %{_includedir}/rfb/ %{_libdir}/libvncclient.so %{_libdir}/libvncserver.so %{_libdir}/pkgconfig/libvncclient.pc %{_libdir}/pkgconfig/libvncserver.pc %changelog * Tue Nov 24 2020 Michael Catanzaro - 0.9.11-17 - Fix CVE-2020-25708 Resolves: #1898078 * Tue Nov 03 2020 Michael Catanzaro - 0.9.11-16 - Fix CVE-2019-20839 Resolves: #1851032 - Fix CVE-2018-21247 Resolves: #1852516 - Fix CVE-2020-14405 Resolves: #1860527 - Fix CVE-2020-14397 Resolves: #1861152 * Mon Jul 27 2020 Michael Catanzaro - 0.9.11-15 - Fix CVE-2017-18922 Resolves: #1852356 * Wed Mar 18 2020 Petr Pisar - 0.9.11-14 - Fix CVE-2019-15690 (an integer overflow in HandleCursorShape() in a client) (bug #1814343) * Thu Nov 28 2019 Jonas Ådahl - 0.9.11-13 - Manually apply new patch Resolves: #1684729 * Wed Nov 27 2019 Jonas Ådahl - 0.9.11-12 - Add API needed by gnome-remote-desktop to handle settings changes Resolves: #1684729 * Wed Nov 27 2019 Tomas Pelka - 0.9.11-11 - Enable gating through gnome-remote-desktop for now Resolves: #1765448 * Wed Nov 27 2019 Jonas Ådahl - 0.9.11-10 - Update TLS security type enablement patches Resolves: #1765448 * Thu Jan 10 2019 Petr Pisar - 0.9.11-9 - Fix CVE-2018-15127 (Heap out-of-bounds write in rfbserver.c:rfbProcessFileTransferReadBuffer()) (bug #1662997) * Fri Jul 13 2018 Fedora Release Engineering - 0.9.11-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Tue Jun 19 2018 Jonas Ådahl - 0.9.11-7 - Add API to enable implementing TLS security type * Mon Feb 26 2018 Petr Pisar - 0.9.11-6 - Fix CVE-2018-7225 (bug #1546860) * Wed Feb 07 2018 Fedora Release Engineering - 0.9.11-5.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Aug 03 2017 Fedora Release Engineering - 0.9.11-4.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering - 0.9.11-3.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild * Wed May 17 2017 Rex Dieter - 0.9.11-2.1 - revert soname bump for < f26 * Tue May 16 2017 Rex Dieter - 0.9.11-2 - libvncclient sets +SRP in priority string (#1449605) - libvncserver blocks gtk-vnc clients >= 0.7.0 (#1451321) * Tue Feb 14 2017 Rex Dieter - 0.9.11-1 - 0.9.11 (#1421948) * Fri Feb 10 2017 Fedora Release Engineering - 0.9.10-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_26_Mass_Rebuild * Thu Feb 18 2016 Than Ngo - 0.9.10-5 - fix conflict with max() macro with gcc6, which causes build failure in KDE/Qt like krfb * Thu Feb 04 2016 Fedora Release Engineering - 0.9.10-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_24_Mass_Rebuild * Thu Dec 17 2015 Simone Caronni - 0.9.10-3 - Update crypto policies patch. * Sat Dec 12 2015 Simone Caronni - 0.9.10-2 - Add patch for using system crypto policies (#1179318). * Fri Dec 11 2015 Simone Caronni - 0.9.10-1 - Update to official 0.9.10 release, update configure parameters and remove upstreamed patches. - Trim changelog. - Clean up SPEC file. - Add license macro. - Remove very old obsolete/provides on pacakge with camel case (LibVNCServer). * Wed Jun 17 2015 Fedora Release Engineering - 0.9.10-0.7.20140718git9453be42 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Thu Sep 25 2014 Rex Dieter 0.9.10-0.6.20140718git9453be42 - Security fixes (#1145878) ... - CVE-2014-6051 (#1144287) - CVE-2014-6052 (#1144288) - CVE-2014-6053 (#1144289) - CVE-2014-6054 (#1144291) - CVE-2014-6055 (#1144293) * Sun Aug 17 2014 Fedora Release Engineering - 0.9.10-0.5.20140718git9453be42 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Aug 03 2014 Rex Dieter 0.9.10-0.4.20140718git9453be42 - 20140718git9453be42 snapshot * Sun Aug 03 2014 Rex Dieter 0.9.10-0.3.20140405git646f844f - include krfb patches (upstream pull request #16) * Sat Jun 07 2014 Fedora Release Engineering - 0.9.10-0.2.20140405git646f844f - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue Apr 29 2014 Rex Dieter 0.9.10-0.1.20140405git646f844f - Update to the latest git commit 646f844 (#1092245) * Mon Mar 31 2014 Rex Dieter 0.9.9-11 - x11vnc crash when client connect (#972618) pull in some upstream commits that may help * Sat Dec 21 2013 Rex Dieter - 0.9.9-10 - include additional dependencies for x11vnc (#864947) - %%build: --disable-silent-rules - cleanup spec, drop support for old rpm (el5) * Sat Aug 03 2013 Fedora Release Engineering - 0.9.9-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Tue Jul 23 2013 Rex Dieter 0.9.9-8 - Automagic dependencies, explitictly build --with-gcrypt --with-png (#852660) * Thu Feb 14 2013 Rex Dieter 0.9.9-7 - pkgconfig love (#854111) * Thu Feb 14 2013 Fedora Release Engineering - 0.9.9-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jan 18 2013 Adam Tkac - 0.9.9-5 - rebuild due to "jpeg8-ABI" feature drop * Fri Dec 21 2012 Adam Tkac - 0.9.9-4 - rebuild against new libjpeg * Thu Jul 26 2012 Rex Dieter 0.9.9-3 - libvncserver fails to build in mock with selinux enabled (#843603) * Thu Jul 19 2012 Fedora Release Engineering - 0.9.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Mon May 07 2012 Rex Dieter 0.9.9-1 - 0.9.9