commit glib2 for openSUSE:Factory

Source-Sync Mon, 16 Jun 2025 02:19:18 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package glib2 for openSUSE:Factory checked 
in at 2025-06-16 11:11:52
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/glib2 (Old)
 and      /work/SRC/openSUSE:Factory/.glib2.new.19631 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "glib2"

Mon Jun 16 11:11:52 2025 rev:294 rq:1285782 version:2.84.3

Changes:
--------
--- /work/SRC/openSUSE:Factory/glib2/glib2.changes      2025-05-27 
18:51:31.248121576 +0200
+++ /work/SRC/openSUSE:Factory/.glib2.new.19631/glib2.changes   2025-06-16 
11:11:57.994023933 +0200
@@ -1,0 +2,7 @@
+Fri Jun 13 15:09:25 UTC 2025 - Dominique Leuenberger <dims...@opensuse.org>
+
+- Update to version 2.84.3:
+  + Bug fixed: gstring: Fix overflow check when expanding the
+    string (CVE-2025-6052, boo#1244596).
+
+-------------------------------------------------------------------

Old:
----
  glib-2.84.2.obscpio

New:
----
  glib-2.84.3.obscpio

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ glib2.spec ++++++
--- /var/tmp/diff_new_pack.5R8toX/_old  2025-06-16 11:11:58.918062114 +0200
+++ /var/tmp/diff_new_pack.5R8toX/_new  2025-06-16 11:11:58.922062280 +0200
@@ -37,7 +37,7 @@
 %define libgthread libgthread-%{libver}
 %define libgirepository libgirepository-%{libver}
 Name:           glib2%{psuffix}
-Version:        2.84.2
+Version:        2.84.3
 Release:        0
 Summary:        General-Purpose Utility Library
 License:        LGPL-2.1-or-later

++++++ _service ++++++
--- /var/tmp/diff_new_pack.5R8toX/_old  2025-06-16 11:11:58.994065255 +0200
+++ /var/tmp/diff_new_pack.5R8toX/_new  2025-06-16 11:11:58.998065420 +0200
@@ -3,7 +3,7 @@
   <service name="obs_scm" mode="manual">
     <param name="scm">git</param>
     <param name="url">https://gitlab.gnome.org/GNOME/glib.git</param>
-    <param name="revision">2.84.2</param>
+    <param name="revision">2.84.3</param>
     <param name="versionformat">@PARENT_TAG@+@TAG_OFFSET@</param>
     <param name="versionrewrite-pattern">(.*)\+0</param>
     <param name="versionrewrite-replacement">\1</param>

++++++ glib-2.84.2.obscpio -> glib-2.84.3.obscpio ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/glib-2.84.2/NEWS new/glib-2.84.3/NEWS
--- old/glib-2.84.2/NEWS        2025-05-20 18:22:25.000000000 +0200
+++ new/glib-2.84.3/NEWS        2025-06-13 13:55:59.000000000 +0200
@@ -1,3 +1,11 @@
+Overview of changes in GLib 2.84.3, 2025-06-13
+==============================================
+
+* Bugs fixed:
+  - !4656 Backport !4655 “gstring: Fix overflow check when expanding the 
string”
+    to glib-2-84
+
+
 Overview of changes in GLib 2.84.2, 2025-05-20
 ==============================================
 
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/glib-2.84.2/glib/gstring.c 
new/glib-2.84.3/glib/gstring.c
--- old/glib-2.84.2/glib/gstring.c      2025-05-20 18:22:25.000000000 +0200
+++ new/glib-2.84.3/glib/gstring.c      2025-06-13 13:55:59.000000000 +0200
@@ -68,10 +68,6 @@
 g_string_expand (GString *string,
                  gsize    len)
 {
-  /* Detect potential overflow */
-  if G_UNLIKELY ((G_MAXSIZE - string->len - 1) < len)
-    g_error ("adding %" G_GSIZE_FORMAT " to string would overflow", len);
-
   string->allocated_len = g_nearest_pow (string->len + len + 1);
   /* If the new size is bigger than G_MAXSIZE / 2, only allocate enough
    * memory for this string and don't over-allocate.
@@ -86,6 +82,10 @@
 g_string_maybe_expand (GString *string,
                        gsize    len)
 {
+  /* Detect potential overflow */
+  if G_UNLIKELY ((G_MAXSIZE - string->len - 1) < len)
+    g_error ("adding %" G_GSIZE_FORMAT " to string would overflow", len);
+
   if (G_UNLIKELY (string->len + len >= string->allocated_len))
     g_string_expand (string, len);
 }
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/glib-2.84.2/meson.build new/glib-2.84.3/meson.build
--- old/glib-2.84.2/meson.build 2025-05-20 18:22:25.000000000 +0200
+++ new/glib-2.84.3/meson.build 2025-06-13 13:55:59.000000000 +0200
@@ -1,5 +1,5 @@
 project('glib', 'c',
-  version : '2.84.2',
+  version : '2.84.3',
   # NOTE: See the policy in docs/meson-version.md before changing the Meson 
dependency
   meson_version : '>= 1.4.0',
   default_options : [

++++++ glib.obsinfo ++++++
--- /var/tmp/diff_new_pack.5R8toX/_old  2025-06-16 11:12:00.594131370 +0200
+++ /var/tmp/diff_new_pack.5R8toX/_new  2025-06-16 11:12:00.598131535 +0200
@@ -1,5 +1,5 @@
 name: glib
-version: 2.84.2
-mtime: 1747758145
-commit: 2371bee17d85318480b3ddeeab4f5107b4889ad7
+version: 2.84.3
+mtime: 1749815759
+commit: 78cd78d2988616d9af0e8f43e703717d092cd3ff

commit glib2 for openSUSE:Factory

Reply via email to