Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package afl for openSUSE:Factory checked in at 2026-03-13 21:17:41 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/afl (Old) and /work/SRC/openSUSE:Factory/.afl.new.8177 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "afl" Fri Mar 13 21:17:41 2026 rev:95 rq:1338665 version:4.40c Changes: -------- --- /work/SRC/openSUSE:Factory/afl/afl.changes 2025-12-30 12:01:32.895477732 +0100 +++ /work/SRC/openSUSE:Factory/.afl.new.8177/afl.changes 2026-03-13 21:21:46.781656188 +0100 @@ -1,0 +2,40 @@ +Fri Mar 13 09:40:11 UTC 2026 - Marcus Meissner <[email protected]> + +- updated to 4.40c + - afl-fuzz: + - FrameShift integrated and enabled by default, disable with + AFL_FRAMESHIFT_DISABLE and configure effort via + AFL_FRAMESHIFT_MAX_OVERHEAD. In extensive fuzzbench analysis at worst + (on average) it does nothing, at best it improves time to new coverage + and total coverage unlocked. https://arxiv.org/pdf/2507.05421 + Thanks to @hgarrereyn for the PR! + - Fixed several potential crashes when using IJON + - added `AFL_FORCE_FASTRESUME` which will ignore the saved hash of the + target - but note it will only work if the coverage map size did not + change + - prevent further executed instrumented programs by the fuzz target to + manipulate the coverage + - afl-cc: + - LLVM 22 support (they are again switching around include files ...) + - g_/curl_/xml_ string support for COMPCOV, thanks to @Prajwal-kp-18 + - optimized hidden CFG instrumentation (don't instrument vector selects) + - plugin optimization and fixes by @nbars, @kyakdan and @koltiradw + - marked GCC plugins as unmaintained. We need someone who know gimple and + is willing to fix the plugin issues, workarounds for gcc bugs and + overall improve the plugin. + - env `AFL_LLVM_DENY_EXEC` will abort any common exec calls + - afl-cmin: + - new implementation in C by @kcwu - it is currenlty not built though + because of maturity issues, e.g. does not work with Nyx + - afl-cmin.py was changing behaviour to hash the original filenames, + this was reverted. + - afl-cmin and afl-cmin.py honor `AFL_SHA1_FILENAMES` now + - afl-showmap: + - -f support added by Prajwal-kp-18 - thanks! + - faster stream mode by @nbars + - qemu_mode: + - fix when AFL_EXITPOINT is not set, which could prevent detecting crashes + - afl-plot: + - multiple AFL++ out directories now supported, thanks to @Jay-1409 ! + +------------------------------------------------------------------- Old: ---- v4.35c.tar.gz New: ---- v4.40c.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ afl.spec ++++++ --- /var/tmp/diff_new_pack.8u5amP/_old 2026-03-13 21:21:47.809698596 +0100 +++ /var/tmp/diff_new_pack.8u5amP/_new 2026-03-13 21:21:47.813698761 +0100 @@ -1,7 +1,7 @@ # # spec file for package afl # -# Copyright (c) 2025 SUSE LLC and contributors +# Copyright (c) 2026 SUSE LLC and contributors # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -29,7 +29,7 @@ %endif Name: afl -Version: 4.35c +Version: 4.40c Release: 0 Summary: American fuzzy lop is a security-oriented fuzzer #URL: https://lcamtuf.coredump.cx/afl/ @@ -83,7 +83,6 @@ %prep %setup -q -n AFLplusplus-%version %patch -P1 -p1 -sed -i 's|#!/usr/bin/env sh|#!/bin/sh|g' afl-cmin sed -i 's|#!/usr/bin/env bash|#!/bin/bash|g' afl-cmin.bash %build ++++++ v4.35c.tar.gz -> v4.40c.tar.gz ++++++ ++++ 19869 lines of diff (skipped)
