Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package openhtj2k for openSUSE:Factory checked in at 2026-04-28 11:59:40 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/openhtj2k (Old) and /work/SRC/openSUSE:Factory/.openhtj2k.new.11940 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "openhtj2k" Tue Apr 28 11:59:40 2026 rev:12 rq:1349707 version:0.18.5 Changes: -------- --- /work/SRC/openSUSE:Factory/openhtj2k/openhtj2k.changes 2026-04-25 21:37:51.334957487 +0200 +++ /work/SRC/openSUSE:Factory/.openhtj2k.new.11940/openhtj2k.changes 2026-04-28 12:03:25.015062334 +0200 @@ -1,0 +2,14 @@ +Tue Apr 28 07:26:10 UTC 2026 - Michael Vetter <[email protected]> + +- Update to 0.18.5: + * Fix heap out-of-bounds access in tile-part dispatch + * See https://github.com/osamu620/OpenHTJ2K/releases/tag/v0.18.5 + +------------------------------------------------------------------- +Tue Apr 28 07:25:35 UTC 2026 - Michael Vetter <[email protected]> + +- Update to 0.18.4: + * Fix heap buffer overflow vulnerability in PPM packet header parsing + * See https://github.com/osamu620/OpenHTJ2K/releases/tag/v0.18.4 + +------------------------------------------------------------------- Old: ---- v0.18.3.tar.gz New: ---- v0.18.5.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ openhtj2k.spec ++++++ --- /var/tmp/diff_new_pack.oArXLz/_old 2026-04-28 12:03:27.519166069 +0200 +++ /var/tmp/diff_new_pack.oArXLz/_new 2026-04-28 12:03:27.523166234 +0200 @@ -17,7 +17,7 @@ Name: openhtj2k -Version: 0.18.3 +Version: 0.18.5 Release: 0 Summary: An open source implementation of ITU-T Rec.814 | ISO 15444-15 (a.k.a. HTJ2K) License: BSD-3-Clause ++++++ v0.18.3.tar.gz -> v0.18.5.tar.gz ++++++ /work/SRC/openSUSE:Factory/openhtj2k/v0.18.3.tar.gz /work/SRC/openSUSE:Factory/.openhtj2k.new.11940/v0.18.5.tar.gz differ: char 135, line 1
