Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package flac for openSUSE:Factory checked in at 2022-03-02 18:20:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/flac (Old) and /work/SRC/openSUSE:Factory/.flac.new.1958 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "flac" Wed Mar 2 18:20:16 2022 rev:55 rq:958202 version:1.3.4 Changes: -------- --- /work/SRC/openSUSE:Factory/flac/flac.changes 2019-09-07 11:29:20.470464897 +0200 +++ /work/SRC/openSUSE:Factory/.flac.new.1958/flac.changes 2022-03-02 18:20:21.388654361 +0100 @@ -1,0 +2,19 @@ +Tue Mar 1 08:18:11 CET 2022 - ti...@suse.de + +- Fix the regression for audiofile, reverting the problematic change + 0001-Revert-libFLAC-stream_decoder.c-Use-current-position.patch + +------------------------------------------------------------------- +Tue Feb 22 07:20:01 UTC 2022 - Paolo Stivanin <i...@paolostivanin.com> + +- Update to release 1.3.4: + + General: + * Fix 12 decoder bugs found by oss-fuzz, including CVE-2020-0499 + * Fix encoder bug CVE-2021-0561 + * Integrate oss-fuzzers + * Seeking fixes + * Various fixes and improvements + + flac: + * Various fixes and improvements + +------------------------------------------------------------------- Old: ---- flac-1.3.3.tar.xz New: ---- 0001-Revert-libFLAC-stream_decoder.c-Use-current-position.patch flac-1.3.4.tar.xz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ flac.spec ++++++ --- /var/tmp/diff_new_pack.kW1QUv/_old 2022-03-02 18:20:22.036654384 +0100 +++ /var/tmp/diff_new_pack.kW1QUv/_new 2022-03-02 18:20:22.040654384 +0100 @@ -1,7 +1,7 @@ # # spec file for package flac # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -17,7 +17,7 @@ Name: flac -Version: 1.3.3 +Version: 1.3.4 Release: 0 Summary: Free Lossless Audio Codec License: BSD-3-Clause AND GPL-2.0-or-later AND GFDL-1.2-only @@ -29,6 +29,7 @@ Source: https://downloads.xiph.org/releases/flac/%{name}-%{version}.tar.xz Source2: baselibs.conf Patch0: flac-cflags.patch +Patch1: 0001-Revert-libFLAC-stream_decoder.c-Use-current-position.patch BuildRequires: autoconf >= 2.60 BuildRequires: automake >= 1.11 BuildRequires: gcc-c++ ++++++ 0001-Revert-libFLAC-stream_decoder.c-Use-current-position.patch ++++++ >From 2834dd4eb51a1847a424a3d7ea799b38a62487e9 Mon Sep 17 00:00:00 2001 From: Takashi Iwai <ti...@suse.de> Date: Tue, 1 Mar 2022 08:16:45 +0100 Subject: [PATCH] Revert "libFLAC/stream_decoder.c: Use current position as bound when seeking" This reverts commit 159cd6c41a6ec17b36d74043c45a3aa64de90d5e. --- src/libFLAC/stream_decoder.c | 17 +++-------------- 1 file changed, 3 insertions(+), 14 deletions(-) diff --git a/src/libFLAC/stream_decoder.c b/src/libFLAC/stream_decoder.c index 4380b486fd5f..0e7264809dbf 100644 --- a/src/libFLAC/stream_decoder.c +++ b/src/libFLAC/stream_decoder.c @@ -3067,26 +3067,15 @@ FLAC__bool seek_to_absolute_sample_(FLAC__StreamDecoder *decoder, FLAC__uint64 s /* * First, we set an upper and lower bound on where in the - * stream we will search. For now we take the current position - * as one bound and, depending on where the target position lies, - * the beginning of the first frame or the end of the stream as - * the other bound. + * stream we will search. For now we assume the worst case + * scenario, which is our best guess at the beginning of + * the first frame and end of the stream. */ lower_bound = first_frame_offset; lower_bound_sample = 0; upper_bound = stream_length; upper_bound_sample = total_samples > 0 ? total_samples : target_sample /*estimate it*/; - if(decoder->protected_->state == FLAC__STREAM_DECODER_READ_FRAME) { - if(target_sample < decoder->private_->samples_decoded) { - if(FLAC__stream_decoder_get_decode_position(decoder, &upper_bound)) - upper_bound_sample = decoder->private_->samples_decoded; - } else { - if(FLAC__stream_decoder_get_decode_position(decoder, &lower_bound)) - lower_bound_sample = decoder->private_->samples_decoded; - } - } - /* * Now we refine the bounds if we have a seektable with * suitable points. Note that according to the spec they -- 2.31.1 ++++++ flac-1.3.3.tar.xz -> flac-1.3.4.tar.xz ++++++ ++++ 69904 lines of diff (skipped)
