commit jpegoptim for openSUSE:Factory

Source-Sync Tue, 28 Mar 2023 08:49:28 -0700

Script 'mail_helper' called by obssrc
Hello community,

here is the log from the commit of package jpegoptim for openSUSE:Factory 
checked in at 2023-03-28 17:49:05
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/jpegoptim (Old)
 and      /work/SRC/openSUSE:Factory/.jpegoptim.new.31432 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++


Package is "jpegoptim"

Tue Mar 28 17:49:05 2023 rev:8 rq:1074758 version:1.5.3

Changes:
--------
--- /work/SRC/openSUSE:Factory/jpegoptim/jpegoptim.changes      2023-03-02 
23:04:36.204183606 +0100
+++ /work/SRC/openSUSE:Factory/.jpegoptim.new.31432/jpegoptim.changes   
2023-03-28 17:49:13.574934594 +0200
@@ -1,0 +2,7 @@
+Mon Mar 27 13:35:36 UTC 2023 - Dirk MÃ¼ller <dmuel...@suse.com>
+
+- update to 1.5.3:
+  * Fix potential heap-buffer-overflor (read) when using
+    stdin/stdout and processing corrupt JPEG
+
+-------------------------------------------------------------------

Old:
----
  jpegoptim-1.5.2.tar.gz
  jpegoptim-1.5.2.tar.gz.asc

New:
----
  jpegoptim-1.5.3.tar.gz
  jpegoptim-1.5.3.tar.gz.asc

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ jpegoptim.spec ++++++
--- /var/tmp/diff_new_pack.n5uqK0/_old  2023-03-28 17:49:14.070936988 +0200
+++ /var/tmp/diff_new_pack.n5uqK0/_new  2023-03-28 17:49:14.074937007 +0200
@@ -17,7 +17,7 @@
 
 
 Name:           jpegoptim
-Version:        1.5.2
+Version:        1.5.3
 Release:        0
 Summary:        Utility for Optimizing JPEG Files
 License:        GPL-2.0-or-later

++++++ jpegoptim-1.5.2.tar.gz -> jpegoptim-1.5.3.tar.gz ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/jpegoptim-1.5.2/Makefile.in 
new/jpegoptim-1.5.3/Makefile.in
--- old/jpegoptim-1.5.2/Makefile.in     2023-02-11 03:00:41.000000000 +0100
+++ new/jpegoptim-1.5.3/Makefile.in     2023-03-25 04:02:50.000000000 +0100
@@ -2,7 +2,7 @@
 # Makefile for jpegoptim
 #
 #
-Version = 1.5.2
+Version = 1.5.3
 PKGNAME = jpegoptim
 
 SHELL = /bin/sh
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/jpegoptim-1.5.2/README new/jpegoptim-1.5.3/README
--- old/jpegoptim-1.5.2/README  2023-02-11 03:00:41.000000000 +0100
+++ new/jpegoptim-1.5.3/README  2023-03-25 04:02:50.000000000 +0100
@@ -1,5 +1,5 @@
 
-Jpegoptim v1.5.2 - Copyright (C)  Timo Kokkonen, 1996-2023. All Rights 
Reserved.
+Jpegoptim v1.5.3 - Copyright (C)  Timo Kokkonen, 1996-2023. All Rights 
Reserved.
 
 
 REQUIREMENTS
@@ -18,8 +18,8 @@
        tar file, make necessary changes to the Makefile,  and then
         compile the program. You may wanna do something like this:
 
-               tar xzvf jpegoptim-1.5.2.tar.gz
-               cd jpegoptim-1.5.2
+               tar xzvf jpegoptim-1.5.3.tar.gz
+               cd jpegoptim-1.5.3
                ./configure
                make
                make strip
@@ -27,6 +27,8 @@
 
 
 HISTORY
+       v1.5.3 - fix potential heap-buffer-overflor (read) when using
+                stdin/stdout and processing corrupt JPEG
         v1.5.2 - add support for reading list of files to process from a file
                 (--files-from) or from standard input (--files-stdin),
                 improved JPEG marker reporting,
@@ -133,4 +135,4 @@
 
 
 Timo <t...@iki.fi>
-10-Feb-2023
+24-Mar-2023
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/jpegoptim-1.5.2/jpegoptim.c 
new/jpegoptim-1.5.3/jpegoptim.c
--- old/jpegoptim-1.5.2/jpegoptim.c     2023-02-11 03:00:41.000000000 +0100
+++ new/jpegoptim-1.5.3/jpegoptim.c     2023-03-25 04:02:50.000000000 +0100
@@ -64,7 +64,7 @@
 #include "jpegoptim.h"
 
 
-#define VERSION "1.5.2"
+#define VERSION "1.5.3"
 #define COPYRIGHT  "Copyright (C) 1996-2023, Timo Kokkonen"
 
 #if HAVE_WAIT && HAVE_FORK
@@ -1090,7 +1090,7 @@
                        fprintf(log_fh,csv ? "skipped\n" : "skipped.\n");
                if (stdout_mode) {
                        set_filemode_binary(stdout);
-                       if (fwrite(inbuffer,insize,1,stdout) != 1)
+                       if (fwrite(inbuffer, inbufferused, 1, stdout) != 1)
                                fatal("%s, write failed to stdout",
                                        (stdin_mode ? "stdin" : filename));
                }
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' 
'--exclude=.svnignore' old/jpegoptim-1.5.2/redhat/jpegoptim.spec 
new/jpegoptim-1.5.3/redhat/jpegoptim.spec
--- old/jpegoptim-1.5.2/redhat/jpegoptim.spec   2023-02-11 03:00:41.000000000 
+0100
+++ new/jpegoptim-1.5.3/redhat/jpegoptim.spec   2023-03-25 04:02:50.000000000 
+0100
@@ -1,6 +1,6 @@
 Summary: Utility for optimizing/compressing JPEG files.
 Name: jpegoptim
-Version: 1.5.2
+Version: 1.5.3
 Release: 1
 License: GPL
 Group: Applications/Multimedia

commit jpegoptim for openSUSE:Factory

Reply via email to