Hello community, here is the log from the commit of package mozilla-nspr for openSUSE:Factory checked in at 2014-06-16 21:42:52 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/mozilla-nspr (Old) and /work/SRC/openSUSE:Factory/.mozilla-nspr.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "mozilla-nspr" Changes: -------- --- /work/SRC/openSUSE:Factory/mozilla-nspr/mozilla-nspr.changes 2014-05-13 20:48:01.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.mozilla-nspr.new/mozilla-nspr.changes 2014-06-16 21:42:54.000000000 +0200 @@ -1,0 +2,12 @@ +Tue Jun 10 09:59:12 UTC 2014 - w...@rosenauer.org + +- update to version 4.10.6 (bnc#881874) + * requirement for Firefox 30 + * PR_GetPhysicalMemorySize should release the mach_host_self() + Mach port when done with it (bmo#1009270) + * "Network address type not supported" error on the Hurd (bmo#1011861) + * Clang Static Analysis: useless declaration in NSPR (bmo#1003946) + * OOB write with sprintf and console functions (bmo#1018783) + (CVE-2014-1545) + +------------------------------------------------------------------- Old: ---- nspr-4.10.5.tar.gz New: ---- nspr-4.10.6.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ mozilla-nspr.spec ++++++ --- /var/tmp/diff_new_pack.IqTKdO/_old 2014-06-16 21:42:55.000000000 +0200 +++ /var/tmp/diff_new_pack.IqTKdO/_new 2014-06-16 21:42:55.000000000 +0200 @@ -18,7 +18,7 @@ Name: mozilla-nspr -Version: 4.10.5 +Version: 4.10.6 Release: 0 Summary: Netscape Portable Runtime License: MPL-2.0 ++++++ nspr-4.10.5.tar.gz -> nspr-4.10.6.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/.hg_archival.txt new/nspr-4.10.6/nspr/.hg_archival.txt --- old/nspr-4.10.5/nspr/.hg_archival.txt 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/.hg_archival.txt 2014-06-05 23:42:08.000000000 +0200 @@ -1,4 +1,4 @@ repo: a4b34919bf34db2ee22acbbc305693c8980b6dc6 -node: bf2ae3736392de89c5177e6df0fd0128f789cc34 +node: 476850821307d584874d040340f577dcde2aec38 branch: default -tag: NSPR_4_10_5_RTM +tag: NSPR_4_10_6_RTM diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/config/nsinstall.c new/nspr-4.10.6/nspr/config/nsinstall.c --- old/nspr-4.10.5/nspr/config/nsinstall.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/config/nsinstall.c 2014-06-05 23:42:08.000000000 +0200 @@ -208,7 +208,6 @@ todir = malloc(PATH_MAX + 1); todir = getcwd(todir, PATH_MAX); #endif - tdlen = strlen(todir); xchdir(cwd); tdlen = strlen(todir); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/configure new/nspr-4.10.6/nspr/configure --- old/nspr-4.10.5/nspr/configure 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/configure 2014-06-05 23:42:08.000000000 +0200 @@ -2487,7 +2487,7 @@ MOD_MAJOR_VERSION=4 MOD_MINOR_VERSION=10 -MOD_PATCH_VERSION=5 +MOD_PATCH_VERSION=6 NSPR_MODNAME=nspr20 _HAVE_PTHREADS= USE_PTHREADS= @@ -2903,6 +2903,8 @@ if test "${enable_debug_rtl+set}" = set; then : enableval=$enable_debug_rtl; if test "$enableval" = "yes"; then USE_DEBUG_RTL=1 + else + USE_DEBUG_RTL=0 fi fi @@ -5742,7 +5744,7 @@ if test -n "$MOZILLA_CLIENT" && test "$OS_ARCH" = "WINNT"; then OS_TARGET=WIN95 - if test -n "$MOZ_DEBUG"; then + if test -n "$MOZ_DEBUG" -a -z "$USE_DEBUG_RTL"; then USE_DEBUG_RTL=1 fi fi @@ -7183,7 +7185,7 @@ CFLAGS="$CFLAGS -Od" fi - if test -n "$USE_DEBUG_RTL"; then + if test "$USE_DEBUG_RTL" = 1; then CFLAGS="$CFLAGS -MDd" else CFLAGS="$CFLAGS -MD" @@ -7244,7 +7246,7 @@ CPU_ARCH_TAG=$CPU_ARCH fi - if test -n "$USE_DEBUG_RTL"; then + if test "$USE_DEBUG_RTL" = 1; then OBJDIR_SUFFIX=OBJD fi diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/configure.in new/nspr-4.10.6/nspr/configure.in --- old/nspr-4.10.5/nspr/configure.in 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/configure.in 2014-06-05 23:42:08.000000000 +0200 @@ -16,7 +16,7 @@ dnl ======================================================== MOD_MAJOR_VERSION=4 MOD_MINOR_VERSION=10 -MOD_PATCH_VERSION=5 +MOD_PATCH_VERSION=6 NSPR_MODNAME=nspr20 _HAVE_PTHREADS= USE_PTHREADS= @@ -384,6 +384,8 @@ [ --enable-debug-rtl Use the MSVC debug runtime library], [ if test "$enableval" = "yes"; then USE_DEBUG_RTL=1 + else + USE_DEBUG_RTL=0 fi ]) AC_ARG_ENABLE(n32, @@ -981,7 +983,7 @@ if test -n "$MOZILLA_CLIENT" && test "$OS_ARCH" = "WINNT"; then OS_TARGET=WIN95 - if test -n "$MOZ_DEBUG"; then + if test -n "$MOZ_DEBUG" -a -z "$USE_DEBUG_RTL"; then USE_DEBUG_RTL=1 fi fi @@ -2001,7 +2003,7 @@ CFLAGS="$CFLAGS -Od" fi - if test -n "$USE_DEBUG_RTL"; then + if test "$USE_DEBUG_RTL" = 1; then CFLAGS="$CFLAGS -MDd" else CFLAGS="$CFLAGS -MD" @@ -2057,7 +2059,7 @@ CPU_ARCH_TAG=$CPU_ARCH fi - if test -n "$USE_DEBUG_RTL"; then + if test "$USE_DEBUG_RTL" = 1; then OBJDIR_SUFFIX=OBJD fi diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/include/md/_linux.h new/nspr-4.10.6/nspr/pr/include/md/_linux.h --- old/nspr-4.10.5/nspr/pr/include/md/_linux.h 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/include/md/_linux.h 2014-06-05 23:42:08.000000000 +0200 @@ -80,7 +80,7 @@ #define NO_DLOPEN_NULL #endif -#ifdef __FreeBSD_kernel__ +#if defined(__FreeBSD_kernel__) || defined(__GNU__) #define _PR_HAVE_SOCKADDR_LEN #endif diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/include/prinit.h new/nspr-4.10.6/nspr/pr/include/prinit.h --- old/nspr-4.10.5/nspr/pr/include/prinit.h 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/include/prinit.h 2014-06-05 23:42:08.000000000 +0200 @@ -31,10 +31,10 @@ ** The format of the version string is ** "<major version>.<minor version>[.<patch level>] [<Beta>]" */ -#define PR_VERSION "4.10.5" +#define PR_VERSION "4.10.6" #define PR_VMAJOR 4 #define PR_VMINOR 10 -#define PR_VPATCH 5 +#define PR_VPATCH 6 #define PR_BETA PR_FALSE /* diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/include/prio.h new/nspr-4.10.6/nspr/pr/include/prio.h --- old/nspr-4.10.5/nspr/pr/include/prio.h 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/include/prio.h 2014-06-05 23:42:08.000000000 +0200 @@ -211,6 +211,8 @@ PR_SockOpt_NoDelay, /* don't delay send to coalesce packets */ PR_SockOpt_MaxSegment, /* maximum segment size */ PR_SockOpt_Broadcast, /* enable broadcast */ + PR_SockOpt_Reuseport, /* allow local address & port reuse on + * platforms that support it */ PR_SockOpt_Last } PRSockOption; @@ -234,6 +236,8 @@ PRUintn tos; /* IP type of service and precedence */ PRBool non_blocking; /* Non-blocking (network) I/O */ PRBool reuse_addr; /* Allow local address reuse */ + PRBool reuse_port; /* Allow local address & port reuse on + * platforms that support it */ PRBool keep_alive; /* Keep connections alive */ PRBool mcast_loopback; /* IP multicast loopback */ PRBool no_delay; /* Don't delay send to coalesce packets */ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/src/io/prmapopt.c new/nspr-4.10.6/nspr/pr/src/io/prmapopt.c --- old/nspr-4.10.5/nspr/pr/src/io/prmapopt.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/src/io/prmapopt.c 2014-06-05 23:42:08.000000000 +0200 @@ -85,6 +85,7 @@ case PR_SockOpt_Keepalive: case PR_SockOpt_NoDelay: case PR_SockOpt_Broadcast: + case PR_SockOpt_Reuseport: { #ifdef WIN32 /* Winsock */ BOOL value; @@ -236,6 +237,7 @@ case PR_SockOpt_Keepalive: case PR_SockOpt_NoDelay: case PR_SockOpt_Broadcast: + case PR_SockOpt_Reuseport: { #ifdef WIN32 /* Winsock */ BOOL value; @@ -412,10 +414,14 @@ #define TCP_MAXSEG _PR_NO_SUCH_SOCKOPT #endif -#ifndef SO_BROADCAST /* enable broadcast on udp sockets */ +#ifndef SO_BROADCAST /* enable broadcast on UDP sockets */ #define SO_BROADCAST _PR_NO_SUCH_SOCKOPT #endif +#ifndef SO_REUSEPORT /* allow local address & port reuse */ +#define SO_REUSEPORT _PR_NO_SUCH_SOCKOPT +#endif + PRStatus _PR_MapOptionName( PRSockOption optname, PRInt32 *level, PRInt32 *name) { @@ -424,14 +430,14 @@ 0, SO_LINGER, SO_REUSEADDR, SO_KEEPALIVE, SO_RCVBUF, SO_SNDBUF, IP_TTL, IP_TOS, IP_ADD_MEMBERSHIP, IP_DROP_MEMBERSHIP, IP_MULTICAST_IF, IP_MULTICAST_TTL, IP_MULTICAST_LOOP, - TCP_NODELAY, TCP_MAXSEG, SO_BROADCAST + TCP_NODELAY, TCP_MAXSEG, SO_BROADCAST, SO_REUSEPORT }; static PRInt32 socketLevels[PR_SockOpt_Last] = { 0, SOL_SOCKET, SOL_SOCKET, SOL_SOCKET, SOL_SOCKET, SOL_SOCKET, IPPROTO_IP, IPPROTO_IP, IPPROTO_IP, IPPROTO_IP, IPPROTO_IP, IPPROTO_IP, IPPROTO_IP, - IPPROTO_TCP, IPPROTO_TCP, SOL_SOCKET + IPPROTO_TCP, IPPROTO_TCP, SOL_SOCKET, SOL_SOCKET }; if ((optname < PR_SockOpt_Linger) diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/src/io/prprf.c new/nspr-4.10.6/nspr/pr/src/io/prprf.c --- old/nspr-4.10.5/nspr/pr/src/io/prprf.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/src/io/prprf.c 2014-06-05 23:42:08.000000000 +0200 @@ -18,6 +18,10 @@ #include "prlog.h" #include "prmem.h" +#ifdef _MSC_VER +#define snprintf _snprintf +#endif + /* ** WARNING: This code may *NOT* call PR_LOG (because PR_LOG calls it) */ @@ -304,7 +308,7 @@ ** Convert a double precision floating point number into its printable ** form. ** -** XXX stop using sprintf to convert floating point +** XXX stop using snprintf to convert floating point */ static int cvt_f(SprintfState *ss, double d, const char *fmt0, const char *fmt1) { @@ -312,15 +316,14 @@ char fout[300]; int amount = fmt1 - fmt0; - PR_ASSERT((amount > 0) && (amount < sizeof(fin))); - if (amount >= sizeof(fin)) { - /* Totally bogus % command to sprintf. Just ignore it */ + if (amount <= 0 || amount >= sizeof(fin)) { + /* Totally bogus % command to snprintf. Just ignore it */ return 0; } memcpy(fin, fmt0, amount); fin[amount] = 0; - /* Convert floating point using the native sprintf code */ + /* Convert floating point using the native snprintf code */ #ifdef DEBUG { const char *p = fin; @@ -330,14 +333,11 @@ } } #endif - sprintf(fout, fin, d); - - /* - ** This assert will catch overflow's of fout, when building with - ** debugging on. At least this way we can track down the evil piece - ** of calling code and fix it! - */ - PR_ASSERT(strlen(fout) < sizeof(fout)); + memset(fout, 0, sizeof(fout)); + snprintf(fout, sizeof(fout), fin, d); + /* Explicitly null-terminate fout because on Windows snprintf doesn't + * append a null-terminator if the buffer is too small. */ + fout[sizeof(fout) - 1] = '\0'; return (*ss->stuff)(ss, fout, strlen(fout)); } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/src/misc/prsystem.c new/nspr-4.10.6/nspr/pr/src/misc/prsystem.c --- old/nspr-4.10.5/nspr/pr/src/misc/prsystem.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/src/misc/prsystem.c 2014-06-05 23:42:08.000000000 +0200 @@ -33,6 +33,7 @@ #if defined(DARWIN) #include <mach/mach_init.h> #include <mach/mach_host.h> +#include <mach/mach_port.h> #endif #if defined(HPUX) @@ -297,13 +298,15 @@ #elif defined(DARWIN) + mach_port_t mach_host = mach_host_self(); struct host_basic_info hInfo; mach_msg_type_number_t count = HOST_BASIC_INFO_COUNT; - int result = host_info(mach_host_self(), + int result = host_info(mach_host, HOST_BASIC_INFO, (host_info_t) &hInfo, &count); + mach_port_deallocate(mach_task_self(), mach_host); if (result == KERN_SUCCESS) bytes = hInfo.max_mem; diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/src/pthreads/ptio.c new/nspr-4.10.6/nspr/pr/src/pthreads/ptio.c --- old/nspr-4.10.5/nspr/pr/src/pthreads/ptio.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/src/pthreads/ptio.c 2014-06-05 23:42:08.000000000 +0200 @@ -2854,6 +2854,7 @@ case PR_SockOpt_Keepalive: case PR_SockOpt_NoDelay: case PR_SockOpt_Broadcast: + case PR_SockOpt_Reuseport: { PRIntn value; length = sizeof(PRIntn); @@ -2973,6 +2974,7 @@ case PR_SockOpt_Keepalive: case PR_SockOpt_NoDelay: case PR_SockOpt_Broadcast: + case PR_SockOpt_Reuseport: { PRIntn value = (data->value.reuse_addr) ? 1 : 0; rv = setsockopt( diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/tests/Makefile.in new/nspr-4.10.6/nspr/pr/tests/Makefile.in --- old/nspr-4.10.5/nspr/pr/tests/Makefile.in 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/tests/Makefile.in 2014-06-05 23:42:08.000000000 +0200 @@ -107,6 +107,7 @@ poll_nm.c \ poll_to.c \ pollable.c \ + prfdbl.c \ prftest.c \ prftest1.c \ prftest2.c \ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/tests/prfdbl.c new/nspr-4.10.6/nspr/pr/tests/prfdbl.c --- old/nspr-4.10.5/nspr/pr/tests/prfdbl.c 1970-01-01 01:00:00.000000000 +0100 +++ new/nspr-4.10.6/nspr/pr/tests/prfdbl.c 2014-06-05 23:42:08.000000000 +0200 @@ -0,0 +1,29 @@ +/* This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ + +/* + * This is a simple test of the PR_fprintf() function for doubles. + */ + +#include "prprf.h" + +int main() +{ + double pi = 3.1415926; + double e = 2.71828; + double root2 = 1.414; + double zero = 0.0; + double nan = zero / zero; + + PR_fprintf(PR_STDOUT, "pi is %f.\n", pi); + PR_fprintf(PR_STDOUT, "e is %f.\n", e); + PR_fprintf(PR_STDOUT, "The square root of 2 is %f.\n", root2); + PR_fprintf(PR_STDOUT, "NaN is %f.\n", nan); + + PR_fprintf(PR_STDOUT, "pi is %301f.\n", pi); + PR_fprintf(PR_STDOUT, "e is %65416.123f.\n", e); + PR_fprintf(PR_STDOUT, "e is %0000000000000000000065416.123f.\n", e); + PR_fprintf(PR_STDOUT, "NaN is %1024.1f.\n", nan); + return 0; +} diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/tests/sockopt.c new/nspr-4.10.6/nspr/pr/tests/sockopt.c --- old/nspr-4.10.5/nspr/pr/tests/sockopt.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/tests/sockopt.c 2014-06-05 23:42:08.000000000 +0200 @@ -11,6 +11,10 @@ #include "plerror.h" +#ifdef XP_UNIX +#include <sys/socket.h> /* SO_REUSEPORT */ +#endif + static PRFileDesc *err = NULL; static PRBool failed = PR_FALSE; @@ -54,6 +58,7 @@ "PR_SockOpt_NoDelay", /* don't delay send to coalesce packets */ "PR_SockOpt_MaxSegment", /* maximum segment size */ "PR_SockOpt_Broadcast", /* Enable broadcast */ + "PR_SockOpt_Reuseport", /* allow local address & port reuse */ "PR_SockOpt_Last" }; @@ -130,6 +135,11 @@ data.value.broadcast = PR_TRUE; break; #endif +#ifdef SO_REUSEPORT + case PR_SockOpt_Reuseport: + data.value.reuse_port = PR_TRUE; + break; +#endif default: continue; } diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/nspr-4.10.5/nspr/pr/tests/vercheck.c new/nspr-4.10.6/nspr/pr/tests/vercheck.c --- old/nspr-4.10.5/nspr/pr/tests/vercheck.c 2014-05-01 20:27:29.000000000 +0200 +++ new/nspr-4.10.6/nspr/pr/tests/vercheck.c 2014-06-05 23:42:08.000000000 +0200 @@ -20,10 +20,10 @@ #include <stdlib.h> /* - * This release (4.10.5) is backward compatible with the + * This release (4.10.6) is backward compatible with the * 4.0.x, 4.1.x, 4.2.x, 4.3.x, 4.4.x, 4.5.x, 4.6.x, 4.7.x, - * 4.8.x, 4.9.x, 4.10, 4.10.1, 4.10.2, 4.10.3, and 4.10.4 - * releases. + * 4.8.x, 4.9.x, 4.10, 4.10.1, 4.10.2, 4.10.3, 4.10.4, and + * 4.10.5 releases. * It, of course, is compatible with itself. */ static char *compatible_version[] = { @@ -39,6 +39,7 @@ "4.9", "4.9.1", "4.9.2", "4.9.3", "4.9.4", "4.9.5", "4.9.6", "4.10", "4.10.1", "4.10.2", "4.10.3", "4.10.4", + "4.10.5", PR_VERSION }; @@ -54,7 +55,7 @@ "3.0", "3.0.1", "3.1", "3.1.1", "3.1.2", "3.1.3", "3.5", "3.5.1", - "4.10.6", + "4.10.7", "4.11", "4.11.1", "10.0", "11.1", "12.14.20" }; -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org