Hello community,
here is the log from the commit of package libqt5-qtbase for openSUSE:Factory
checked in at 2015-03-01 15:27:47
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/libqt5-qtbase (Old)
and /work/SRC/openSUSE:Factory/.libqt5-qtbase.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "libqt5-qtbase"
Changes:
--------
--- /work/SRC/openSUSE:Factory/libqt5-qtbase/libqt5-qtbase.changes
2015-02-20 12:43:01.000000000 +0100
+++ /work/SRC/openSUSE:Factory/.libqt5-qtbase.new/libqt5-qtbase.changes
2015-03-01 15:27:48.000000000 +0100
@@ -1,0 +2,110 @@
+Fri Feb 27 17:19:10 UTC 2015 - hrvoje.sen...@gmail.com
+
+- Added fix-a-division-by-zero-when-processing-malformed-BMP-files.patch,
+ CVE-2015-0295
+
+-------------------------------------------------------------------
+Tue Feb 24 16:10:10 UTC 2015 - hrvoje.sen...@gmail.com
+
+- Update to 5.4.1:
+ * Important Behavior Changes:
+ * Restored binary compatibility with Qt 5.3.2 on Windows when
+ using MSVC 2012 or MSVC 2013. This means that Qt 5.4.1 is no
+ longer binary compatible with Qt 5.4.0 when using either of
+ those compilers.
+ * [QTBUG-42594] OS X binary package: fixed incorrect linking
+ to libraries in /opt/local/lib
+ * Library:
+ * QtCore:
+ * [QTBUG-43893] Fixed memory leak in qSetMessagePattern
+ * [QTBUG-43513] QXmlStreamReader: Correctly parse XML
+ containing NUL bytes in the input stream
+ * [QTBUG-43352] QTemporaryDirectory: Properly clean up in
+ case of a failure
+ * [QTBUG-43827] Fixed regression in QSortFilterProxyModel
+ which crashed when sorting a tree model
+ * QtGui:
+ * [QTBUG-44273] Fixed misplacement of outlined text with
+ native text rendering
+ * [QTBUG-44147] Fixed VNC not working on some VNC servers
+ * [QTBUG-43850] Fixed crash with multi-threaded font usage
+ * [QTBUG-43850] Made the old harfbuzz fallback available
+ at runtime
+ * Improvements to the experimental high-dpi support
+ * [QTBUG-43318] Better resolving of GLES3 functions to
+ avoid issues when deploying on systems with GLES 2.0 only
+ * QtWidgets:
+ * [QTBUG-43830] Fixed crash in stylesheets when
+ styling QProgressBar
+ * [QTBUG-43663] QColorDialog: Don't lose focus while
+ color picking
+ * QtNetwork:
+ * [QTBUG-43793] Fixed disconnections of QSSLSocket after
+ starting encryption
+ * QtSql:
+ * [QTBUG-36211] qpsql: Added timezone support for
+ datetime fields.
+ * qodbc: Fixed converted string values on Microsoft SQL
+ Server 2012
+ * [QTBUG-43874] QSqlQuery: Fixed failure of multiple
+ execBatch() calls after a single prepare() call
+ * QtPrintSupport:
+ * [QTBUG-43124] Fixed QPrinter::{width,height} return values
+ * Platform Specific Changes:
+ * Linux/XCB:
+ * [QTBUG-43436] Fixed regression when drag and drop to
+ other applications
+ * [QTBUG-43809] Turned off font hinting when doing
+ high DPI scaling
+ * [QTBUG-43743] Fixed constantly resizing bigger window when
+ devicePixelRatio is greater than 1
+ * [QTBUG-43713] Fixed problems with multiple screens with
+ different device pixel ratios regarding window mapping
+ and font sizes.
+ * [QTBUG-43688] Fixed physical DPI and size for
+ rotated screens on X11
+ * [QTBUG-43049] Fixed grabKeyboard and grabMouse
+ * [QTBUG-36862] Now sends a leave event to the other window
+ when a popup shows which grabs the input
+ * [QTBUG-41590] Turned off subpixel gamma-correction on XCB
+ * Added support for SelectionClientClose in QXcbClipboard
+ * Fixed -nograb and -dograb arguments
+ * [QTBUG-43623] Fixed use after free
+ * [QTBUG-43436] Fixed regression in DnD. Make sure to preserve
+ the QDrag until all data has been received.
+ * Tools:
+ * configure & build system:
+ * configure will now reject invalid -no-feature-* options.
+ * pkg-config assisted libudev detection was fixed.
+ * [QTBUG-43302][Android] The Android style is included
+ when cross-building on Windows as well.
+ * [QTBUG-43205][Unix] Fixed build D-Bus headers cannot be found.
+ * qmake:
+ * [QTBUG-39690][Windows] Fixed file separators in 'make clean'.
+ * [QTBUG-40264][Unix] Fixed 'make distclean' for a dynamic
+ library target.
+ * [QTBUG-42678] 'make distclean' now removes .qmake.{stash|super}.
+ * [QTBUG-43026][VS2010+] Fixed compilation of .rc files.
+ * [QTBUG-43457][MSVC] Fixed QMAKE_TARGET.arch for
+ amd64_x86 x-build.
+ * INCLUDEPATH+=. is now unnecessary with all generators.
+ * For more details please see:
+ http://blog.qt.io/blog/2015/02/24/qt-5-4-1-released/
+- Drop merged or obsolete patches:
+ qmake-add-usr-include.diff, QTBUG41590.patch,
+ Handle-SelectionClientClose-in-QXcbClipboard.patch,
+ qimage_conversions.cpp-Fix-build-on-big-endian-syste.patch,
+ Fix-use-after-free-bug.patch, fix-drag-and-drop-regression.patch,
+ Fix-detection-of-GCC5.patch, Fix-typo-in-Qt5CoreMacroscmake.patch,
+ Fix-physical-DPI-and-size-for-rotated-screens-on-X11.patch,
+ X11-devicePixelRatio-screen-mapping-fix.patch,
+ Multi-screen-DPI-support-for-X11.patch and
+ xcb-Dont-return-0-from-QXcbKeyboard-possibleKeys.patch
+- Added Handle-SelectionWindowDestroy-in-QXcbClipboard.patch and
+ Call-ofono-nm-Registered-delayed-in-constructor-othe.patch from
+ upstrean
+- Make sure each lib requires equal version of other qtbase libs
+ it needs (added filtering for shlib-fixed-dependency to rpmlintrc
+ accordingly)
+
+-------------------------------------------------------------------
Old:
----
Fix-detection-of-GCC5.patch
Fix-physical-DPI-and-size-for-rotated-screens-on-X11.patch
Fix-typo-in-Qt5CoreMacroscmake.patch
Fix-use-after-free-bug.patch
Handle-SelectionClientClose-in-QXcbClipboard.patch
Multi-screen-DPI-support-for-X11.patch
QTBUG41590.patch
X11-devicePixelRatio-screen-mapping-fix.patch
fix-drag-and-drop-regression.patch
qimage_conversions.cpp-Fix-build-on-big-endian-syste.patch
qmake-add-usr-include.diff
qtbase-opensource-src-5.4.0.tar.xz
xcb-Dont-return-0-from-QXcbKeyboard-possibleKeys.patch
New:
----
Call-ofono-nm-Registered-delayed-in-constructor-othe.patch
Handle-SelectionWindowDestroy-in-QXcbClipboard.patch
fix-a-division-by-zero-when-processing-malformed-BMP-files.patch
qtbase-opensource-src-5.4.1.tar.xz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ libqt5-qtbase.spec ++++++
--- /var/tmp/diff_new_pack.3TOFof/_old 2015-03-01 15:27:52.000000000 +0100
+++ /var/tmp/diff_new_pack.3TOFof/_new 2015-03-01 15:27:52.000000000 +0100
@@ -26,15 +26,15 @@
%endif
Name: libqt5-qtbase
-Version: 5.4.0
+Version: 5.4.1
Release: 0
Summary: C++ Program Library, Core Components
License: GPL-3.0 or SUSE-LGPL-2.1-with-digia-exception-1.1
Group: System/Libraries
Url: http://qt.digia.com
%define base_name libqt5
-%define real_version 5.4.0
-%define so_version 5.4.0
+%define real_version 5.4.1
+%define so_version 5.4.1
%define tar_version qtbase-opensource-src-%{real_version}
Source: %{tar_version}.tar.xz
# to get mtime of file:
@@ -45,8 +45,6 @@
# patches 0-1000 are openSUSE and/or non-upstream(able) patches #
# PATCH-FIX-UPSTREAM libqt5-libtool-nodate.diff -- for ommiting date/time on
build
Patch0: libqt5-libtool-nodate.diff
-# PATCH-FIX-UPSTREAM qmake-add-usr-include.diff -- explicitly include
/usr/include path
-Patch1: qmake-add-usr-include.diff
# PATCH-FIX-UPSTREAM use-freetype-default.patch -- allow using lcd-default
filter regardless of how freetype2 library has been built (w/ & w/o subpixel)
Patch2: use-freetype-default.patch
# PATCH-FIX-SUSE libqt5-Fix-Gujarati-font.patch bnc#878292 fix broken Gujarati
font rendering
@@ -55,40 +53,24 @@
Patch4: protect-geometry-QTBUG-40584.patch
# Patch-FIX-SUSE libqt5-do-not-use-shm-if-display-name-doesnt-look-local.patch
-- bnc#888858
Patch5: libqt5-do-not-use-shm-if-display-name-doesnt-look-local.patch
-# PATCH-FIX-OPENSUSE QTBUG41590.patch --
https://bugreports.qt-project.org/browse/QTBUG-40971
https://bugreports.qt-project.org/browse/QTBUG-41590
-Patch6: QTBUG41590.patch
# PATCH-FIX-OPENSUSE make-qdbusxml2cpp-output-reproducible.patch --
https://codereview.qt-project.org/#/c/105210/1
Patch7: make-qdbusxml2cpp-output-reproducible.patch
# patches 1000-2000 and above from upstream 5.3 branch #
# patches 2000-3000 and above from upstream 5.4 branch #
-# PATCH-FIX-UPSTREAM Handle-SelectionClientClose-in-QXcbClipboard.patch --
kde#329174
-Patch2000: Handle-SelectionClientClose-in-QXcbClipboard.patch
-# PATCH-FIX-UPSTREAM qimage_conversions.cpp: Fix build on big endian systems
-Patch2001: qimage_conversions.cpp-Fix-build-on-big-endian-syste.patch
-# PATCH-FIX-UPSTREAM Fix-use-after-free-bug.patch
-Patch2002: Fix-use-after-free-bug.patch
-# PATCH-FIX-UPSTREAM fix-drag-and-drop-regression.patch
-Patch2003: fix-drag-and-drop-regression.patch
-# PATCH-FIX-UPSTREAM Fix-detection-of-GCC5.patch
-Patch2004: Fix-detection-of-GCC5.patch
-# PATCH-FIX-UPSTREAM Fix-typo-in-Qt5CoreMacroscmake.patch
-Patch2005: Fix-typo-in-Qt5CoreMacroscmake.patch
-# PATCH-FIX-UPSTREAM Fix-physical-DPI-and-size-for-rotated-screens-on-X11.patch
-Patch2006: Fix-physical-DPI-and-size-for-rotated-screens-on-X11.patch
-# PATCH-FIX-UPSTREAM X11-devicePixelRatio-screen-mapping-fix.patch
-Patch2007: X11-devicePixelRatio-screen-mapping-fix.patch
-# PATCH-FIX-UPSTREAM Multi-screen-DPI-support-for-X11.patch
-Patch2008: Multi-screen-DPI-support-for-X11.patch
-# PATCH-FIX-UPSTREAM xcb-Dont-return-0-from-QXcbKeyboard-possibleKeys.patch
-Patch2009: xcb-Dont-return-0-from-QXcbKeyboard-possibleKeys.patch
# PATCH-FIX-UPSTREAM QSystemTrayIcon-handle-submenus-correctly.patch
-Patch2010: QSystemTrayIcon-handle-submenus-correctly.patch
+Patch2000: QSystemTrayIcon-handle-submenus-correctly.patch
# PATCH-FIX-UPSTREAM Fix-Meta-shortcuts-on-XCB.patch
-Patch2011: Fix-Meta-shortcuts-on-XCB.patch
+Patch2001: Fix-Meta-shortcuts-on-XCB.patch
# PATCH-FIX-UPSTREAM Update-mouse-buttons-from-MotionNotify-events.patch
-Patch2012: Update-mouse-buttons-from-MotionNotify-events.patch
+Patch2002: Update-mouse-buttons-from-MotionNotify-events.patch
# PATCH-FIX-UPSTREAM Make-sure-theres-a-scene-before-using-it.patch
-Patch2013: Make-sure-theres-a-scene-before-using-it.patch
+Patch2003: Make-sure-theres-a-scene-before-using-it.patch
+# PATCH-FIX-UPSTREAM Handle-SelectionWindowDestroy-in-QXcbClipboard.patch
+Patch2004: Handle-SelectionWindowDestroy-in-QXcbClipboard.patch
+# PATCH-FIX-UPSTREAM Call-ofono-nm-Registered-delayed-in-constructor-othe.patch
+Patch2005: Call-ofono-nm-Registered-delayed-in-constructor-othe.patch
+# PATCH-FIX-UPSTREAM
fix-a-division-by-zero-when-processing-malformed-BMP-files.patch
+Patch2006:
fix-a-division-by-zero-when-processing-malformed-BMP-files.patch
BuildRequires: alsa-devel
BuildRequires: cups-devel
BuildRequires: gcc-c++
@@ -168,12 +150,10 @@
%prep
%setup -q -n qtbase-opensource-src-%{real_version}
%patch0 -p1
-%patch1 -p1
%patch2 -p1
%patch3 -p1
%patch4 -p1
%patch5 -p1
-%patch6 -p1
%patch7 -p0
%patch2000 -p1
%patch2001 -p1
@@ -182,13 +162,6 @@
%patch2004 -p1
%patch2005 -p1
%patch2006 -p1
-%patch2007 -p1
-%patch2008 -p1
-%patch2009 -p1
-%patch2010 -p1
-%patch2011 -p1
-%patch2012 -p1
-%patch2013 -p1
# be sure not to use them
rm -r src/3rdparty/{libjpeg,freetype,libpng,zlib}
@@ -259,6 +232,7 @@
%package -n libQt5Concurrent5
Summary: Qt 5 Concurrent Library
Group: Development/Libraries/X11
+Requires: libQt5Core5 = %{version}
%description -n libQt5Concurrent5
The Qt 5 Concurrent library.
@@ -275,6 +249,7 @@
%package -n libQt5DBus5
Summary: Qt 5 DBus Library
Group: Development/Libraries/X11
+Requires: libQt5Core5 = %{version}
%description -n libQt5DBus5
The Qt 5 DBus library.
@@ -302,6 +277,8 @@
%package -n libQt5Network5
Summary: Qt 5 Network Library
Group: Development/Libraries/X11
+Requires: libQt5Core5 = %{version}
+Requires: libQt5DBus5 = %{version}
%description -n libQt5Network5
The Qt 5 Network library.
@@ -328,6 +305,7 @@
%package -n libQt5OpenGL5
Summary: Qt 5 OpenGL Library
Group: Development/Libraries/X11
+Requires: libQt5Widgets5 = %{version}
%description -n libQt5OpenGL5
The Qt 5 OpenGL library.
@@ -364,6 +342,7 @@
%package -n libQt5PrintSupport5
Summary: Qt 5 Print Support Library
Group: Development/Libraries/X11
+Requires: libQt5Widgets5 = %{version}
%description -n libQt5PrintSupport5
The Qt 5 Print Support library.
@@ -394,6 +373,7 @@
%package -n libQt5Xml5
Summary: Qt 5 Xml Library
Group: Development/Libraries/X11
+Requires: libQt5Core5 = %{version}
%description -n libQt5Xml5
The Qt 5 Xml library.
@@ -410,6 +390,7 @@
%package -n libQt5Test5
Summary: Qt 5 Test Library
Group: Development/Libraries/X11
+Requires: libQt5Core5 = %{version}
%description -n libQt5Test5
The Qt 5 library for testing.
@@ -436,6 +417,7 @@
%package -n libQt5Widgets5
Summary: Qt 5 Widgets Library
Group: Development/Libraries/X11
+Requires: libQt5Gui5 = %{version}
%description -n libQt5Widgets5
The Qt 5 library to display widgets.
@@ -511,6 +493,8 @@
Summary: Qt 5 GUI related libraries
Group: Development/Libraries/C and C++
Recommends: libqt5-qtimageformats = %{version}
+Requires: libQt5Core5 = %{version}
+Requires: libQt5DBus5 = %{version}
%description -n libQt5Gui5
Qt 5 libraries which are depending on X11.
@@ -519,6 +503,7 @@
Summary: Qt 5 gtk2 plugin
Group: Development/Libraries/C and C++
Supplements: packageand(libQt5Gui5:libgtk-2_0-0)
+Requires: libQt5Gui5 = %{version}
%description platformtheme-gtk2
Qt 5 plugin for better integration with gtk2-based desktop enviroments.
@@ -556,6 +541,7 @@
Group: Development/Libraries/C and C++
Recommends: libqt5_sql_backend = %{version}
Suggests: libqt5-sql-sqlite
+Requires: libQt5Core5 = %{version}
%description -n libQt5Sql5
Qt 5 libraries which are used for connection with an SQL server. You
++++++ Call-ofono-nm-Registered-delayed-in-constructor-othe.patch ++++++
>From 8d6341a721d07e3cc30032bcc89f7e25cb00b9eb Mon Sep 17 00:00:00 2001
From: Albert Astals Cid <aa...@kde.org>
Date: Mon, 16 Feb 2015 22:53:02 +0100
Subject: [PATCH] Call [ofono|nm]Registered delayed in constructor otherwise
signals will be lost
If we call them just in the constructor all the signals they sent
out can't be connected and will be lost, particularly this means
the QNetworkConfigurationManager doesn't see my ethernet connection
and thus thinks i'm not online
Change-Id: I1480f76338d6ae4fbed676f9fa40ada18ea431ad
Reviewed-by: Alex Blasche <alexander.blas...@theqtcompany.com>
---
src/plugins/bearer/networkmanager/qnetworkmanagerengine.cpp | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/src/plugins/bearer/networkmanager/qnetworkmanagerengine.cpp
b/src/plugins/bearer/networkmanager/qnetworkmanagerengine.cpp
index f52b9d4..0378ac7 100644
--- a/src/plugins/bearer/networkmanager/qnetworkmanagerengine.cpp
+++ b/src/plugins/bearer/networkmanager/qnetworkmanagerengine.cpp
@@ -80,10 +80,10 @@ QNetworkManagerEngine::QNetworkManagerEngine(QObject
*parent)
this, SLOT(ofonoUnRegistered(QString)));
if
(QDBusConnection::systemBus().interface()->isServiceRegistered("org.ofono"))
- ofonoRegistered();
+ QMetaObject::invokeMethod(this, "ofonoRegistered",
Qt::QueuedConnection);
if
(QDBusConnection::systemBus().interface()->isServiceRegistered(NM_DBUS_SERVICE))
- nmRegistered();
+ QMetaObject::invokeMethod(this, "nmRegistered", Qt::QueuedConnection);
}
QNetworkManagerEngine::~QNetworkManagerEngine()
--
2.1.4
++++++ Handle-SelectionWindowDestroy-in-QXcbClipboard.patch ++++++
>From a95b2e88603ecd18d54c384869ff1281e569f556 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Martin=20Gr=C3=A4=C3=9Flin?= <mgraess...@kde.org>
Date: Fri, 6 Feb 2015 07:34:43 +0100
Subject: [PATCH] Handle SelectionWindowDestroy in QXcbClipboard
This change is related to 6a7ee92b3958e3a3ebc16be15f8bd34217ec7bd2
which added handling for SelectionClientClose. Further testing showed
that with e.g. Qt 4 applications the SelectionClientClose is not
emitted, but the selection window seems to be destroyed before the
client is destroyed.
Fur a destroyed selection window the same applies: the clipboard
content is no longer valid and we should emit the changed signal.
Change-Id: Id3778a28b9f5601bf2c6e0106981316e0efa6e7c
---
src/plugins/platforms/xcb/qxcbclipboard.cpp | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/src/plugins/platforms/xcb/qxcbclipboard.cpp
b/src/plugins/platforms/xcb/qxcbclipboard.cpp
index f56a29d..4b6caa9 100644
--- a/src/plugins/platforms/xcb/qxcbclipboard.cpp
+++ b/src/plugins/platforms/xcb/qxcbclipboard.cpp
@@ -742,7 +742,8 @@ void
QXcbClipboard::handleXFixesSelectionRequest(xcb_xfixes_selection_notify_eve
m_xClipboard[mode]->reset();
}
emitChanged(mode);
- } else if (event->subtype ==
XCB_XFIXES_SELECTION_EVENT_SELECTION_CLIENT_CLOSE)
+ } else if (event->subtype ==
XCB_XFIXES_SELECTION_EVENT_SELECTION_CLIENT_CLOSE ||
+ event->subtype ==
XCB_XFIXES_SELECTION_EVENT_SELECTION_WINDOW_DESTROY)
emitChanged(mode);
}
--
2.1.4
++++++ fix-a-division-by-zero-when-processing-malformed-BMP-files.patch ++++++
From: Richard J. Moore <r...@kde.org>
Date: Sat, 21 Feb 2015 17:43:21 +0000
Subject: Fix a division by zero when processing malformed BMP files.
---
Fix a division by zero when processing malformed BMP files.
This fixes a division by 0 when processing a maliciously crafted BMP
file. No impact beyond DoS.
Task-number: QTBUG-44547
Change-Id: Ifcded2c0aa712e90d23e6b3969af0ec3add53973
Reviewed-by: Thiago Macieira <thiago.macie...@intel.com>
Reviewed-by: Oswald Buddenhagen <oswald.buddenha...@theqtcompany.com>
---
--- a/src/gui/image/qbmphandler.cpp
+++ b/src/gui/image/qbmphandler.cpp
@@ -314,12 +314,20 @@
}
} else if (comp == BMP_BITFIELDS && (nbits == 16 || nbits == 32)) {
red_shift = calc_shift(red_mask);
+ if (((red_mask >> red_shift) + 1) == 0)
+ return false;
red_scale = 256 / ((red_mask >> red_shift) + 1);
green_shift = calc_shift(green_mask);
+ if (((green_mask >> green_shift) + 1) == 0)
+ return false;
green_scale = 256 / ((green_mask >> green_shift) + 1);
blue_shift = calc_shift(blue_mask);
+ if (((blue_mask >> blue_shift) + 1) == 0)
+ return false;
blue_scale = 256 / ((blue_mask >> blue_shift) + 1);
alpha_shift = calc_shift(alpha_mask);
+ if (((alpha_mask >> alpha_shift) + 1) == 0)
+ return false;
alpha_scale = 256 / ((alpha_mask >> alpha_shift) + 1);
} else if (comp == BMP_RGB && (nbits == 24 || nbits == 32)) {
blue_mask = 0x000000ff;
++++++ libqt5-qtbase-rpmlintrc ++++++
--- /var/tmp/diff_new_pack.3TOFof/_old 2015-03-01 15:27:52.000000000 +0100
+++ /var/tmp/diff_new_pack.3TOFof/_new 2015-03-01 15:27:52.000000000 +0100
@@ -1,2 +1,3 @@
addFilter("files-duplicated-waste .*")
-addFilter("files-duplicate .*")
\ No newline at end of file
+addFilter("files-duplicate .*")
+addFilter("shlib-fixed-dependency .*")
\ No newline at end of file
++++++ qtbase-opensource-src-5.4.0.tar.xz -> qtbase-opensource-src-5.4.1.tar.xz
++++++
/work/SRC/openSUSE:Factory/libqt5-qtbase/qtbase-opensource-src-5.4.0.tar.xz
/work/SRC/openSUSE:Factory/.libqt5-qtbase.new/qtbase-opensource-src-5.4.1.tar.xz
differ: char 27, line 1
--
To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org
For additional commands, e-mail: opensuse-commit+h...@opensuse.org
