AArch64 | |
ppc64le | |
s390x | |
x86-64 |
- security update - added patches fix CVE-2021-3500 [bsc#1186253], Stack overflow in function DJVU:DjVuDocument:get_djvu_file() via crafted djvu file + djvulibre-CVE-2021-3500.patch
- security update - added patches fix CVE-2021-32490 [bsc#1185895], Out of bounds write in function DJVU:filter_bv() via crafted djvu file + djvulibre-CVE-2021-32490.patch fix CVE-2021-32491 [bsc#1185900], Integer overflow in function render() in tools/ddjvu via crafted djvu file + djvulibre-CVE-2021-32491.patch fix CVE-2021-32492 [bsc#1185904], Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file + djvulibre-CVE-2021-32492.patch fix CVE-2021-32493 [bsc#1185905], Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file + djvulibre-CVE-2021-32493.patch
- Trim conjecture, bias, and metadata repetitions from description. - Trim descriptions in subpackages for length. (Main package keeps the bigger one.) - Use some more macros and limit fdupes to the /usr volume.
- Remove rsvg-convert BuildRequires, just use the prebuilt pngs from the source package.
- security update extend CVE-2021-3630 fix [bsc#1187869#c14] - modified patches % djvulibre-CVE-2021-3630.patch
- security update - added patches fix CVE-2021-3630 [bsc#1187869], out-of-bounds write in DJVU:DjVuTXT:decode() in DjVuText.cpp + djvulibre-CVE-2021-3630.patch