* Mon Sep 02 2019 pgajdos@suse.com
- security update
- added patches
CVE-2019-15142 [bsc#1146702]
+ djvulibre-CVE-2019-15142.patch
CVE-2019-15143 [bsc#1146569]
+ djvulibre-CVE-2019-15143.patch
CVE-2019-15144 [bsc#1146571]
+ djvulibre-CVE-2019-15144.patch
CVE-2019-15145 [bsc#1146572]
+ djvulibre-CVE-2019-15145.patch
do not segfault when libtiff encounters corrupted TIFF (upstream issue #295)
+ djvulibre-invalid-tiff.patch
* Mon May 15 2017 bwiedemann@suse.com
- Add reproducible.patch to make build fully reproducible
* Fri Feb 27 2015 mpluskal@suse.com
- Remove obsolete patches
* djvulibre-filepath.patch
* djvulibre-not-existing-icons.patch
- Update to 3.5.27
* simplified configuration scripts
* deadlock fixes
* miniexp under win32 uses tlsalloc instead of _thread vars (pb under xp)
- New in 3.5.26
* Thread safe miniexp
* Now using the standard autotools approach (thanks to Vincent Torri).
* New windows installer (thanks to Konstantin Kravtsov).
* Fixed Russian code page issues in windows.
* General speedup thanks to lock-free smart pointers.
* ddjvu can produce one file per page.
* djvused can now set the default page orientation.
* Bug fixes all around.
* Wed Mar 27 2013 pgajdos@suse.com
- updated to 3.5.25.3:
* minor fixes
* call autoreconf
* do not cp not existing prebuilt icons
* not-existing-icons.patch
* Sun Mar 25 2012 dimstar@opensuse.org
- Add pkg-config BuildRequires.
* Fri Mar 16 2012 pgajdos@suse.com
- updated to 3.5.25:
* Removed the deprecated djview3 code.
* Removed the deprecated cothreads code.
* Removed the unmaintained japanese man pages.
* Added ddjvu option to skip corrupted pages.
* Miniexp API is now reentrant.
* Bug fixes all around.
* Thu Mar 15 2012 dimstar@opensuse.org
- Add djvulibre-gcc47.patch: Fix build with gcc 4.7.
* Tue Mar 13 2012 pgajdos@suse.com
- fix build for factory (define $QTDIR)
* Sun Sep 18 2011 jengelh@medozas.de
- Remove redundant tags/sections from specfile
(cf. packaging guidelines)
- Use %_smp_mflags for parallel build
* Thu Jun 09 2011 pgajdos@novell.com
- Fix MMX code when using gcc-4.6 [bnc#696824]
* adjusted gcc46.patch
* Mon May 02 2011 idoenmez@novell.com
- Add djvulibre-3.5.23-gcc46.patch to fix compilation with gcc 4.6
* Mon Mar 07 2011 pgajdos@suse.cz
- updated to version 3.5.24:
* Set ddjvuapi_version to 20.
* Added ddjvuapi support for changing the white point.
* Added option "-u" in djvused.
* Added option "-o djvufile" in djvuxmlparser.
* Added support for <CHARACTER> tag in djvuxmlparser.
* Added print-xmp, set-xmp, remove-smp in djvused.
* Tue Nov 16 2010 pgajdos@suse.cz
- updated to version 3.5.23:
* Added ddjvu_document_create_by_filename_utf8
* Generate icons with rsvg rather than imagemagick.
* djvused: correctly outputs escape characters.
* djvumake: added options to generate foreground colors.
* Various bug fixes.
* Mon Jun 08 2009 mseben@suse.cz
- updated to version 3.5.22
* backported djview4 version of nsdejavu.so
* various bug fixes
- splitted to doc package
* Mon Aug 25 2008 lmichnovic@suse.cz
- update to version 3.5.21
* Speed improvement on multicore platforms
* Ddjvu now can produce pdf output.
- renamed lib to libdjvulibre21 according to Shared Library
Packaging Policy
* Mon Dec 10 2007 lmichnovic@suse.cz
- update to version 3.5.20
obsoletes semicolon.patch, strip.patch
* Csepdjvu handle gsdjvu hyperlink comments.
* Djvudigital therefore handles hyperlinks.
* Mon Sep 10 2007 lmichnovic@suse.cz
- moved desktop file to djview3 subpackage [#307485]
* Fri Jul 13 2007 lmichnovic@suse.cz
- added trailing semicolon in desktop file (semicolon.patch)
- splitted off djview3 (Qt3) to make possible have alternative
djview4 (Qt4) package
* Mon Jun 11 2007 lmichnovic@suse.cz
- fixed djvulibre-devel's Requires with %{version}; [#282833]
* Wed Jun 06 2007 lmichnovic@suse.cz
- renamed lib to libdjvulibre15 according to Shared Library
Packaging Policy
- splitted of devel package
- fixed calling ldconfig in post scripts
Version: 3.5.27-11.3.1
* Wed May 12 2021 pgajdos@suse.com
- security update
- added patches
fix CVE-2021-32490 [bsc#1185895], Out of bounds write in function DJVU:filter_bv() via crafted djvu file
+ djvulibre-CVE-2021-32490.patch
fix CVE-2021-32491 [bsc#1185900], Integer overflow in function render() in tools/ddjvu via crafted djvu file
+ djvulibre-CVE-2021-32491.patch
fix CVE-2021-32492 [bsc#1185904], Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file
+ djvulibre-CVE-2021-32492.patch
fix CVE-2021-32493 [bsc#1185905], Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file
+ djvulibre-CVE-2021-32493.patch
* Tue Sep 03 2019 jengelh@inai.de
- Trim conjecture, bias, and metadata repetitions from description.
- Trim descriptions in subpackages for length. (Main package keeps
the bigger one.)
- Use some more macros and limit fdupes to the /usr volume.
* Tue Jan 08 2019 stefan.bruens@rwth-aachen.de
- Remove rsvg-convert BuildRequires, just use the prebuilt pngs
from the source package.