Version: 4.8.7-bp151.4.3.1
* Fri Sep 11 2020 Dirk Mueller <dmueller@suse.com>
- add CVE-2020-17507.patch (bsc#1176315, CVE-2020-17507):
* Fix buffer over-read in read_xbm_body
* Mon Mar 23 2020 Dirk Mueller <dmueller@suse.com>
- add CVE-2018-15518.patch (bsc#1118595, CVE-2018-15518):
* Fix "double free or corruption" in QXmlStreamReader
- add CVE-2018-19873.patch (bsc#1118596, CVE-2018-19873):
* Fix QBmpHandler segfault on malformed BMP file
- add CVE-2018-19869.patch (bsc#1118599, CVE-2018-19869):
* Fix crash when parsing malformed url reference
* Wed Jan 09 2019 rguenther@suse.com
- Add libqt4-toplevel-asm.patch to adhere to stricter
toplevel asm parsing, dropping volatile qualification that has no
effect. (boo#1121214)
Version: 4.8.7-bp150.2.3
* Mon Feb 26 2018 fabian@ritter-vogt.de
- Actually clean up openssl BuildReq: use pkgconfig(openssl)
* Wed Feb 21 2018 vcizek@suse.com
- Clean up openssl BuildRequires
* Thu Feb 15 2018 crrodriguez@opensuse.org
- Do not use xorg-x11-devel metapackage, instead use individual
libraries.
- libqt4-devel Requires have been adjusted to require all X11
libs which were used for build, none of them are actually
required but remain there in order not to break hundreds
of packages that may have counted on xorg-x11-devel being
pulled.
* Tue Dec 26 2017 fabian@ritter-vogt.de
- Change fix-build-icu59.patch to build qlocale_icu.cpp with
- std=c++11 to support ICU60 headers
* Wed Dec 06 2017 fabian@ritter-vogt.de
- Add proper patch headers to:
* no-ssl3.patch
* qt4-openssl-1.1.0pre-3.patch
- Remove patch, not needed:
* qt-everywhere-opensource-src-4.8.7-gcc7.patch
* Tue Dec 05 2017 ro@suse.de
- add patches from mageia to fix build with openssl-1.1
- add no-ssl3.patch
- add qt4-openssl-1.1.0pre-3.patch
- add qt-everywhere-opensource-src-4.8.7-openssl.patch
- add qt-everywhere-opensource-src-4.8.7-gcc7.patch
* Sun Sep 10 2017 dimstar@opensuse.org
- BuildRequire libnsl-devel on current TW and CODE15 targets. The
library has been deprecated in glibc and is now in an own
package.
* Mon Sep 04 2017 cornelis@solcon.nl
- Add fix-medium-font.diff (taken from ubuntu) to fix bolder font
in Qt4 apps (boo#956357)
* Thu Aug 24 2017 fvogt@suse.com
- Force building against openSSL 1.0 (boo#1042657)
- Do not build the MySQL plugin on TW, it would cause an openSSL
version conflict
- Adjust fix-build-icu59.patch to also work if built with c++11
support
* Wed May 10 2017 fabian@ritter-vogt.de
- Add fix-build-icu59.patch to fix building with ICU4C >= 59
- Invoke configure with sh to fix build on some older distros
* Fri Feb 10 2017 alarrosa@suse.com
- Add fix-moc-parsing-with-glibc-2.25.patch to fix moc parsing
system headers from glibc 2.25 correctly.
* Fri Jun 24 2016 lbeltrame@kde.org
- Add fix-gcc6-detection.diff to fix GCC6 detection (boo#986350)
* Thu Jun 02 2016 matwey.kornilov@gmail.com
- Enable libqt4-devel-32bit to fix boo#982826
* Thu Feb 11 2016 rguenther@suse.com
- Explicitely build with -std=gnu++98. [bnc#964458]
* Wed Feb 10 2016 alarrosa@suse.com
- Added 0001-Fix-exclusion-of-anonymous-ciphers.patch from upstream
to disable exp-adh and aecdh ciphers.
- Added disable-rc4-ciphers-bnc865241.diff to disable <128 bits and
RC4 based ciphers which are now considered insecure. This
makes konqueror pass the https://www.howsmyssl.com test (bnc#865241)
* Thu May 28 2015 dmueller@suse.com
- update to 4.8.7 (bsc#1039291):
* see http://download.qt.io/official_releases/qt/4.8/4.8.7/changes-4.8.7
- remove 0001-Don-t-crash-on-broken-GIF-images.patch,
0001-Don-t-leak-RENDER-Pictures-in-QPixmap-paintEngine.patch,
0001-Fix-DateTime-with-recent-versions-of-tzdata.patch,
0001-Fix-crash-when-deleting-top-level-windows-embedded-i.patch,
0001-Fixes-crash-in-gif-image-decoder.patch,
0001-Ignore-expired-certificate-during-certificate-valida.patch,
0001-Memory-and-file-descriptor-leak-in-QFontCache.patch,
0001-QDbus-Fix-a-b-comparison.patch,
0001-QDeclarativeTextEdit-fix-use-of-uninitialised-value.patch,
0001-QPdf-addImage-avoid-a-QImage-detach-when-it-s-in-an-.patch,
0001-QSslCertificate-blacklist-NIC-certificates-from-Indi.patch,
0002-Fixes-crash-in-bmp-and-ico-image-decoding.patch,
fix-a-division-by-zero.patch,
fix-detection-of-GCC5.patch,
fix-upload-corruptions-when-server-closes-connection.patch:
* upstreamed
* Fri May 22 2015 tittiatcoke@gmail.com
- Update patch fix-moc-from-choking-on-boost-headers.patch to
include an additiona boost header due to the upgrade to
Boost 1.58
* Thu May 07 2015 dmueller@suse.com
- add 0001-Fixes-crash-in-gif-image-decoder.patch,
0002-Fixes-crash-in-bmp-and-ico-image-decoding.patch
(bnc#927806, bnc#927807, bnc#927808,
CVE-2015-1858, CVE-2015-1859, CVE-2015-1860)
- add 0001-Don-t-leak-RENDER-Pictures-in-QPixmap-paintEngine.patch
- add 0001-Fix-DateTime-with-recent-versions-of-tzdata.patch
- add 0001-Fix-crash-when-deleting-top-level-windows-embedded-i.patch
- add 0001-Ignore-expired-certificate-during-certificate-valida.patch
- add 0001-Memory-and-file-descriptor-leak-in-QFontCache.patch
- add 0001-QDbus-Fix-a-b-comparison.patch
- add 0001-QDeclarativeTextEdit-fix-use-of-uninitialised-value.patch
- add 0001-QPdf-addImage-avoid-a-QImage-detach-when-it-s-in-an-.patch
- add 0001-QSslCertificate-blacklist-NIC-certificates-from-Indi.patch
* Wed May 06 2015 hrvoje.senjan@gmail.com
- Added fix-upload-corruptions-when-server-closes-connection.patch
(boo#929688)
* Mon Mar 09 2015 hrvoje.senjan@gmail.com
- Added fix-a-division-by-zero.patch (bnc#921999, CVE-2015-0295)