- version update to 3.2.2 [bsc#1219498]
  * [CVE-2023-5841](https://takeonme.org/cves/CVE-2023-5841.html).
    Note that this bug is present in the C++ API (since v3.1.0), although
    it is in a routine that is predominantly used for development and
    testing. It is not likely to appear in production code.
  * OSS-fuzz [66491](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66491)
    Out-of-memory in openexr_exrcorecheck_fuzzer
  * OSS-fuzz [66489](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66489)
    Null-dereference in `Imf_3_3::realloc_deepdata`
- deleted patches
  - openexr-CVE-2023-5841.patch (upstreamed)

- version update to 3.2.1
  ## Version 3.2.0 (August 30, 2023)
  * Zip compression via ``libdeflate``
  * New camdkit/camdkit-enabled standard attributes
  * Updated SO versioning policy
  * Python bindings & PyPI wheel
  * Miscellaneous improvements
  ## Version 3.2.1 (September 27, 2023)
  * Fix for linking statically against an external ``libdeflate``
  * Fix a compile error with ``OPENEXR_VERSION_HEX``
  * Fix various compiler warnings 
  * Pkg-config generation is now on by default for all systems, including Windows
- modified sources
  % baselibs.conf
- added patches
  fix CVE-2023-5841 [bsc#1219498], heap-based buffer overflow in generic_unpack_deep()
  + openexr-CVE-2023-5841.patch

• Files Changed
• Browse Source

Automatic submission by obs-autosubmit

• Files Changed
• Browse Source

- Add patch to fix regression on non-SSE architectures 
  https://github.com/AcademySoftwareFoundation/openexr/issues/1460:
  * 1488.patch
- Also disable 'DWA[AB]Compression' test on aarch64 as the patch
  above fixes the issue for all targets, except aarch64 (forwarded request 1099245 from Guillaume_G)

• Files Changed
• Browse Source

- version update to 3.1.9
  * Patch release that addresses miscelleneous build and doc issues, as well as:
    . OSS-fuzz 59382 Heap-buffer-overflow in internal_huf_decompress

• Files Changed
• Browse Source

- update to 3.1.8:
  * Support for DWA compression in OpenEXRCore
  * Fix OSS-fuzz 59070 Stack-buffer-overflow in
    DwaCompressor_readChannelRules (forwarded request 1094236 from dirkmueller)

• Files Changed
• Browse Source

- update to 3.1.7:
  * Patch release that fixes a build regression on ARMv7, and
    fixes a build issue with zlib. (forwarded request 1079570 from dirkmueller)

• Files Changed
• Browse Source

- update to 3.1.6:
  * NEON optimizations for ZIP reading
  * Enable fast Huffman & Huffman zig-zag transform for Arm Neon
  * Support relative and absolute libdir/includedir in pkg-config generation
  * Fix for reading memory mapped files with DWA compression
  * Enable SSE4 support on Windows
  * Fast huf decoder
- Drop gcc13-fix.patch (forwarded request 1071437 from polslinux)

• Files Changed
• Browse Source

- Add upstream fix gcc13-fix.patch. (forwarded request 1069628 from marxin)

• Files Changed
• Browse Source

- fltk not needed (openexr-3.1.5/ASWF/tsc-meetings/2021-01-14.md)

• Files Changed
• Browse Source

- skip testMultiTiledPartThreading for ppc64le [bsc#1205885] (forwarded request 1041641 from pgajdos)

• Files Changed
• Browse Source

- Add _constraints: 6000 MiB memory (forwarded request 1033680 from frispete)

• Files Changed
• Browse Source

- update to 3.1.5:
  * Add backwards-compatibilty flags to the core library to match
    original behavior of the the c++ library. Fixes reading of certain
    files by the new core.
  * Fix build failures on MSVC14 and MSVC 2022
  * Fix build failure on latest 64-bit Ubuntu 
  * Documentation refers to primary branch as "main"
  * Update the CI workflow matrix to VFX-CY2022
  * Update auto-fetch Imath version to v3.1.5
  Specific OSS-fuzz issues:
  * OSS-fuzz [46309](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46309)
  Heap-buffer-overflow in Imf_3_1::memstream_read
  * OSS-fuzz [46083](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46083)
  Out-of-memory in openexr_exrcheck_fuzzer
  * OSS-fuzz [45899](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45899)
  Integer-overflow in internal_exr_compute_chunk_offset_size
  * OSS-fuzz [44084](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44084)
  Out-of-memory in openexr_exrcheck_fuzzer (forwarded request 974389 from dirkmueller)

• Files Changed
• Browse Source

- update to 3.1.4 (bsc#1194333):
  * Several bug fixes to properly reject invalid input upon read 
  * A check to enable SSE2 when building with Visual Studio
  * A check to fix building with VisualStudio on ARM64
  * Update the automatically-downloaded version of Imath to v3.1.4
  * Miscellaneous documentation improvements
- drop openexr-CVE-2021-45942.patch (upstream) (forwarded request 954404 from dirkmueller)

• Files Changed
• Browse Source

- security update
- added patches
  fix CVE-2021-45942 [bsc#1194333], heap-based buffer overflow in Imf_3_1:LineCompositeTask:execute
  + openexr-CVE-2021-45942.patch

• Files Changed
• Browse Source

- version update to 3.1.3
  Patch release with a change to default zip compression level:
  * Default zip compression level is now 4 (instead of 6), which in our
    tests improves compression times by 2x with only a tiny drop in
    compression ratio.
  * ``setDefaultZipCompression()`` and ``setDefaultDwaCompression()``
    now set default compression levels for writing.
  * The Header how has ``zipCompressionLevel()`` and
    ``dwaCompressionLevel()`` to return the levels used for writing.
  Also, various bug fixes, build improvements, and documentation
  updates. In particular:
  * Fixes a build failure with Imath prior to v3.1
  * Fixes a bug in detecting invalid chromaticity values
- deleted patches
  - openexr-fix-armv7-2.patch (upstreamed)
  - openexr-fix-armv7.patch (upstreamed)

• Files Changed
• Browse Source

- Add patch to fix OpenEXRCore.testHUF on armv7:
  * openexr-fix-armv7.patch
  * openexr-fix-armv7-2.patch (forwarded request 917760 from Guillaume_G)

• Files Changed
• Browse Source

- devel package obsoletes and provides ilmbase-devel

- run spec-cleaner

- fix baselibs.conf 
- modified sources
  % baselibs.conf

- version update to 3.1.1
  3.1.1
  * Patch release that fixes build failures on various systems,
    introduces CMake CMAKE_CROSSCOMPILING_EMULATOR support, and
    fixes a few other minor issues.
  3.1
  * The 3.1 release of OpenEXR introduces a new library, OpenEXRCore,
    which is the result of a significant re-thinking of how OpenEXR
    manages file I/O and provides access to image data. It begins
    to address long-standing scalability issues with multithreaded
    image reading and writing.
  3.0.1
  Major release with major build restructing, security improvements, and
  new features:
  * Restructuring:
    - The IlmBase/PyIlmBase submodules have been separated into the
      Imath project, now included by OpenEXR via a CMake submodule
      dependency, fetched automatically via CMake's FetchContent if
      necessary.
    - The library is now called ``libOpenEXR`` (instead of
      ``libIlmImf``).  No header files have been renamed, they retain
      the ``Imf`` prefix.

• Files Changed
• Browse Source

- version update to 2.5.7
  Patch release of 2.5 with security and build fixes:
  * OSS-fuzz 28051 Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer
  * OSS-fuzz 28155 Crash in Imf_2_5::PtrIStream::read
  * Fix broken symlink and pkg-config lib suffix for cmake debug builds
- modified patches
  % 0001-Use-absolute-CMAKE_INSTALL_FULL_LIBDIR-for-libdir-in.patch (refreshed)
- deleted patches
  - openexr-CVE-2021-3598.patch (upstreamed)
  - openexr-CVE-2021-3605.patch (upstreamed)

• Files Changed
• Browse Source

- security update
- added patches
  fix CVE-2021-3605 [bsc#1187395], Heap buffer overflow in the rleUncompress function
  + openexr-CVE-2021-3605.patch

- security update
- added patches
  fix CVE-2021-3598 [bsc#1187310], Heap buffer overflow in Imf_3_1:CharPtrIO:readChars
  + openexr-CVE-2021-3598.patch

- version update to 2.5.6
  * [#1013](https://github.com/AcademySoftwareFoundation/openexr/pull/1013)
  Fixed regression in Imath::succf() and Imath::predf() when negative values are given

• Files Changed
• Browse Source

- version update to 2.5.5
  Patch release with various bug/sanitizer/security fixes, primarily
  related to reading corrupted input files, but also a fix for universal
  build support on macOS.
- see CHANGES.md for details

• Files Changed
• Browse Source