Revisions of openexr
Ana Guerrero (anag+factory)
accepted
request 1146590
from
Petr Gajdos (pgajdos)
(revision 62)
- version update to 3.2.2 [bsc#1219498] * [CVE-2023-5841](https://takeonme.org/cves/CVE-2023-5841.html). Note that this bug is present in the C++ API (since v3.1.0), although it is in a routine that is predominantly used for development and testing. It is not likely to appear in production code. * OSS-fuzz [66491](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66491) Out-of-memory in openexr_exrcorecheck_fuzzer * OSS-fuzz [66489](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=66489) Null-dereference in `Imf_3_3::realloc_deepdata` - deleted patches - openexr-CVE-2023-5841.patch (upstreamed) - version update to 3.2.1 ## Version 3.2.0 (August 30, 2023) * Zip compression via ``libdeflate`` * New camdkit/camdkit-enabled standard attributes * Updated SO versioning policy * Python bindings & PyPI wheel * Miscellaneous improvements ## Version 3.2.1 (September 27, 2023) * Fix for linking statically against an external ``libdeflate`` * Fix a compile error with ``OPENEXR_VERSION_HEX`` * Fix various compiler warnings * Pkg-config generation is now on by default for all systems, including Windows - modified sources % baselibs.conf - added patches fix CVE-2023-5841 [bsc#1219498], heap-based buffer overflow in generic_unpack_deep() + openexr-CVE-2023-5841.patch
Ana Guerrero (anag+factory)
accepted
request 1108302
from
Factory Maintainer (factory-maintainer)
(revision 61)
Automatic submission by obs-autosubmit
Ana Guerrero (anag+factory)
accepted
request 1099246
from
Petr Gajdos (pgajdos)
(revision 60)
- Add patch to fix regression on non-SSE architectures https://github.com/AcademySoftwareFoundation/openexr/issues/1460: * 1488.patch - Also disable 'DWA[AB]Compression' test on aarch64 as the patch above fixes the issue for all targets, except aarch64 (forwarded request 1099245 from Guillaume_G)
Dominique Leuenberger (dimstar_suse)
accepted
request 1095758
from
Petr Gajdos (pgajdos)
(revision 59)
- version update to 3.1.9 * Patch release that addresses miscelleneous build and doc issues, as well as: . OSS-fuzz 59382 Heap-buffer-overflow in internal_huf_decompress
Dominique Leuenberger (dimstar_suse)
accepted
request 1094254
from
Petr Gajdos (pgajdos)
(revision 58)
- update to 3.1.8: * Support for DWA compression in OpenEXRCore * Fix OSS-fuzz 59070 Stack-buffer-overflow in DwaCompressor_readChannelRules (forwarded request 1094236 from dirkmueller)
Dominique Leuenberger (dimstar_suse)
accepted
request 1080129
from
Petr Gajdos (pgajdos)
(revision 57)
- update to 3.1.7: * Patch release that fixes a build regression on ARMv7, and fixes a build issue with zlib. (forwarded request 1079570 from dirkmueller)
Dominique Leuenberger (dimstar_suse)
accepted
request 1071520
from
Petr Gajdos (pgajdos)
(revision 56)
- update to 3.1.6: * NEON optimizations for ZIP reading * Enable fast Huffman & Huffman zig-zag transform for Arm Neon * Support relative and absolute libdir/includedir in pkg-config generation * Fix for reading memory mapped files with DWA compression * Enable SSE4 support on Windows * Fast huf decoder - Drop gcc13-fix.patch (forwarded request 1071437 from polslinux)
Dominique Leuenberger (dimstar_suse)
accepted
request 1069635
from
Petr Gajdos (pgajdos)
(revision 55)
- Add upstream fix gcc13-fix.patch. (forwarded request 1069628 from marxin)
Dominique Leuenberger (dimstar_suse)
accepted
request 1067985
from
Petr Gajdos (pgajdos)
(revision 54)
- fltk not needed (openexr-3.1.5/ASWF/tsc-meetings/2021-01-14.md)
Dominique Leuenberger (dimstar_suse)
accepted
request 1041642
from
Petr Gajdos (pgajdos)
(revision 53)
- skip testMultiTiledPartThreading for ppc64le [bsc#1205885] (forwarded request 1041641 from pgajdos)
Dominique Leuenberger (dimstar_suse)
accepted
request 1033911
from
Petr Gajdos (pgajdos)
(revision 52)
- Add _constraints: 6000 MiB memory (forwarded request 1033680 from frispete)
Dominique Leuenberger (dimstar_suse)
accepted
request 974400
from
Petr Gajdos (pgajdos)
(revision 51)
- update to 3.1.5: * Add backwards-compatibilty flags to the core library to match original behavior of the the c++ library. Fixes reading of certain files by the new core. * Fix build failures on MSVC14 and MSVC 2022 * Fix build failure on latest 64-bit Ubuntu * Documentation refers to primary branch as "main" * Update the CI workflow matrix to VFX-CY2022 * Update auto-fetch Imath version to v3.1.5 Specific OSS-fuzz issues: * OSS-fuzz [46309](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46309) Heap-buffer-overflow in Imf_3_1::memstream_read * OSS-fuzz [46083](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=46083) Out-of-memory in openexr_exrcheck_fuzzer * OSS-fuzz [45899](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=45899) Integer-overflow in internal_exr_compute_chunk_offset_size * OSS-fuzz [44084](https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44084) Out-of-memory in openexr_exrcheck_fuzzer (forwarded request 974389 from dirkmueller)
Dominique Leuenberger (dimstar_suse)
accepted
request 954468
from
Petr Gajdos (pgajdos)
(revision 50)
- update to 3.1.4 (bsc#1194333): * Several bug fixes to properly reject invalid input upon read * A check to enable SSE2 when building with Visual Studio * A check to fix building with VisualStudio on ARM64 * Update the automatically-downloaded version of Imath to v3.1.4 * Miscellaneous documentation improvements - drop openexr-CVE-2021-45942.patch (upstream) (forwarded request 954404 from dirkmueller)
Dominique Leuenberger (dimstar_suse)
accepted
request 944051
from
Petr Gajdos (pgajdos)
(revision 49)
- security update - added patches fix CVE-2021-45942 [bsc#1194333], heap-based buffer overflow in Imf_3_1:LineCompositeTask:execute + openexr-CVE-2021-45942.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 930805
from
Petr Gajdos (pgajdos)
(revision 48)
- version update to 3.1.3 Patch release with a change to default zip compression level: * Default zip compression level is now 4 (instead of 6), which in our tests improves compression times by 2x with only a tiny drop in compression ratio. * ``setDefaultZipCompression()`` and ``setDefaultDwaCompression()`` now set default compression levels for writing. * The Header how has ``zipCompressionLevel()`` and ``dwaCompressionLevel()`` to return the levels used for writing. Also, various bug fixes, build improvements, and documentation updates. In particular: * Fixes a build failure with Imath prior to v3.1 * Fixes a bug in detecting invalid chromaticity values - deleted patches - openexr-fix-armv7-2.patch (upstreamed) - openexr-fix-armv7.patch (upstreamed)
Dominique Leuenberger (dimstar_suse)
accepted
request 917761
from
Petr Gajdos (pgajdos)
(revision 47)
- Add patch to fix OpenEXRCore.testHUF on armv7: * openexr-fix-armv7.patch * openexr-fix-armv7-2.patch (forwarded request 917760 from Guillaume_G)
Dominique Leuenberger (dimstar_suse)
accepted
request 912439
from
Petr Gajdos (pgajdos)
(revision 46)
- devel package obsoletes and provides ilmbase-devel - run spec-cleaner - fix baselibs.conf - modified sources % baselibs.conf - version update to 3.1.1 3.1.1 * Patch release that fixes build failures on various systems, introduces CMake CMAKE_CROSSCOMPILING_EMULATOR support, and fixes a few other minor issues. 3.1 * The 3.1 release of OpenEXR introduces a new library, OpenEXRCore, which is the result of a significant re-thinking of how OpenEXR manages file I/O and provides access to image data. It begins to address long-standing scalability issues with multithreaded image reading and writing. 3.0.1 Major release with major build restructing, security improvements, and new features: * Restructuring: - The IlmBase/PyIlmBase submodules have been separated into the Imath project, now included by OpenEXR via a CMake submodule dependency, fetched automatically via CMake's FetchContent if necessary. - The library is now called ``libOpenEXR`` (instead of ``libIlmImf``). No header files have been renamed, they retain the ``Imf`` prefix.
Dominique Leuenberger (dimstar_suse)
accepted
request 909953
from
Petr Gajdos (pgajdos)
(revision 45)
- version update to 2.5.7 Patch release of 2.5 with security and build fixes: * OSS-fuzz 28051 Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer * OSS-fuzz 28155 Crash in Imf_2_5::PtrIStream::read * Fix broken symlink and pkg-config lib suffix for cmake debug builds - modified patches % 0001-Use-absolute-CMAKE_INSTALL_FULL_LIBDIR-for-libdir-in.patch (refreshed) - deleted patches - openexr-CVE-2021-3598.patch (upstreamed) - openexr-CVE-2021-3605.patch (upstreamed)
Dominique Leuenberger (dimstar_suse)
accepted
request 900381
from
Petr Gajdos (pgajdos)
(revision 44)
- security update - added patches fix CVE-2021-3605 [bsc#1187395], Heap buffer overflow in the rleUncompress function + openexr-CVE-2021-3605.patch - security update - added patches fix CVE-2021-3598 [bsc#1187310], Heap buffer overflow in Imf_3_1:CharPtrIO:readChars + openexr-CVE-2021-3598.patch - version update to 2.5.6 * [#1013](https://github.com/AcademySoftwareFoundation/openexr/pull/1013) Fixed regression in Imath::succf() and Imath::predf() when negative values are given
Richard Brown (RBrownSUSE)
accepted
request 882342
from
Petr Gajdos (pgajdos)
(revision 43)
- version update to 2.5.5 Patch release with various bug/sanitizer/security fixes, primarily related to reading corrupted input files, but also a fix for universal build support on macOS. - see CHANGES.md for details
Displaying revisions 1 - 20 of 62