October 2012 - mingw - Fedora Mailing-Lists

by Kalev Lember

Summary of changes: d86fe78... Update to 2.34.1 (*) (*) This commit already existed in another branch; no separate mail sent

11 years, 6 months

1
0
0 / 0

[mingw-glib2] Update to 2.34.1

by Kalev Lember

commit d86fe7809fee6a5eb727aed56ab5496990a331e1 Author: Kalev Lember <kalevlember(a)gmail.com> Date: Sat Oct 20 11:54:57 2012 +0200 Update to 2.34.1 mingw-glib2.spec | 5 ++++- sources | 2 +- 2 files changed, 5 insertions(+), 2 deletions(-) --- diff --git a/mingw-glib2.spec b/mingw-glib2.spec index dd93dc2..038d5c7 100644 --- a/mingw-glib2.spec +++ b/mingw-glib2.spec @@ -1,7 +1,7 @@ %?mingw_package_header Name: mingw-glib2 -Version: 2.34.0 +Version: 2.34.1 Release: 1%{?dist} Summary: MinGW Windows GLib2 library @@ -270,6 +270,9 @@ find $RPM_BUILD_ROOT -name "*.la" -delete %changelog +* Sat Oct 20 2012 Kalev Lember <kalevlember(a)gmail.com> - 2.34.1-1 +- Update to 2.34.1 + * Fri Oct 5 2012 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 2.34.0-1 - Update to 2.34.0 diff --git a/sources b/sources index 3251010..17cdee8 100644 --- a/sources +++ b/sources @@ -1 +1 @@ -d80aef668f981b5dcf157633d13081c0 glib-2.34.0.tar.xz +ee779493b083be9348a841e0a51f1b27 glib-2.34.1.tar.xz

11 years, 6 months

1
0
0 / 0

File glib-2.34.1.tar.xz uploaded to lookaside cache by kalev

by Kalev Lember

A file has been added to the lookaside cache for mingw-glib2: ee779493b083be9348a841e0a51f1b27 glib-2.34.1.tar.xz

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #27 from Jon Ciesla <limburgher(a)gmail.com> --- Excellent, thank you! -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #26 from Erik van Pienbroek <erik-fedora(a)vanpienbroek.nl> --- Okay, the packages mingw-headers and mingw-crt now use a different source tarball which doesn't contain libiberty (and other unneeded files) any more. For mingw-w64-tools I'm currently waiting on an upstream developer to verify something, but once that's arranged I'll apply the change in that package too -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #25 from Erik van Pienbroek <erik-fedora(a)vanpienbroek.nl> --- That's correct, and I'm also one of the primary maintainers of those packages -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #24 from Jon Ciesla <limburgher(a)gmail.com> --- He's only proposing that for mingw-headers, mingw-crt and mingw-w64-tools, I believe. -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #23 from Jeff Law <law(a)redhat.com> --- You're not going to get as far as you might think. gcc, binutils and gdb rely heavily on libiberty and often rely on the newest bits in those libraries. What I'm saying is that those tools are in effect bound to the libiberty sources that are included in their releases. Before going down that path I strongly suggest you discuss it with the appropriate package maintainers. -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #22 from Erik van Pienbroek <erik-fedora(a)vanpienbroek.nl> --- Suits me, I'll strip the unused source code from these packages in the %prep phase -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

[Bug 849693] CVE-2012-3509 libiberty: integer overflow, leading to heap-buffer overflow by processing certain file headers via bfd binary

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=849693 --- Comment #21 from Jon Ciesla <limburgher(a)gmail.com> --- I'm of the opinion that if you rm -rf libiberty in setup, you can remove the provides. We really want to be 100% sure it's not affected. -- You are receiving this mail because: You are on the CC list for the bug.

11 years, 6 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

mingw October 2012