September 2015 - mingw - Fedora Mailing-Lists

[Bug 1262373] New: freetype: Use of uninitialized memory

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1262373 Bug ID: 1262373 Summary: freetype: Use of uninitialized memory Product: Security Response Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team(a)redhat.com Reporter: amaris(a)redhat.com CC: behdad(a)fedoraproject.org, erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, fonts-bugs(a)lists.fedoraproject.org, kevin(a)tigcc.ticalc.org, lfarkas(a)lfarkas.org, mkasik(a)redhat.com, rjones(a)redhat.com Three use-of-uninitialized conditions were found in psobjs.c in ps_parser_load_field, in t42parse.c in 42_parse_font_matrix and in t1load.c in tt1_parse_font_matrix. Upstream bug: https://savannah.nongnu.org/bugs/?41309 Upstream patch: http://git.savannah.gnu.org/cgit/freetype/freetype2.git/commit/?id=8b281f... CVE request: http://seclists.org/oss-sec/2015/q3/537 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=1vpsmfjkAX&a=cc_unsubscribe

8 years, 6 months

1
13
0 / 0

Review swaps

by Sandro Mani

Hello To update mingw-freeimage to version 3.17.0 I'd need the following packages reviewed: - #1265854 - mingw-jxrlib - MinGW Windows JPEG XR library - # 1265853 - mingw-openjpeg2 - MinGW Windows openjpeg2 library Both straight forward, based on the native packages which I also maintain. Happy to review in exchange. Thanks Sandro

8 years, 7 months

1
0
0 / 0

[Bug 914790] Review Request: mingw-libcacard - CAC (Common Access Card) library

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=914790 Marc-Andre Lureau <marcandre.lureau(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|CLOSED |NEW Resolution|WONTFIX |--- Summary|Review Request: mingw-qemu |Review Request: |- QEMU is a FAST! processor |mingw-libcacard - CAC |emulator |(Common Access Card) | |library Keywords| |Reopened --- Comment #5 from Marc-Andre Lureau <marcandre.lureau(a)redhat.com> --- reopening with cacard, easier that way. nss & nspr still pre-required -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=1rk12ISVsI&a=cc_unsubscribe

8 years, 7 months

1
0
0 / 0

[Bug 914790] Review Request: mingw-qemu - QEMU is a FAST! processor emulator

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=914790 Marc-Andre Lureau <marcandre.lureau(a)redhat.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |WONTFIX Last Closed| |2015-09-23 09:50:41 -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=GgQ8Im0rNi&a=cc_unsubscribe

8 years, 7 months

1
0
0 / 0

[Bug 914790] Review Request: mingw-qemu - QEMU is a FAST! processor emulator

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=914790 --- Comment #4 from Marc-Andre Lureau <marcandre.lureau(a)redhat.com> --- closing, libcacard is now a seperate package. I will open mingw-libcacard instead shortly. -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=pgU9xmTlC4&a=cc_unsubscribe

8 years, 7 months

1
0
0 / 0

[Bug 1262382] New: mingw-freetype: freetype: Infinite loop in parse_encoding in t1load.c [epel-7]

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1262382 Bug ID: 1262382 Summary: mingw-freetype: freetype: Infinite loop in parse_encoding in t1load.c [epel-7] Product: Fedora EPEL Version: epel7 Component: mingw-freetype Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: rjones(a)redhat.com Reporter: amaris(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, lfarkas(a)lfarkas.org, rjones(a)redhat.com Blocks: 1262377 This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora EPEL. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. epel-7 tracking bug for mingw-freetype: see blocks bug list for full details of the security issue(s). This bug is never intended to be made public, please put any public notes in the blocked bugs. [bug automatically created by: add-tracking-bugs] Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1262377 [Bug 1262377] freetype: Infinite loop in parse_encoding in t1load.c -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=mqIZDHOxlZ&a=cc_unsubscribe

8 years, 7 months

1
3
0 / 0

[Bug 1262380] New: mingw-freetype: freetype: Infinite loop in parse_encoding in t1load.c [fedora-all]

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1262380 Bug ID: 1262380 Summary: mingw-freetype: freetype: Infinite loop in parse_encoding in t1load.c [fedora-all] Product: Fedora Version: 22 Component: mingw-freetype Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: rjones(a)redhat.com Reporter: amaris(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, lfarkas(a)lfarkas.org, rjones(a)redhat.com Blocks: 1262377 This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. [bug automatically created by: add-tracking-bugs] Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1262377 [Bug 1262377] freetype: Infinite loop in parse_encoding in t1load.c -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=lw3E0P3ACg&a=cc_unsubscribe

8 years, 7 months

1
3
0 / 0

[Bug 1262386] New: mingw-freetype: freetype: Use of uninitialized memory [epel-7]

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1262386 Bug ID: 1262386 Summary: mingw-freetype: freetype: Use of uninitialized memory [epel-7] Product: Fedora EPEL Version: epel7 Component: mingw-freetype Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: rjones(a)redhat.com Reporter: amaris(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, lfarkas(a)lfarkas.org, rjones(a)redhat.com Blocks: 1262373 This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora EPEL. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. epel-7 tracking bug for mingw-freetype: see blocks bug list for full details of the security issue(s). This bug is never intended to be made public, please put any public notes in the blocked bugs. [bug automatically created by: add-tracking-bugs] Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1262373 [Bug 1262373] freetype: Use of uninitialized memory -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=tmyI52xSWI&a=cc_unsubscribe

8 years, 7 months

1
3
0 / 0

[Bug 1262385] New: mingw-freetype: freetype: Use of uninitialized memory [fedora-all]

by Red Hat Bugzilla

https://bugzilla.redhat.com/show_bug.cgi?id=1262385 Bug ID: 1262385 Summary: mingw-freetype: freetype: Use of uninitialized memory [fedora-all] Product: Fedora Version: 22 Component: mingw-freetype Keywords: Security, SecurityTracking Severity: low Priority: low Assignee: rjones(a)redhat.com Reporter: amaris(a)redhat.com QA Contact: extras-qa(a)fedoraproject.org CC: erik-fedora(a)vanpienbroek.nl, fedora-mingw(a)lists.fedoraproject.org, lfarkas(a)lfarkas.org, rjones(a)redhat.com Blocks: 1262373 This is an automatically created tracking bug! It was created to ensure that one or more security vulnerabilities are fixed in affected versions of Fedora. For comments that are specific to the vulnerability please use bugs filed against the "Security Response" product referenced in the "Blocks" field. For more information see: http://fedoraproject.org/wiki/Security/TrackingBugs When submitting as an update, use the fedpkg template provided in the next comment(s). This will include the bug IDs of this tracking bug as well as the relevant top-level CVE bugs. Please also mention the CVE IDs being fixed in the RPM changelog and the fedpkg commit message. NOTE: this issue affects multiple supported versions of Fedora. While only one tracking bug has been filed, please correct all affected versions at the same time. If you need to fix the versions independent of each other, you may clone this bug as appropriate. [bug automatically created by: add-tracking-bugs] Referenced Bugs: https://bugzilla.redhat.com/show_bug.cgi?id=1262373 [Bug 1262373] freetype: Use of uninitialized memory -- You are receiving this mail because: You are on the CC list for the bug. Unsubscribe from this bug https://bugzilla.redhat.com/token.cgi?t=a23Ua6sxx2&a=cc_unsubscribe

8 years, 7 months

1
3
0 / 0

Version Discrepancy Report

by Michael Cronenworth

------------------------------------------ MinGW/native package version discrepancies ------------------------------------------ Fedora N Matches Found: 57 Fedora Rawhide Matches Found: 59 +---------------------------------------------+ | f23 | rawhide | owner | +-----------------------------------+---------------+---------------+-------------+ | atkmm | 2.23.1 | 2.23.1 | | | mingw-atkmm | 2.22.7 | 2.22.7 | sailer | +-----------------------------------+---------------+---------------+-------------+ | binutils | | 2.25.1 | | | mingw-binutils | | 2.25 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | boost | 1.58.0 | 1.58.0 | | | mingw-boost | 1.57.0 | 1.57.0 | sailer | +-----------------------------------+---------------+---------------+-------------+ | colord | 1.2.12 | 1.2.12 | | | mingw-colord | 1.2.9 | 1.2.9 | rhughes | +-----------------------------------+---------------+---------------+-------------+ | colorhug-client | 0.2.7 | 0.2.7 | | | mingw-colorhug-client | 0.2.6 | 0.2.6 | rhughes | +-----------------------------------+---------------+---------------+-------------+ | curl | 7.43.0 | 7.44.0 | | | mingw-curl | 7.42.0 | 7.42.0 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | cxxtest | 4.4 | 4.4 | | | mingw-cxxtest | 3.10.1 | 3.10.1 | astokes | +-----------------------------------+---------------+---------------+-------------+ | dbus | 1.10.0 | 1.10.0 | | | mingw-dbus | 1.8.16 | 1.8.16 | ivanromanov | +-----------------------------------+---------------+---------------+-------------+ | freeglut | 3.0.0 | 3.0.0 | | | mingw-freeglut | 2.8.1 | 2.8.1 | rjones | +-----------------------------------+---------------+---------------+-------------+ | freeimage | 3.10.0 | 3.10.0 | | | mingw-freeimage | 3.15.4 | 3.15.4 | smani | +-----------------------------------+---------------+---------------+-------------+ | freetype | 2.6.0 | 2.6.0 | | | mingw-freetype | 2.6 | 2.6 | rjones | +-----------------------------------+---------------+---------------+-------------+ | gcc | 5.1.1 | 5.1.1 | | | mingw-gcc | 5.2.0 | 5.2.0 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | gdb | 7.9.90.20150717 | 7.10 | | | mingw-gdb | 7.8.1 | 7.8.1 | kalev | +-----------------------------------+---------------+---------------+-------------+ | gettext | 0.19.5.1 | 0.19.5.1 | | | mingw-gettext | 0.19.4 | 0.19.4 | rjones | +-----------------------------------+---------------+---------------+-------------+ | giflib | 4.1.6 | 4.1.6 | | | mingw-giflib | 5.0.5 | 5.0.5 | smani | +-----------------------------------+---------------+---------------+-------------+ | glibmm24 | 2.45.3 | 2.45.3 | | | mingw-glibmm24 | 2.44.0 | 2.44.0 | sailer | +-----------------------------------+---------------+---------------+-------------+ | gnutls | 3.4.4 | 3.4.4 | | | mingw-gnutls | 3.4.3 | 3.4.3 | rjones | +-----------------------------------+---------------+---------------+-------------+ | gstreamer1 | 1.5.90 | 1.5.90 | | | mingw-gstreamer1 | 1.4.5 | 1.4.5 | pfor | +-----------------------------------+---------------+---------------+-------------+ | gstreamer1-plugins-bad-free | 1.5.90 | 1.5.90 | | | mingw-gstreamer1-plugins-bad-free | 1.4.4 | 1.4.4 | elmarco | +-----------------------------------+---------------+---------------+-------------+ | gstreamer1-plugins-base | 1.5.90 | 1.5.90 | | | mingw-gstreamer1-plugins-base | 1.4.5 | 1.4.5 | pfor | +-----------------------------------+---------------+---------------+-------------+ | gstreamer1-plugins-good | 1.5.90 | 1.5.90 | | | mingw-gstreamer1-plugins-good | 1.4.4 | 1.4.4 | elmarco | +-----------------------------------+---------------+---------------+-------------+ | gtkhtml3 | 4.8.5 | 4.8.5 | | | mingw-gtkhtml3 | 4.6.6 | 4.6.6 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | gtkmm30 | 3.17.4 | 3.17.4 | | | mingw-gtkmm30 | 3.16.0 | 3.16.0 | kalev | +-----------------------------------+---------------+---------------+-------------+ | gtksourceview3 | | 3.17.6 | | | mingw-gtksourceview3 | | 3.17.5 | kalev | +-----------------------------------+---------------+---------------+-------------+ | hunspell | 1.3.3 | 1.3.3 | | | mingw-hunspell | 1.3.2 | 1.3.2 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | icu | 54.1 | 54.1 | | | mingw-icu | 50.1.2 | 50.1.2 | pfor | +-----------------------------------+---------------+---------------+-------------+ | libffi | 3.1 | 3.1 | | | mingw-libffi | 3.0.13 | 3.0.13 | bonzini | +-----------------------------------+---------------+---------------+-------------+ | libgovirt | 0.3.3 | 0.3.3 | | | mingw-libgovirt | 0.3.2 | 0.3.2 | elmarco | +-----------------------------------+---------------+---------------+-------------+ | libgpg-error | 1.19 | 1.19 | | | mingw-libgpg-error | 1.12 | 1.12 | rjones | +-----------------------------------+---------------+---------------+-------------+ | libgsf | 1.14.33 | 1.14.33 | | | mingw-libgsf | 1.14.31 | 1.14.31 | greghellings | +-----------------------------------+---------------+---------------+-------------+ | libgusb | 0.2.6 | 0.2.6 | | | mingw-libgusb | 0.2.4 | 0.2.4 | rhughes | +-----------------------------------+---------------+---------------+-------------+ | libidn | 1.32 | 1.32 | | | mingw-libidn | 1.28 | 1.28 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | libjpeg-turbo | 1.4.1 | 1.4.1 | | | mingw-libjpeg-turbo | 1.3.1 | 1.3.1 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | libogg | 1.3.2 | 1.3.2 | | | mingw-libogg | 1.3.0 | 1.3.0 | kraxel | +-----------------------------------+---------------+---------------+-------------+ | libosinfo | 0.2.12 | 0.2.12 | | | mingw-libosinfo | 0.2.8 | 0.2.8 | berrange | +-----------------------------------+---------------+---------------+-------------+ | libpng | 1.6.17 | 1.6.18 | | | mingw-libpng | 1.6.10 | 1.6.10 | rjones | +-----------------------------------+---------------+---------------+-------------+ | librsvg2 | 2.40.10 | | | | mingw-librsvg2 | 2.40.9 | | rhughes | +-----------------------------------+---------------+---------------+-------------+ | libsigsegv | 2.10 | 2.10 | | | mingw-libsigsegv | 2.6 | 2.6 | bonzini | +-----------------------------------+---------------+---------------+-------------+ | libsoup | 2.51.90 | 2.51.90 | | | mingw-libsoup | 2.50.0 | 2.50.0 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | libssh2 | 1.6.0 | 1.6.0 | | | mingw-libssh2 | 1.4.3 | 1.4.3 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | libtiff | 4.0.4 | 4.0.4 | | | mingw-libtiff | 4.0.3 | 4.0.3 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | libvirt | 1.2.18 | 1.2.18 | | | mingw-libvirt | 1.2.16 | 1.2.16 | berrange | +-----------------------------------+---------------+---------------+-------------+ | libvirt-glib | 0.2.2 | 0.2.2 | | | mingw-libvirt-glib | 0.2.0 | 0.2.0 | berrange | +-----------------------------------+---------------+---------------+-------------+ | libwebp | 0.4.3 | 0.4.3 | | | mingw-libwebp | 0.4.2 | 0.4.2 | pfor | +-----------------------------------+---------------+---------------+-------------+ | llvm | 3.6.1 | 3.6.2 | | | mingw-llvm | 3.0 | 3.0 | brouhaha | +-----------------------------------+---------------+---------------+-------------+ | openjpeg | 1.5.1 | 1.5.1 | | | mingw-openjpeg | 1.5.2 | 1.5.2 | smani | +-----------------------------------+---------------+---------------+-------------+ | openssl | 1.0.2d | 1.0.2d | | | mingw-openssl | 1.0.2a | 1.0.2a | rjones | +-----------------------------------+---------------+---------------+-------------+ | orc | 0.4.24 | 0.4.24 | | | mingw-orc | 0.4.22 | 0.4.22 | elmarco | +-----------------------------------+---------------+---------------+-------------+ | pcre | 8.37 | 8.37 | | | mingw-pcre | 8.36 | 8.36 | astokes | +-----------------------------------+---------------+---------------+-------------+ | qpid-cpp | 0.32 | 0.32 | | | mingw-qpid-cpp | 0.14 | 0.14 | beekhof | +-----------------------------------+---------------+---------------+-------------+ | qt | 4.8.7 | 4.8.7 | | | mingw-qt | 4.8.6 | 4.8.6 | sailer | +-----------------------------------+---------------+---------------+-------------+ | readline | 6.3 | 6.3 | | | mingw-readline | 6.2 | 6.2 | rjones | +-----------------------------------+---------------+---------------+-------------+ | rest | 0.7.93 | 0.7.93 | | | mingw-rest | 0.7.92 | 0.7.92 | elmarco | +-----------------------------------+---------------+---------------+-------------+ | shapelib | 1.3.0f | 1.3.0f | | | mingw-shapelib | 1.3.0 | 1.3.0 | smani | +-----------------------------------+---------------+---------------+-------------+ | spice-protocol | | 0.12.9 | | | mingw-spice-protocol | | 0.12.8 | kraxel | +-----------------------------------+---------------+---------------+-------------+ | sqlite | 3.8.11 | 3.8.11 | | | mingw-sqlite | 3.8.4.3 | 3.8.4.3 | rjones | +-----------------------------------+---------------+---------------+-------------+ | tk | 8.6.4 | 8.6.4 | | | mingw-tk | 8.6.1 | 8.6.1 | roma | +-----------------------------------+---------------+---------------+-------------+ | usbredir | 0.7 | 0.7 | | | mingw-usbredir | 0.6 | 0.6 | elmarco | +-----------------------------------+---------------+---------------+-------------+ | webkitgtk | 2.4.9 | 2.4.9 | | | mingw-webkitgtk | 2.2.8 | 2.2.8 | epienbro | +-----------------------------------+---------------+---------------+-------------+ | webkitgtk3 | 2.4.9 | 2.4.9 | | | mingw-webkitgtk3 | 2.2.8 | 2.2.8 | kalev | +-----------------------------------+---------------+---------------+-------------+

8 years, 7 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

mingw September 2015