- Wed Dec 26 2018 kekepower <kekepower> 1.3.31-1.mga6
+ Revision: 1345019
- Update to version 1.3.31 to fix several security issues (mga#23157)
- Rediffed Patch1
- Update to version 1.3.30
- Fixes CVE-2016-2317 (mga#23157)
- Update to version 1.3.29
- Fixes several security issues (mga#22403)
- Update to version 1.3.28 (mga#22403)
- Security fix: BMP: Fix non-terminal loop due to unexpected bit-field mask value (DOS opportunity).
- Security fix: PALM: Fix heap buffer underflow in builds with QuantumDepth=8.
- Security fix: SetNexus() Fix heap overwrite under certain conditions due to using a wrong destination buffer. This issue impacts all 1.3.X releases.
- Security fix: TIFF: Fix heap buffer read overflow in LocaleNCompare() when parsing NEWS profile.
- Update to version 1.3.27a
- Update Source0 link
+ ns80
- new version 1.3.27 that corrects many security issues (mga#21600)
+ neoclust
- Make sure mageia 5 packages do not have higher release than mga6 ones
- Add P103 - Fixes CVE-2017-12937 (mga#21564)
- Add P102 - Fixes CVE-2017-12936 (mga#21564)
- Add P101 - Fixes CVE-2017-12935 (mga#21564)
+ akien
- Fix use-after-free crash (CVE-2017-11403)
- Version 1.3.26, many security fixes (mga#19668) - Mon May 1 2017 neoclust <neoclust> 1.3.25-5.mga6
+ Revision: 1098212
- Add P7 - Fixes CVE-2017-6335 (mga#19668) - Mon Oct 17 2016 ns80 <ns80> 1.3.25-4.mga6
+ Revision: 1061260
- add upstream patches for CVE-2016-868[2-4] (mga#19602) - Sat Oct 8 2016 ns80 <ns80> 1.3.25-3.mga6
+ Revision: 1059650
- add an upstream patch for two issues in the WPG reader - Tue Oct 4 2016 ns80 <ns80> 1.3.25-2.mga6
+ Revision: 1058618
- add a patch for CVE-2016-7800 (mga#19506) - Wed Sep 7 2016 luigiwalser <luigiwalser> 1.3.25-1.mga6
+ Revision: 1050336
- 1.3.25
- remove upstream patch 2 - Wed Jun 22 2016 luigiwalser <luigiwalser> 1.3.24-2.mga6
+ Revision: 1037188
- add upstream patch to fix more svg security issues - Tue May 31 2016 philippem <philippem> 1.3.24-1.mga6
+ Revision: 1019543
- update to 1.3.24, mga#17714, security fixes - Thu May 5 2016 philippem <philippem> 1.3.23-3.mga6
+ Revision: 1009605
- add patches to fix CVE-2016-2317 and CVE-2016-2318 mga#17714 - Mon Dec 28 2015 luigiwalser <luigiwalser> 1.3.23-2.mga6
+ Revision: 916630
- make devel package require new ++ library package (reported by mitya)