--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2019-e9bc354ee8
2019-02-10 02:36:15.342733
--------------------------------------------------------------------------------
Name : libwmf
Product : Fedora 28
Version : 0.2.12
Release : 1.fc28
URL :
https://github.com/caolanm/libwmf
Summary : Windows MetaFile Library
Description :
A library for reading and converting Windows MetaFile vector graphics (WMF).
--------------------------------------------------------------------------------
Update Information:
CVE-2019-6978: double free in the gdImage*Ptr in gd_jpeg.c, and gd_wbmp.c
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 1 2019 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.12-1
- Related: rhbz#1671392/rhbz#1671621 unwanted soname bump
* Fri Feb 1 2019 Rex Dieter <rdieter(a)fedoraproject.org> - 0.2.11-2
- track library sonames so bumps aren't a surprise
- use %make_build %make_install macros
* Thu Jan 31 2019 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.11-1
- Resolves: rhbz#1671392 CVE-2019-6978 latest version
* Fri Aug 10 2018 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.10-1
- latest version
* Fri Aug 10 2018 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.9-5
- Related: rhbz#1602602 fix more clang warnings
* Fri Aug 10 2018 Igor Gnatenko <ignatenkobrain(a)fedoraproject.org> - 0.2.9-4
- Switch to %ldconfig_scriptlets
* Fri Aug 10 2018 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.9-3
- Related: rhbz#1602602 fix more clang warnings
* Fri Aug 10 2018 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.9-2
- Related: rhbz#1602602 fix clang warnings
* Wed Aug 8 2018 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.9-1
- Resolves: rhbz#1602602 new version with covscan warnings fixed
- all cve fixes merged to that new upstream
* Wed Aug 8 2018 Caol��n McNamara <caolanm(a)redhat.com> - 0.2.8.4-56
- Resolves: rhbz#1595490 make libwmf work again with recent urw-fonts
* Fri Jul 13 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.2.8.4-55
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Wed Feb 7 2018 Fedora Release Engineering <releng(a)fedoraproject.org> -
0.2.8.4-54
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1671392 - CVE-2019-6978 libwmf: gd: double free in the gdImage*Ptr in
gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1671392
[ 2 ] Bug #1671621 - gimp-2.10.8-5.fc29 requires libwmf-0.2.so.7 and
libwmflite-0.2.so.7, but libwmf-0.2.11-1.fc29 provides libwmf-0.2.so.8 and
libwmf-lite-0.2.11-1.fc29 provides libwmflite-0.2.so.8
https://bugzilla.redhat.com/show_bug.cgi?id=1671621
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-e9bc354ee8' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------