[Rpm-maint] [rpm-software-management/rpm] RPM 4.16.1.3 (#1586)
Panu Matilainen
notifications at github.com
Fri Mar 19 09:10:29 UTC 2021
This is primarily a security release for CVE-2021-3421 and CVE-2021-20271.
Some additional hardening, and couple of other important fixes included, details in commits.
You can view, comment on, or merge this pull request online at:
https://github.com/rpm-software-management/rpm/pull/1586
-- Commit Summary --
* Add test for libtool versioning sanity
* Verify that data does not overlap region trailer
* Tag data must have count greater than zero
* rpmio: Fix lzopen_internal mode parsing when 'Tn' is used
* Avoid incrementing a pointer past the end
* Fix regression from commit 165330b7bf0757e30fa8a6de9998a564fb62796f
* Fix regression causing access to already closed sqlite handle
* Fix a tiny memory leak
* Eliminate remaining uses of unsafe headerCopyLoad() in the codebase
* hdrblobInit() needs bounds checks too
* Be much more careful about copying data from the signature header
* Optimize signature header merge a bit
* Update credits for a change
* Restore (some) compiler sanity
* Fix bdb_ro index open error handling
* Permit secondary index open to fail for bdb_ro
* Better sanity check for header entry counts
* Preparing for rpm 4.16.1.3
-- File Changes --
M .mailmap (2)
M CREDITS (45)
M configure.ac (4)
M lib/backend/bdb_ro.c (17)
M lib/backend/sqlite.c (2)
M lib/header.c (80)
M lib/headerutil.c (4)
M lib/package.c (116)
M po/ar.po (50)
M po/br.po (50)
M po/ca.po (53)
M po/cmn.po (50)
M po/cs.po (50)
M po/da.po (50)
M po/de.po (50)
M po/el.po (50)
M po/eo.po (57)
M po/es.po (50)
M po/fi.po (50)
M po/fr.po (50)
M po/id.po (50)
M po/is.po (50)
M po/it.po (50)
M po/ja.po (50)
M po/ko.po (50)
M po/ms.po (50)
M po/nb.po (50)
M po/nl.po (50)
M po/pl.po (57)
M po/pt.po (50)
M po/pt_BR.po (50)
M po/rpm.pot (52)
M po/ru.po (50)
M po/sk.po (50)
M po/sl.po (50)
M po/sr.po (50)
M po/sr at latin.po (50)
M po/sv.po (57)
M po/te.po (50)
M po/tr.po (50)
M po/uk.po (57)
M po/vi.po (57)
M po/zh_CN.po (57)
M po/zh_TW.po (57)
M python/header-py.c (5)
M rpm.am (2)
M rpmio/rpmio.c (1)
M sign/rpmgensig.c (2)
M tests/atlocal.in (4)
M tests/rpmgeneral.at (15)
M tests/rpmsigdig.at (6)
-- Patch Links --
https://github.com/rpm-software-management/rpm/pull/1586.patch
https://github.com/rpm-software-management/rpm/pull/1586.diff
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1586
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20210319/2091a709/attachment-0001.html>
More information about the Rpm-maint
mailing list