From mboxrd@z Thu Jan 1 00:00:00 1970 From: Alexander Marx To: development@lists.ipfire.org Subject: [PATCH] lzo: Update to 2.09 Date: Mon, 18 Apr 2016 09:07:48 +0200 Message-ID: <1460963268-2532-1-git-send-email-alexander.marx@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============3264296522794240637==" List-Id: --===============3264296522794240637== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable Changes in 2.09 (04 Feb 2015) * Work around gcc bug #64516 that could affect architectures like armv4, armv5 and sparc. Changes in 2.08 (29 Jun 2014) * Updated the Autoconf scripts to fix some reported build problems. * Added CMake build support. * Fixed lzo_init() on big-endian architectures like Sparc. Changes in 2.07 (25 Jun 2014) * Fixed a potential integer overflow condition in the "safe" decompressor variants which could result in a possible buffer overrun when processing maliciously crafted compressed input data. Fortunately this issue only affects 32-bit systems and also can only happ= en if you use uncommonly huge buffer sizes where you have to decompress more than 16 MiB (> 2^24 bytes) untrusted compressed bytes within a single function call, so the practical implications are limited. POTENTIAL SECURITY ISSUE. CVE-2014-4607. * Removed support for ancient configurations like 16-bit "huge" pointers - LZO now requires a flat 32-bit or 64-bit memory model. * Assorted cleanups. Signed-off-by: Alexander Marx --- lzo/lzo.nm | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lzo/lzo.nm b/lzo/lzo.nm index 71696af..7bd25af 100644 --- a/lzo/lzo.nm +++ b/lzo/lzo.nm @@ -4,7 +4,7 @@ ############################################################################= ### =20 name =3D lzo -version =3D 2.06 +version =3D 2.09 release =3D 1 =20 groups =3D Applications/Compression --=20 2.6.3 --===============3264296522794240637==--