netpbm-vulnerable-10.80.1-3.11.1 >  A `% p9|`Ɯ~-\TY0/H  *īL|:p|~$PDU{E :|I;1W@3%11} Gj[(75%ًOZ6_2K 56}iCw>}>N.g'ErCMЅ77W `va>^ v=Cm ,Gfr\T k ]i875ba242252620a061ffa49600831d0cb0e606c611bd42533675b482041b1463c93e6d1f5b8cff29770c8e75a6745c35a59b296ef؉`% p9|G)V+ ~u1VNp6i}8\h^6=Ζvh9B `9~5R+6w#{4Hön8Ί}7ͱ^jXt4aDWdE T} k'ygOV%xOfaU/d$DE&z;J>QLqXl ("~[skZrK>:gҲl޻&1}e:1c8>p>/ ?.d # NC Yz    B DLV`   (89`:F+xG+H+I+X+Y+\+]+^+b,c,d-&e-+f-.l-0u-Dv-Lw.tx.|y.z.....Cnetpbm-vulnerable10.80.13.11.1Utilities with (Potential) Security IssuesProvides utilities that have been shipped with main package along others, but was considered vulnerable.`% sheep20aSUSE Linux Enterprise 15SUSE LLC BSD-3-Clause AND GPL-2.0+ AND IJG AND MIT AND SUSE-Public-Domainhttps://www.suse.com/Productivity/Graphics/Convertorshttp://netpbm.sourceforge.net/linuxx86_64J큤`% `% e3b5663721818fe466485a4e078927cb23a638cf5454765116adc48a96e4043168fae25da966fe210e458e56d2dcecfa93ee4ed3c62119bf2c01d05a5a0c86ffrootrootrootrootnetpbm-10.80.1-3.11.1.src.rpmnetpbm-vulnerablenetpbm-vulnerable(x86-64)@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libnetpbm.so.11()(64bit)netpbmrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)10.80.13.0.4-14.6.0-14.0-15.2-14.14.1`\@\P[3|@ZF.@Z7YYf@Y:Y5GX43@XI@W@VrUJ@UPTl@dmueller@suse.compgajdos@suse.compgajdos@suse.compgajdos@suse.comtchvatal@suse.compgajdos@suse.comtchvatal@suse.comtchvatal@suse.compgajdos@suse.compgajdos@suse.compgajdos@suse.comfstrba@suse.compgajdos@suse.compgajdos@suse.commvyskocil@opensuse.orgpgajdos@suse.compgajdos@suse.com- skip failing tests for armv7hl (bsc#1181571)- enable the testsuite - create netpbm-vulnerable subpackage and move pstopnm there [bsc#1139636]- asan_build: build ASAN included - debug_build: build more suitable for debugging - security update - added patches CVE-2017-2579 [bsc#1024288], CVE-2017-2580 [bsc#1024291] + netpbm-CVE-2017-2579,2580.patch neccessary for running with ASAN + netpbm-asan.patch- security update * CVE-2018-8975 [bsc#1086777] + netpbm-CVE-2018-8975.patch- Add patch makeman-py3.patch to make sure to use python3 when building - Unpack the stuff only once- updated to 10.80.1 * pnmtopalm: Refuse to create a compressed image with more than 8 bits per pixel. * pbmtext, libnetpbm font facilities: allow glyphs in font files that have no bitmap data; just used for their advance value to code a space. * pbmtext: Improve error message when there is a problem reading the font file. * libnetpbm font facilities: consider font invalid if a glyph is more than 65536 pixels high or wide. * ppmshadow: handle images with a black background and low contrast images (i.e. little difference between foreground and background). * ppmbrighten: fix bug: red pixels change hue. Introduced in after Netpbm 10.11 (October 2002) and before Netpbm 10.18 (September 2003). * palmtopnm: fix crash if invalid input contains color index that is not in the palette. Always broken (palmtopnm was new in Netpbm 9.10 (October 2001)). * pnmtopalm: fix incorrect output with certain input files and - packbits_compression. Always broken. -packbits_compression was new in Netpbm 10.27 (March 2005). * pnmtopalm: Correct error message recommending running pnmquant when the real solution is to run pnmremap to modify the image to Palm standard colors. * pnmtopalm: Fix bug causing "color not in colormap" failure with - colormap and maxval other than 255. * libnetpbm: font facilities: fix invalid memory reference with certain font files. * libnetpbm: ppm_readcolordict: Improve error message when there is a problem reading the color dictionary. Affects ppmhist. * pgmmake: Fix bug: treats non-numeric gray-level argument as zero. Always broken (Pgmmake was new in Netpbm 10.32, February 2006). * pdbimgtopam, pamtopdbimg: fix various cases of incorrect output, some always present (programs were new in Netpbm 10.52.00 (October 2010)). * libnetpbm: pnm_parsecolorn(), pnm_parsecolor(): fix parsing of rgb: color specifications: yields value slightly too dim. Affects many programs. Broken in Netpbm 10.79 (June 2017).- Version update to 10.79.3: * Fix license clash between GPL-2 and GPL-3 * Few small fixes- Drop patch netpbm-missing-file-close.patch fixed differently by upstream - Drop patch netpbm-jasper.patch which is no longer needed - Remove accidental -O0 added to cflags - Version update to 10.79.2: * Fix 'format-security' GNU compiler warning. * libnetpbm: pnm_parsecolorn(), pnm_parsecolor(): fix parsing of rgb: color specifications: yields value slightly too dim. * pamgauss: Add -maximize, -oversample . Thanks Anton Shepelev * pnmconvol: Extend -normalize to be applicable to convolution kernels specified by PGM file. Thanks Anton Shepelev * g3topbm: tolerate fill bits. * pbmtog3: Add -align8, -align16. * ppmshadow: Improve results for very small maxval. * ppmshadow: eliminate extraneous messages from pnmconvol. * libnetpbm: Improve error message for purported image that is exactly 1 byte long (so ends in the middle of what would be the magic number). * pbmtox10bm: Get the Perl interpreter for this Perl program from the PATH instead of hardcoded as /usr/bin/perl (like all other Netpbm Perl programs). * ppmcolormask: fix incorrect output when input maxval is not 255. * bmptopnm: fix crash when input is a Windows BMP with negative number for width. Always broken. (bmptopnm was new, as bmptoppm, in original Netpbm, 1992). * pamcomp: fix incorrect output with -mixtransparency. Always broken. (-mixtransparency was new in Netpbm 10.56, September 2011). * pamcomp: remove debug trace message with -mixtransparency. Always broken. (-mixtransparency was new in Netpbm 10.56, September 2011). * pnmtojpeg: fix array bounds violation in argument list. Always broken (pnmtojpeg was new to Netpbm in Netpbm 8.2 (March 2000). * pamcrater: fix incorrect output with non-square image. Introduced in Netpbm 10.69 (December 2014). * svgtopam: fix treating negative width or height values in SVG like twos complement positive numbers; fail instead. Always broken (svgtopam was new in Netpbm 10.33 (March 2006)). * svgtopam: fix error messages when input has splines or negative positions. Always broken (svgtopam was new in Netpbm 10.33 (March 2006)). * libnetpbm: fix bug: pm_system_XXX closes Standard Input if you supply a Standard Output accepter but not a Standard Input feeder. Broken since Netpbm 10.40 (September 2007). * Build: don't try to build standardppmdfont.c if it already exists (so don't require ppmdcfont to exist). Broken around Netpbm 10.35 (2006). * Build: Define _XOPEN_SOURCE=500 in source files that use M_PI. While C libraries in the past have always provided this with just _XOPEN_SOURCE=null, it appears that M_PI is actually defined by Single Unix Specification 2, aka UNIX98, for which you need _XOPEN_SOURCE=500, and Cygwin has changed to enforce this.- updated to 10.78.5 * pamgauss: Fix skewed output with even dimension. * bmptopnm: fix crash when input is a Windows BMP with negative number for width.- updated to 10.78.4 * pamcrater: fix incorrect output with non-square image. * libnetpbm: fix bug: pm_system_XXX closes Standard Input if you supply a Standard Output accepter but not a Standard Input feeder. * fix incorrect output with -mixtransparency. * pamcomp: remove debug trace message with -mixtransparency. * pnmtojpeg: fix array bounds violation in argument list. * ppmpat: Add -color. * ppmpat: Add -argyle1, -argyle2. * pnmtotiff: Fail with -miniswhite or -minisblack on color image rather than produce an invalid TIFF. * tifftopnmcmyk: Default rows per strip to the TIFF library default instead of whatever yields 8K strips. * tifftonm: Fix incorrect PBM output with two-color paletted TIFF image. * tifftopnm: Fix memory corruption when image is more pixels than can be represented as a C unsigned integer. * tifftopnmcmyk: Fix bug: fails with very wide images and no - rowsperstrip. * svgtopam: Fix crash when out of memory. * pnmcrop: Add -closeness * libnetpbm: ppmd_fill_path: remove debug trace. * pnmpad: Fix bug: incorrect output width. - removed netpbm-no-build-date.patch: not needed since: * --version global option: with SOURCE_DATE_EPOCH environment variable, display source code datetime instead of build datetime.- updated to 10.76.0 * pnmquantall: Fix failure when temporary file location is not the same filesystem as the output file. * pnmquantall: Fix incorrect handling of when the Pnmremap or the final rename fails. * giftopnm: Fix bug: crash on little-endian computers that can't toleration unaligned memory access. Thanks Ignatios Souvatzis (is@netbsd.org). Broken in Netpbm 10.47 (June 2009). * cmuwmtopbm: fix trivial memory leak. Always broken (cmuwmtopbm was in primordial Pbmplus, in 1988). * Build: tifftopnm.c: fix undefined WIFSIGNALED, etc.- Added patch: * netpbm-jasper.patch + Fix build with newer jasper- updated to 10.75.1 * see HISTORY for upstream changelog * refreshed, reduced, extended patches: netpbm-security-code.patch netpbm-security-scripts.patch netpbm-gcc-warnings.patch- updated to 10.72.4 * see HISTORY for upstrem changelog * added useful returns + netpbm-gcc-warnings.patch * forwardported . netpbm-security-code.patch- Drop all libp?m.so symlinks- updated to 10.70.4 * pambackground: fix bug: segfault or incorrect results in most cases. * ppmtoarbtxt: Fix some undefined behavior when program limits are exceeded. * anytopnm: convert all images in a multi-image GIF instead of just the first. * nmnorm: add -bsingle, -wsingle. * pamtosvg: fix use of unset variable; probably results in a crash. * pnmgamma -srgbtobt709, -bt709tosrgb: fix bug; incorrect output nearly always. * pamtilt: fix bug: unconditional crash. * pgmmorphconv: fix bug: always produces PGM Plain format. * giftopnm: Fix bug: crashes if purported GIF has neither a global color map nor a local one. * pgmmorphconv: add -gradient. * pnmhisteq: add -noblack and -nowhite. * tifftopnm: allow input file to be nonseekable. * Add yuy2topam. * Add pgmtosbig. * Add st4topgm, pgmtost4. * ppmtoarbtxt: fix bug: wrong output when high numbers represent darker. * ppmtorgb3: Fix buffer overflow with long input file name. * st4topgm: Fix bug: with no argument, uses file named "'" instead of Standard Input. * pnmconvol: Fix bug: wrong output for pixels that convolve to negative values (should be clipped to zero).- updated to 10.68.1 * pnmconvol: add -bias . * Remove pnmcomp, install a pnmcomp symlink for pamcomp. * Fix incorrect option parsing when there are multiple common options (e.g. -plain -quiet). * cameratopam: fix buffer overflow. * cameratopam: fix incorrect output. * ppmtopict: Fix unconditional crash.sheep20 161304066410.80.1-3.11.110.80.1-3.11.1pstopnmpstopnm.1.gz/usr/bin//usr/share/man/man1/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:18206/SUSE_SLE-15_Update/15d7a6de3a4bb96e7376af952a394fbe-netpbm.SUSE_SLE-15_Updatecpioxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, BuildID[sha1]=37ef81e4fdb58115ef6748caa615ea80316dba01, for GNU/Linux 3.2.0, strippedtroff or preprocessor input, ASCII text (gzip compressed data, max compression, from Unix)RRRRRRjΛt=Ikutf-8bcf4d8c58f9a61fe15dfec83eb89ea7d4e3b52cb268981414829b36d681b7bae? 7zXZ !t/c73] crv9w ݣ!2QjΙ+&*zuP[QmcjkiW2%C&@NMMΦfQpe k4LW6k1P".Bu>NEQ-`>K@( {h`{0Tt6Z]J2--{ mHVj@"uh ĺK`-x1?qŒmĨU3cVolXImѕb/WƗf|k`Mφ﫤CUKIHaNXCYt~YTe+X)0@f_ e ׇ+OېMNUI:Y}sݹi ocSJx+2 [D ɮ.Q36n3äv| ЭF|i;!՜@& *W`=& [/3c };=:y3_Zʊȟ==ג=w`6!sRo2p{*Zi1 xb5jQ!22Sy2=!V9~~r=J i^٩TѠ$xG ayW2wpĠ9Rɡ7 fy Id/ Z/%QR"VZ sbqr-;MJ^ .-]LXM; h)|f}h{ f9oI_ L 1%S$HCtWnT6:Y*f՜l3wHm|'Ool ŭ:f1D4v~Uȣһ$h?>B[_A4V%}In]E;!c 9?;zH<õ95S߁VI.:q L`bKU4&iǷB7'" u|7. X/;,Np$Wi-NYFnpV_{5~wIVULq^Vy'[9L_T-N7% ]3K_B!y@۩0~/dOK! *RD3efT9#p[8-͎)6ȁ4?|} l.f[u"*en^nՠ8ǿ(aUzp`Y NB3C9D.DɨQ—U_`%և(mB$_X{2Cas{i Pu@ ؤ({G"3`+sMNDza 0&!ڠD*fM],j;tId_ fN&&X,-Zw{|TOԯD*)Yj}e .Z].H w[1?иZmb"1޾h0r]ͰVOI|t¡đ0CaiRAy8Xbg̖5+Cy_Ib4(!gK]qTt ,P ;ȋpW2T<{XhI9GWq:"}NM"-GnmT496ʫn-rF AJmovD~RN6"$ rՈ|8DB$§$ tSqyw-ΠjO9E]A̳f߶cS`zJڛOヌ!j^P zڜ_!{r;l~0:#)@̵[ZȺKȰ_u;Gf[񕨲_snR:{cf5s-i][{ZrA5&&I_8dw?vf)~l|fK(IN,N?^y4y &d#IRpXaGznuF!险Y[I3AWUf8ح.$["5hjwJ dHυ@ B0يxTSoL.It\p`Cb* 7ku9"Ta $RmyKg֩tgǔ9ʱ?Dfp=ΤwKP|@zcn4t # CNj< ڒ830Æ Q!ˊZ⯘kÔ/2q_=v ^Bl qhJc^5O_)UCm?kL$m`҉bk_Q$;" $rSN#.C%€82P9K7&^Ô%hHVcr L 2glKZrUqҎ>p; 9UaBX4p@r69zCO[YL:GMk*-c0&y 2=鱔M{q): 7\!s.I2 _e$/yc*u҃q+!ɔ!*d~@pWH(|^x=1(A^wPVNoA}+FKyʯ5_ۛ+c?2~bU2dȌzglIp$mVl"6lSVJysS/ 1a&kU&CJbfszf<Sp H~W| HF`Տ޲N,AiG/RG"ɚ9C%4+E4Dz3JMZqV⸚1~9$ss# XE ;ۊ(`[!`*EhےeCqfmm_'c|8Ϟl (Xۤ CQ3SCt7}m(CZSǵdV}$\sł 8"*`z^rW'`5>XKTȸG9 +ʞ#!xr6:AeLPyi}"a!h}&-V!7wv.vw}i8ݵ5_Ĩ\̳PAs_jRKRJ7﷎a$1ſW#0+DʀG0mԃM!;\xѭ:ؿ )&o-Lk|e9TFvdIҽIF= }ca+XI"~jc-K,ᩌ2{L^hD,tGBl@ph#$Q5;ќD~4r#fX~@LQ}.wDR#q -OQ q=jX|F*5WΰV f`_QK;$5dКkԠ~a߿2rc;_@9O0@h\cU `ͥ^m-sVY`"8>╷\{B߳ƊX.$i)>H(=cA.\uRzӷ37]٣~"6%Km-0|v9*@sά#-ZY7@qC.iֿL֟fOpj&T^J ~m\ML72SA#IһI/ٖKpm7v7ؗ8bS|vMisĘ0{1MJSC(l}8x>^2 Ǽ}co*bw6cXb&}~h8"WRa1&V%qɠѽz˴5< k 1~=\d#(˨HWw~j-z9ua DjKB48Y$q n"Aa(n$ xl[Ps>ىlh 3B7ew9cs=IМ_-յCʄc48s}Q<@]BwR&F,29lRt\K`r T2B0E;F"mF z/qPt` -8?" q@ $?Ye/=%]Sh{`yk5+b^^w- ?8U˽v8.4AH2 Ek \{f;nܳ>jxR ` ;ѳKÅ0]7$K6z[ Ok{հs C(lZꉃ%k,DE;ӽ YC]钅vSE4<jW ~a0xBW3d>'X@1D-7[j|f˃FF,B Tl&129XQE\{۴̚¤ ]_cJ8"Rp$*?1(;0-mrVl٢"2 .8ţrH~:֝/{6Y 6?G^_xzqw]۶Z5ZLuxuON0yӝd5 b8)*Zn{in1+ L#89Lӫ5Z Vܙ I3 iTwW%ə?ngGySCF?ڕ=LF)5>&X[Imcy 񪃨# Jcɕ͠'Dp#pIOA$A,(#CT& ى"rò P߯3yݒ0g4QsIwV aTs4\ r6=Stu>Z#,QG Ԅ؇û;6=V0W)+~60j8y&>Sű @hw{J6=;LɺnjcFd>ymrGؽ|5Mq/aڸwxf!Zp{>YW'% 4UoKO"[u>Tqa[xK!Th^Akh^v--/y=E(%疝y)3M\[͈& e+ij\g'K;|zC?З#QK-ts%F^%7,װt)ǫQY9:)PJP8+i9=o4jZfd2qp̒VQ{HZ쑫+j%[!`ҙ1o bֿ "x8ikף텗 x;a5!{ e ն4"'P'%{ ~h(|x48("g0kʥAP<ȗvdUS]n[5mfʙ+;yk7[xhӍhKtz/#e=* ,~] ?z:f!-B՟tUd( >G@]6bSޜ@;jkh)e :4#>2z^9G?)M]STȻx) 5[`\"K"]TTt\z#f11 EtCe i}ގҸ"z%eG~s0iG:\O[M =es5BB>A|1*|Ke;0FI?!!^`_8_#_˲}zJsUWQ䖴Tk!M*nF9W)A@ÅVD@U:@Sp_SS$1x?5y&|K2Ae1p`oZEKoJ["a4 }?u ["Dy:Mxc%SRyJwփXgJP> w9 }\4U[!*5w]6a5+)5̬@|n~c3Mv ?h?B4 YW,tҧE'FWdF0@ ]&4~h=G`{H^ {i fݩJAJʚ >~ʗ-nDG7qߚ4ki0@?V-gc1wum0p]ϔ(h̗<~%>&ZpIA]cGFW%_)ɪf,r%jM)z2}nXn=WXytO!6D6wd`=stFJ9&A넑|e%X-AZ9%a)J4~d?懧JDN6[88MIPQ P7GAk6q.6qm+N@wPS(Tmao|g ֽ5 GnLnVf D(:#J kJ:?M& j.pB2^)ec͎Gi=c<5q 4q(Qg H|lᕾo'0obEb3wS -PT`[s<^Y' sA5ﷇ@KRkm \Ik RB/xKb6iu{RVq4!c.] Z/tƷ̲xfjDfWF{ISx,i&yy8"‹v6twAɱsbL{`|6Ltc'sF%AΑ{R`eFf81DyAL'c>́&}}_Q ?jq!t‡Qh?Ҧ%T);u鞝;|(Sob+uqgO6Duwl<()[B7 O'j[/$!igC [Ue.s'MD*M.߾y]BJ8OP 3Pf薲w Jm*D' ?>xuzmv )j d+)NBH#`VeIpä5a;{wҊvmP›q3?8%^$PvD,$ Z?ˆKwe*:Vk*ZG `{㛲ڦo2 w[34('HZfga*Zx@gV;R; ²&iF1zHbǞ]DW}9{慛(ⰾsj o-|W5Ɍ4Д䬺6ur}sCWl)!i;P\QZІuqZ Xhd#sy3 t~.JmFs81etH^˔zZHA&Q=btQ2B,oƞ*A8a%+`4raJ-Fv^ Bz/04Z#  }K[ 6bkwn$jK@ p߻.luoYʛɟw*h0*<Ծl8hTF}miZݠz 5g껓ʐ <itT~VU`uZ֣bd~d.^hb}[tHm;@ jxS{Vi힭Jg] @7A}x_ubL!Ekq0]C줜_jM7# Hh/™8(IVUohk曊{a ikɵy[ݵD6֫N^jS~/[N+b0@On$͜u)&FZ0]ޘ-uj2°ZIPVISO#/ѝG{:~m;f#>U$0yqU͑(WNݞ-T/.6euw  *Ԉ(uBWi0h~+1tVj=`M{ZA8EN^ )DfΊ^T3s[S69Ľmh]%lwDPk٘B)%||ϴlU(eNe;' w~L4kaٝd`7IPνP1IzIpbyL֎oJL`F{EɤuQ -*zז6وYbK$}hY\x0i(YatwpAKF~&rx*@fEgydGUIC{ԥ'p|~8xۛ9Ī'߾ w2G64n,S~P37GI`0= ڣX9+qDm5KXB*:L>Ӆ{( 82+P#kӌjDۇEmc 49tHn8Ո`2By8DrRUqIr:/gv tnJT6`#ԡ)f2pJMq)U^5XZЯ(*-b1/lĉyj&^7c,@i~Jl޽PQ(-9Q> <)>ϸ濲{)I?LqKO>ekGLv700:h|3H3AˉQ|M{,ڨ|m&7d.+{~iYbs/KIIzWA0&8+dx@h5[|c4;/$R!e* o%6CʶQgq(Wf*r qj8F_gb&Aݨbl-AZ 4 Htgph>0#K%5<ʸJ+Џ .`*~9- lz9`XHG1۹12{ri^8nGnjp3'M=hn5f$j=~)xqܘ}1gߣ+v}***6grVvdW= uΕebX"MRVjzHı3?齔awP a|-4Al\ks"Z|27id P2ջC>P{+B,ąM0M`í얢O@`H Ψy%D˕BZB82ӴƊy2jRV_>WLȆcY͘58PZ~3$*F}>e,E@Afb,J*963:Utgk3 +>3/]CRQ ɴ#maTޞ ;go+ե[#Ĺ`5zQd !%FF"5R?Mdgc#aI{dV4tΠ`Y#].:Xdى&qD@ʪ) R኶ ZюdK`M`F.VctQDٔ:*5fp:Ϯv h=WFy ­\mJu꫁5_N#E %huB#gh ҬvznCj^/A&ҧnj6i-F5ϹMVoF 箵~h1 F]0ؒ`.ѧ;) {t8:%N/c}3(+G=h:6/}n}asDYL)V2)qB`yrOꭥOCmYУ3ne>1Md~oVށ+)`>WdzKxߴvLM"ձH4VE*cub0,\]^VB~$bs!ng.2+p YZ