|
|
|
%global py3_incdir %(python3 -c 'import distutils.sysconfig; print(distutils.sysconfig.get_python_inc())')
|
|
|
|
%global py3_libbuilddir %(python3 -c 'import sys; import sysconfig; print("lib.{p}-{v[0]}.{v[1]}".format(p=sysconfig.get_platform(), v=sys.version_info))')
|
|
|
|
|
|
|
|
%global srcname pillow
|
|
|
|
# bootstrap building docs (pillow is required by docutils, docutils are
|
|
|
|
# required by sphinx; pillow build-requires sphinx)
|
|
|
|
%global with_docs 0
|
|
|
|
|
|
|
|
Name: python-%{srcname}
|
|
|
|
Version: 5.1.1
|
|
|
|
Release: 18%{?dist}
|
|
|
|
Summary: Python image processing library
|
|
|
|
|
|
|
|
# License: see http://www.pythonware.com/products/pil/license.htm
|
|
|
|
License: MIT
|
|
|
|
URL: http://python-pillow.github.io/
|
|
|
|
Source0: https://github.com/python-pillow/Pillow/archive/%{version}/Pillow-%{version}.tar.gz
|
|
|
|
Patch0: 0001-Fix-potential-un-terminated-buffer-problem-CWE-120.patch
|
|
|
|
Patch1: 0002-Fix-potential-leaked-storage-issues-CWE-772.patch
|
|
|
|
Patch2: 0003-Fix-dereferencing-type-punned-pointer.patch
|
|
|
|
# Combined fixes for CVE-2020-5312 improperly restricted operations on memory buffer in libImaging/PcxDecode.c
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1789533
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/93b22b846e0269ee9594ff71a72bec02d2bea8fd
|
|
|
|
# and for CVE-2019-16865 reading specially crafted image files leads to allocation of large amounts of memory and denial of service
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1774066
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/cc16025e234b7a7a4dd3a86d2fdc0980698db9cc
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/b36c1bc943d554ba223086c7efb502d080f73905
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/f228d0ccbf6bf9392d7fcd51356ef2cfda80c75a
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/b9693a51c99c260bd66d1affeeab4a226cf7e5a5
|
|
|
|
Patch3: CVE-2020-5312_CVE-2019-16865.patch
|
|
|
|
# Fix for CVE-2020-5311 - out-of-bounds write in expandrow in libImaging/SgiRleDecode.c
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=1789535
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/a79b65c47c7dc6fe623aadf09aa6192fc54548f3
|
|
|
|
Patch4: CVE-2020-5311.patch
|
|
|
|
# CVE-2020-5313 out-of-bounds read in ImagingFliDecode when loading FLI images
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/a09acd0decd8a87ccce939d5ff65dab59e7d365b?patch
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=1789532
|
|
|
|
Patch5: CVE-2020-5313.patch
|
|
|
|
# CVE-2020-11538 out-of-bounds reads/writes in the parsing of SGI image files in expandrow/expandrow2
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/pull/4504/
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=1852814
|
|
|
|
Patch6: CVE-2020-11538.patch
|
|
|
|
# CVE-2020-35653 decoding a crafted PCX file could result in buffer over-read
|
|
|
|
# Note that there is a wrong CVE number in the commit msg
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/2f409261eb1228e166868f8f0b5da5cda52e55bf
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=1915432
|
|
|
|
Patch7: CVE-2020-35653.patch
|
|
|
|
# CVE-2020-35655 decoding crafted SGI RLE image files could result in buffer over-read
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/120eea2e4547a7d1826afdf01563035844f0b7d5
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-35653
|
|
|
|
Patch8: CVE-2020-35655.patch
|
|
|
|
# CVE-2021-25290 negative-offset memcpy with an invalid size in TiffDecode.c
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/86f02f7c70862a0954bfe8133736d352db978eaa
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=1934685
|
|
|
|
Patch9: CVE-2021-25290.patch
|
|
|
|
# CVE-2021-25292 backtracking regex in PDF parser could be used as a DOS attack
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/3bce145966374dd39ce58a6fc0083f8d1890719c
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-25292
|
|
|
|
Patch10: CVE-2021-25292.patch
|
|
|
|
# CVE-2021-25293 out-of-bounds read in SGIRleDecode.c
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/4853e522bddbec66022c0915b9a56255d0188bf9
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-25293
|
|
|
|
Patch11: CVE-2021-25293.patch
|
|
|
|
# CVE-2021-27921 reported size of a contained image is not properly checked for a BLP container
|
|
|
|
# CVE-2021-27922 reported size of a contained image is not properly checked for an ICNS container
|
|
|
|
# CVE-2021-27923 reported size of a contained image is not properly checked for an ICO container
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/480f6819b592d7f07b9a9a52a7656c10bbe07442
|
|
|
|
# Tracking bugs:
|
|
|
|
# - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-27921
|
|
|
|
# - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-27922
|
|
|
|
# - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-27923
|
|
|
|
Patch12: CVE-2021-27921_27922_27923.patch
|
|
|
|
# CVE-2021-25288 and 25287 out-of-bounds read in J2kDecode in j2ku_gray_i and j2ku_graya_la
|
|
|
|
# Upstream fixes this patch combines:
|
|
|
|
# - Original fix for the CVEs: https://github.com/python-pillow/Pillow/commit/3bf5eddb89afdf690eceaa52bc4d3546ba9a5f87
|
|
|
|
# - Older commit the fix is based on: https://github.com/python-pillow/Pillow/commit/cf6da6b79080a8c16984102fdc85f7ce28dca613
|
|
|
|
# Tracking bugs:
|
|
|
|
# - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-25287
|
|
|
|
# - https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-25288
|
|
|
|
Patch13: CVE-2021-25287_25288.patch
|
|
|
|
# CVE-2021-28675 DoS in PsdImagePlugin
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/22e9bee4ef225c0edbb9323f94c26cee0c623497
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-28675
|
|
|
|
Patch14: CVE-2021-28675.patch
|
|
|
|
# CVE-2021-28676 infinite loop in FliDecode.c can lead to DoS
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/bb6c11fb889e6c11b0ee122b828132ee763b5856
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-28676
|
|
|
|
Patch15: CVE-2021-28676.patch
|
|
|
|
# CVE-2021-28677 DoS in the open phase via a malicious EPS file
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/5a5e6db0abf4e7a638fb1b3408c4e495a096cb92
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-28677
|
|
|
|
Patch16: CVE-2021-28677.patch
|
|
|
|
# CVE-2021-28678 improper check in BlpImagePlugin can lead to DoS
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/496245aa4365d0827390bd0b6fbd11287453b3a1
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2021-28678
|
|
|
|
Patch17: CVE-2021-28678.patch
|
|
|
|
# CVE-2021-34552: buffer overflow in Convert.c because it allow an attacker to pass
|
|
|
|
# controlled parameters directly into a convert function
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/pull/5567
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=1982378
|
|
|
|
Patch18: CVE-2021-34552.patch
|
|
|
|
# CVE-2022-22817: PIL.ImageMath.eval allows evaluation of arbitrary expressions
|
|
|
|
# Upstream fixes:
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/8531b01d6cdf0b70f256f93092caa2a5d91afc11
|
|
|
|
# https://github.com/python-pillow/Pillow/commit/f84ab3bb8a0a196a52e8a76bebed2853362629de
|
|
|
|
# Tracking bug: https://bugzilla.redhat.com/show_bug.cgi?id=2042527
|
|
|
|
Patch19: CVE-2022-22817.patch
|
|
|
|
# CVE-2022-22815 python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c
|
|
|
|
# CVE-2022-22816 python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c
|
|
|
|
# Upstream fix: https://github.com/python-pillow/Pillow/commit/5543e4e2d409cd9e409bc64cdc77be0af007a31f
|
|
|
|
# Memory issue fix: https://github.com/python-pillow/Pillow/pull/5958
|
|
|
|
# Tracking bugs:
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=2042511
|
|
|
|
# https://bugzilla.redhat.com/show_bug.cgi?id=2042522
|
|
|
|
Patch20: CVE-2022-22815_CVE-2022-22816.patch
|
|
|
|
|
|
|
|
BuildRequires: freetype-devel
|
|
|
|
BuildRequires: gcc
|
|
|
|
BuildRequires: ghostscript
|
|
|
|
BuildRequires: lcms2-devel
|
|
|
|
BuildRequires: libjpeg-devel
|
|
|
|
BuildRequires: libtiff-devel
|
|
|
|
BuildRequires: libwebp-devel
|
|
|
|
BuildRequires: openjpeg2-devel
|
|
|
|
BuildRequires: tk-devel
|
|
|
|
BuildRequires: zlib-devel
|
|
|
|
|
|
|
|
BuildRequires: python3-cffi
|
|
|
|
BuildRequires: python3-devel
|
|
|
|
BuildRequires: python3-numpy
|
|
|
|
BuildRequires: python3-setuptools
|
|
|
|
%if 0%{?with_docs}
|
|
|
|
BuildRequires: python3-sphinx
|
|
|
|
BuildRequires: python3-sphinx_rtd_theme
|
|
|
|
%endif # with_docs
|
|
|
|
BuildRequires: python3-tkinter
|
|
|
|
|
|
|
|
# For EpsImagePlugin.py
|
|
|
|
Requires: ghostscript
|
|
|
|
|
|
|
|
%global __provides_exclude_from ^%{python3_sitearch}/PIL/.*\\.so$
|
|
|
|
|
|
|
|
%description
|
|
|
|
Python image processing library, fork of the Python Imaging Library (PIL)
|
|
|
|
|
|
|
|
This library provides extensive file format support, an efficient
|
|
|
|
internal representation, and powerful image processing capabilities.
|
|
|
|
|
|
|
|
There are these subpackages: tk (tk interface),
|
|
|
|
devel (development) and doc (documentation).
|
|
|
|
|
|
|
|
|
|
|
|
%package -n python3-%{srcname}
|
|
|
|
Summary: Python 3 image processing library
|
|
|
|
%{?python_provide:%python_provide python3-%{srcname}}
|
|
|
|
Provides: python3-imaging = %{version}-%{release}
|
|
|
|
# For MicImagePlugin.py, FpxImagePlugin.py
|
|
|
|
|
|
|
|
%description -n python3-%{srcname}
|
|
|
|
Python image processing library, fork of the Python Imaging Library (PIL)
|
|
|
|
|
|
|
|
This library provides extensive file format support, an efficient
|
|
|
|
internal representation, and powerful image processing capabilities.
|
|
|
|
|
|
|
|
There are these subpackages: tk (tk interface),
|
|
|
|
devel (development) and doc (documentation).
|
|
|
|
|
|
|
|
|
|
|
|
%package -n python3-%{srcname}-devel
|
|
|
|
Summary: Development files for %{srcname}
|
|
|
|
Requires: python3-devel, libjpeg-devel, zlib-devel
|
|
|
|
Requires: python3-%{srcname}%{?_isa} = %{version}-%{release}
|
|
|
|
%{?python_provide:%python_provide python3-%{srcname}-devel}
|
|
|
|
Provides: python3-imaging-devel = %{version}-%{release}
|
|
|
|
|
|
|
|
%description -n python3-%{srcname}-devel
|
|
|
|
Development files for %{srcname}.
|
|
|
|
|
|
|
|
|
|
|
|
%package -n python3-%{srcname}-doc
|
|
|
|
Summary: Documentation for %{srcname}
|
|
|
|
BuildArch: noarch
|
|
|
|
Requires: python3-%{srcname} = %{version}-%{release}
|
|
|
|
%{?python_provide:%python_provide python3-%{srcname}-doc}
|
|
|
|
Provides: python3-imaging-doc = %{version}-%{release}
|
|
|
|
|
|
|
|
%description -n python3-%{srcname}-doc
|
|
|
|
Documentation for %{srcname}.
|
|
|
|
|
|
|
|
|
|
|
|
%package -n python3-%{srcname}-tk
|
|
|
|
Summary: Tk interface for %{srcname}
|
|
|
|
Requires: python3-tkinter
|
|
|
|
Requires: python3-%{srcname}%{?_isa} = %{version}-%{release}
|
|
|
|
%{?python_provide:%python_provide python3-%{srcname}-tk}
|
|
|
|
Provides: python3-imaging-tk = %{version}-%{release}
|
|
|
|
|
|
|
|
%description -n python3-%{srcname}-tk
|
|
|
|
Tk interface for %{name}.
|
|
|
|
|
|
|
|
|
|
|
|
%prep
|
|
|
|
%autosetup -p1 -n Pillow-%{version}
|
|
|
|
|
|
|
|
|
|
|
|
%build
|
|
|
|
%py3_build
|
|
|
|
|
|
|
|
%if 0%{?with_docs}
|
|
|
|
PYTHONPATH=$PWD/build/%py3_libbuilddir make -C docs html BUILDDIR=_build_py3 SPHINXBUILD=sphinx-build-%python3_version
|
|
|
|
rm -f docs/_build_py3/html/.buildinfo
|
|
|
|
%endif # with_docs
|
|
|
|
|
|
|
|
|
|
|
|
%install
|
|
|
|
install -d %{buildroot}/%{py3_incdir}/Imaging
|
|
|
|
install -m 644 src/libImaging/*.h %{buildroot}/%{py3_incdir}/Imaging
|
|
|
|
%py3_install
|
|
|
|
|
|
|
|
|
|
|
|
%check
|
|
|
|
ln -s $PWD/Images $PWD/build/%py3_libbuilddir/Images
|
|
|
|
cp -R $PWD/Tests $PWD/build/%py3_libbuilddir/Tests
|
|
|
|
cp -R $PWD/selftest.py $PWD/build/%py3_libbuilddir/selftest.py
|
|
|
|
pushd build/%py3_libbuilddir
|
|
|
|
PYTHONPATH=$PWD %{__python3} selftest.py
|
|
|
|
popd
|
|
|
|
|
|
|
|
|
|
|
|
%files -n python3-%{srcname}
|
|
|
|
%doc README.rst CHANGES.rst
|
|
|
|
%license docs/COPYING
|
|
|
|
%{python3_sitearch}/*
|
|
|
|
# These are in subpackages
|
|
|
|
%exclude %{python3_sitearch}/PIL/_imagingtk*
|
|
|
|
%exclude %{python3_sitearch}/PIL/ImageTk*
|
|
|
|
%exclude %{python3_sitearch}/PIL/SpiderImagePlugin*
|
|
|
|
%exclude %{python3_sitearch}/PIL/ImageQt*
|
|
|
|
%exclude %{python3_sitearch}/PIL/__pycache__/ImageTk*
|
|
|
|
%exclude %{python3_sitearch}/PIL/__pycache__/SpiderImagePlugin*
|
|
|
|
%exclude %{python3_sitearch}/PIL/__pycache__/ImageQt*
|
|
|
|
|
|
|
|
%files -n python3-%{srcname}-devel
|
|
|
|
%{py3_incdir}/Imaging/
|
|
|
|
|
|
|
|
%files -n python3-%{srcname}-doc
|
|
|
|
%if 0%{?with_docs}
|
|
|
|
%doc docs/_build_py3/html
|
|
|
|
%endif # with_docs
|
|
|
|
|
|
|
|
%files -n python3-%{srcname}-tk
|
|
|
|
%{python3_sitearch}/PIL/_imagingtk*
|
|
|
|
%{python3_sitearch}/PIL/ImageTk*
|
|
|
|
%{python3_sitearch}/PIL/SpiderImagePlugin*
|
|
|
|
%{python3_sitearch}/PIL/__pycache__/ImageTk*
|
|
|
|
%{python3_sitearch}/PIL/__pycache__/SpiderImagePlugin*
|
|
|
|
|
|
|
|
|
|
|
|
%changelog
|
|
|
|
* Fri Feb 11 2022 Charalampos Stratakis <cstratak@redhat.com> - 5.1.1-18
|
|
|
|
- Fixup for CVE-2022-22817
|
|
|
|
- Security fixes for CVE-2022-22815, CVE-2022-22816
|
|
|
|
Resolves: rhbz#2042522
|
|
|
|
|
|
|
|
* Fri Feb 04 2022 Charalampos Stratakis <cstratak@redhat.com> - 5.1.1-17
|
|
|
|
- Fix for CVE-2022-22817
|
|
|
|
Resolves: rhbz#2042527
|
|
|
|
|
|
|
|
* Mon Aug 02 2021 Charalampos Stratakis <cstratak@redhat.com> - 5.1.1-16
|
|
|
|
- Fix for CVE-2021-34552
|
|
|
|
Resolves: rhbz#1982378
|
|
|
|
|
|
|
|
* Mon Jun 14 2021 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-15
|
|
|
|
- Fixes for CVE-2021-25288, CVE-2021-25287, CVE-2021-28675, CVE-2021-28676,
|
|
|
|
CVE-2021-28677 and CVE-2021-28678
|
|
|
|
Resolves: rhbz#1958231, rhbz#1958226, rhbz#1958240, rhbz#1958252, rhbz#1958257, rhbz#1958263
|
|
|
|
|
|
|
|
* Fri Apr 09 2021 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-14
|
|
|
|
- Fixes for CVE-2021-25290, CVE-2021-25292, CVE-2021-25293, CVE-2021-27921
|
|
|
|
CVE-2021-27922, and CVE-2021-27923
|
|
|
|
Resolves: rhbz#1934685 rhbz#1934699 rhbz#1934705 rhbz#1935384 rhbz#1935396 rhbz#1935401
|
|
|
|
|
|
|
|
* Thu Feb 18 2021 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-13
|
|
|
|
- Fixes for CVE-2020-35653 and CVE-2020-35655
|
|
|
|
Resolves: rhbz#1915420 rhbz#1915432
|
|
|
|
|
|
|
|
* Mon Jul 13 2020 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-12
|
|
|
|
- Fix for CVE-2020-11538
|
|
|
|
Resolves: rhbz#1852814
|
|
|
|
|
|
|
|
* Wed Mar 04 2020 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-11
|
|
|
|
- Fix for CVE-2020-5313
|
|
|
|
Resolves: rhbz#1789532
|
|
|
|
|
|
|
|
* Mon Feb 17 2020 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-10
|
|
|
|
- Bump and rebuild for gating to deliver CVE fixes
|
|
|
|
Resolves: rhbz#1789535
|
|
|
|
|
|
|
|
* Mon Feb 17 2020 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-9
|
|
|
|
- Fix for CVE-2020-5311 - out-of-bounds write in expandrow
|
|
|
|
Resolves: rhbz#1789535
|
|
|
|
|
|
|
|
* Fri Feb 14 2020 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-8
|
|
|
|
- Combined fixes for CVE-2020-5312 and CVE-2019-16865
|
|
|
|
Resolves: rhbz#1789533
|
|
|
|
Resolves: rhbz#1774066
|
|
|
|
|
|
|
|
* Tue Nov 27 2018 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-7
|
|
|
|
- Add upstream patch to solve build-time warning
|
|
|
|
- Move patches to dist-git
|
|
|
|
- Resolves: rhbz#1639348
|
|
|
|
|
|
|
|
* Mon Oct 15 2018 Lumír Balhar <lbalhar@redhat.com> - 5.1.1-6
|
|
|
|
- Add patches to fix issues found by static code analysis
|
|
|
|
- Resolves: rhbz#1602669
|
|
|
|
|
|
|
|
* Wed Jun 27 2018 Petr Viktorin <pviktori@redhat.com> - 5.1.1-5
|
|
|
|
- Correct dependency on python3-tkinter
|
|
|
|
|
|
|
|
* Tue Jun 19 2018 Petr Viktorin <pviktori@redhat.com> - 5.1.1-4
|
|
|
|
- Drop dependency on python3-olefile (breaking MicImagePlugin.py, FpxImagePlugin)
|
|
|
|
|
|
|
|
* Thu Jun 14 2018 Petr Viktorin <pviktori@redhat.com> - 5.1.1-3
|
|
|
|
- Remove the Python 2 subpackage
|
|
|
|
- Remove the libimagequant dependency
|
|
|
|
The imagequant library was only used to support a non-default image
|
|
|
|
quantization mode.
|
|
|
|
|
|
|
|
* Thu May 31 2018 Petr Viktorin <pviktori@redhat.com> - 5.1.1-2
|
|
|
|
- Remove the python2 version of docs
|
|
|
|
- Remove Qt subpackages
|
|
|
|
- Drop dependency on python2-olefile (breaking MicImagePlugin.py, FpxImagePlugin)
|
|
|
|
|
|
|
|
* Wed Apr 25 2018 Sandro Mani <manisandro@gmail.com> - 5.1.1-1
|
|
|
|
- Update to 5.1.1
|
|
|
|
|
|
|
|
* Thu Apr 05 2018 Sandro Mani <manisandro@gmail.com> - 5.1.0-1
|
|
|
|
- Update to 5.1.0
|
|
|
|
|
|
|
|
* Wed Mar 07 2018 Sandro Mani <manisandro@gmail.com> - 5.0.0-3
|
|
|
|
- Add missing BR: gcc
|
|
|
|
|
|
|
|
* Fri Feb 09 2018 Fedora Release Engineering <releng@fedoraproject.org> - 5.0.0-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
|
|
|
|
|
|
|
|
* Wed Jan 03 2018 Sandro Mani <manisandro@gmail.com> - 5.0.0-1
|
|
|
|
- Update to 5.0.0
|
|
|
|
|
|
|
|
* Tue Oct 03 2017 Sandro Mani <manisandro@gmail.com> - 4.3.0-1
|
|
|
|
- Update to 4.3.0
|
|
|
|
|
|
|
|
* Tue Sep 05 2017 Troy Dawson <tdawson@redhat.com> - 4.2.1-5
|
|
|
|
- Cleanup spec file conditionals
|
|
|
|
|
|
|
|
* Thu Aug 03 2017 Fedora Release Engineering <releng@fedoraproject.org> - 4.2.1-4
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild
|
|
|
|
|
|
|
|
* Thu Jul 27 2017 Fedora Release Engineering <releng@fedoraproject.org> - 4.2.1-3
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild
|
|
|
|
|
|
|
|
* Fri Jul 07 2017 Igor Gnatenko <ignatenko@redhat.com> - 4.2.1-2
|
|
|
|
- Rebuild due to bug in RPM (RHBZ #1468476)
|
|
|
|
|
|
|
|
* Thu Jul 06 2017 Sandro Mani <manisandro@gmail.com> - 4.2.1-1
|
|
|
|
- Update to 4.2.1
|
|
|
|
|
|
|
|
* Sat Jul 01 2017 Sandro Mani <manisandro@gmail.com> - 4.2.0-1
|
|
|
|
- Update to 4.2.0
|
|
|
|
|
|
|
|
* Fri Apr 28 2017 Sandro Mani <manisandro@gmail.com> - 4.1.1-1
|
|
|
|
- Update to 4.1.1
|
|
|
|
|
|
|
|
* Wed Apr 05 2017 Sandro Mani <manisandro@gmail.com> - 4.1.0-1
|
|
|
|
- Update to 4.1.0
|
|
|
|
|
|
|
|
* Wed Feb 15 2017 Sandro Mani <manisandro@gmail.com> - 4.0.0-3
|
|
|
|
- Fix some __pycache__ files in wrong subpackage (#1422606)
|
|
|
|
|
|
|
|
* Wed Feb 01 2017 Sandro Mani <manisandro@gmail.com> - 4.0.0-2
|
|
|
|
- Rebuild (libwebp)
|
|
|
|
|
|
|
|
* Tue Jan 03 2017 Sandro Mani <manisandro@gmail.com> - 4.0.0-1
|
|
|
|
- Update to 4.0.0
|
|
|
|
|
|
|
|
* Mon Dec 12 2016 Miro Hrončok <mhroncok@redhat.com> - 3.4.2-3
|
|
|
|
- Enable docs build
|
|
|
|
|
|
|
|
* Mon Dec 12 2016 Miro Hrončok <mhroncok@redhat.com> - 3.4.2-2
|
|
|
|
- Rebuild for Python 3.6
|
|
|
|
|
|
|
|
* Wed Oct 19 2016 Sandro Mani <manisandro@gmail.com> - 3.4.2-1
|
|
|
|
- Update to 3.4.2
|
|
|
|
|
|
|
|
* Tue Oct 04 2016 Sandro Mani <manisandro@gmail.com> - 3.4.1-1
|
|
|
|
- Update to 3.4.1
|
|
|
|
|
|
|
|
* Mon Oct 03 2016 Sandro Mani <manisandro@gmail.com> - 3.4.0-1
|
|
|
|
- Update to 3.4.0
|
|
|
|
|
|
|
|
* Thu Aug 18 2016 Sandro Mani <manisandro@gmail.com> - 3.3.1-1
|
|
|
|
- Update to 3.3.1
|
|
|
|
|
|
|
|
* Tue Jul 19 2016 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 3.3.0-2
|
|
|
|
- https://fedoraproject.org/wiki/Changes/Automatic_Provides_for_Python_RPM_Packages
|
|
|
|
|
|
|
|
* Sat Jul 02 2016 Sandro Mani <manisandro@gmail.com> - 3.3.0-1
|
|
|
|
- Update to 3.3.0
|
|
|
|
- Modernize spec
|
|
|
|
|
|
|
|
* Fri Apr 01 2016 Sandro Mani <manisandro@gmail.com> - 3.2.0-1
|
|
|
|
- Update to 3.2.0
|
|
|
|
|
|
|
|
* Wed Feb 10 2016 Sandro Mani <manisandro@gmail.com> - 3.1.1-3
|
|
|
|
- Fix broken python3-pillow package description
|
|
|
|
|
|
|
|
* Sun Feb 07 2016 Igor Gnatenko <i.gnatenko.brain@gmail.com> - 3.1.1-2
|
|
|
|
- Fix provides
|
|
|
|
|
|
|
|
* Thu Feb 04 2016 Sandro Mani <manisandro@gmail.com> - 3.1.1-1
|
|
|
|
- Update to 3.1.1
|
|
|
|
- Fixes CVE-2016-0740, CVE-2016-0775
|
|
|
|
|
|
|
|
* Mon Jan 11 2016 Toshio Kuratomi <toshio@fedoraproject.org> - 3.1.0-2
|
|
|
|
- Fix executable files in doc package bringing in python 2 for the python3 doc
|
|
|
|
packages
|
|
|
|
|
|
|
|
* Mon Jan 04 2016 Sandro Mani <manisandro@gmail.com> - 3.1.0-1
|
|
|
|
- Update to 3.1.0
|
|
|
|
|
|
|
|
* Tue Dec 29 2015 Igor Gnatenko <i.gnatenko.brain@gmail.com> - 3.0.0-5
|
|
|
|
- Build with docs
|
|
|
|
|
|
|
|
* Mon Dec 28 2015 Igor Gnatenko <i.gnatenko.brain@gmail.com> - 3.0.0-4
|
|
|
|
- Rebuilt for libwebp soname bump
|
|
|
|
|
|
|
|
* Wed Oct 14 2015 Robert Kuska <rkuska@redhat.com> - 3.0.0-3
|
|
|
|
- Rebuilt for Python3.5 rebuild with docs
|
|
|
|
|
|
|
|
* Tue Oct 13 2015 Robert Kuska <rkuska@redhat.com> - 3.0.0-2
|
|
|
|
- Rebuilt for Python3.5 rebuild without docs
|
|
|
|
|
|
|
|
* Fri Oct 02 2015 Sandro Mani <manisandro@gmail.com> - 3.0.0-1
|
|
|
|
- Update to 3.0.0
|
|
|
|
|
|
|
|
* Wed Jul 29 2015 Sandro Mani <manisandro@gmail.com> - 2.9.0-2
|
|
|
|
- Fix python3-pillow-tk Requires: tkinter -> python3-tkinter (#1248085)
|
|
|
|
|
|
|
|
* Thu Jul 02 2015 Sandro Mani <manisandro@gmail.com> - 2.9.0-1
|
|
|
|
- Update to 2.9.0
|
|
|
|
|
|
|
|
* Thu Jun 18 2015 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.8.2-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
|
|
|
|
|
|
|
|
* Mon Jun 08 2015 Sandro Mani <manisandro@gmail.com> - 2.8.2-1
|
|
|
|
- Update to 2.8.2
|
|
|
|
|
|
|
|
* Thu Apr 02 2015 Sandro Mani <manisandro@gmail.com> - 2.8.1-1
|
|
|
|
- Update to 2.8.1
|
|
|
|
|
|
|
|
* Wed Apr 01 2015 Sandro Mani <manisandro@gmail.com> - 2.8.0-1
|
|
|
|
- Update to 2.8.0
|
|
|
|
|
|
|
|
* Mon Jan 12 2015 Sandro Mani <manisandro@gmail.com> - 2.7.0-1
|
|
|
|
- Update to 2.7.0
|
|
|
|
- Drop sane subpackage, is in python-sane now
|
|
|
|
- Fix python3 headers directory
|
|
|
|
- Drop Obsoletes: python3-pillow on python3-pillow-qt
|
|
|
|
|
|
|
|
* Mon Oct 13 2014 Sandro Mani <manisandro@gmail.com> - 2.6.1-1
|
|
|
|
- Update to 2.6.1
|
|
|
|
|
|
|
|
* Thu Oct 02 2014 Sandro Mani <manisandro@gmail.com> - 2.6.0-1
|
|
|
|
- Update to 2.6.0
|
|
|
|
|
|
|
|
* Wed Aug 20 2014 Sandro Mani <manisandro@gmail.com> - 2.5.3-3
|
|
|
|
- Rebuilding again to resolve transient build error that caused BZ#1131723
|
|
|
|
|
|
|
|
* Tue Aug 19 2014 Stephen Gallagher <sgallagh@redhat.com> - 2.5.3-2
|
|
|
|
- Rebuilding to resolve transient build error that caused BZ#1131723
|
|
|
|
|
|
|
|
* Tue Aug 19 2014 Sandro Mani <manisandro@gmail.com> - 2.5.3-1
|
|
|
|
- Update to 2.5.3 (Fix CVE-2014-3598, a DOS in the Jpeg2KImagePlugin)
|
|
|
|
|
|
|
|
* Sun Aug 17 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.5.2-2
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
|
|
|
|
|
|
|
|
* Wed Aug 13 2014 Sandro Mani <manisandro@gmail.com> - 2.5.2-1
|
|
|
|
- Update to 2.5.2 (Fix CVE-2014-3589, a DOS in the IcnsImagePlugin)
|
|
|
|
|
|
|
|
* Sat Jul 26 2014 Sandro Mani <manisandro@gmail.com> - 2.5.1-2
|
|
|
|
- Reenable jpeg2k tests on big endian arches
|
|
|
|
|
|
|
|
* Tue Jul 15 2014 Sandro Mani <manisandro@gmail.com> - 2.5.1-1
|
|
|
|
- Update to 2.5.1
|
|
|
|
|
|
|
|
* Wed Jul 02 2014 Sandro Mani <manisandro@gmail.com> - 2.5.0-1
|
|
|
|
- Update to 2.5.0
|
|
|
|
|
|
|
|
* Sat Jun 07 2014 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.0-11
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
|
|
|
|
|
|
|
|
* Wed May 28 2014 Sandro Mani <manisandro@gmail.com> - 2.4.0-10
|
|
|
|
- Rebuild with docs enabled
|
|
|
|
- Update python-pillow_openjpeg-2.1.0.patch
|
|
|
|
|
|
|
|
* Tue May 27 2014 Sandro Mani <manisandro@gmail.com> - 2.4.0-9
|
|
|
|
- Rebuild against openjpeg-2.1.0
|
|
|
|
|
|
|
|
* Fri May 23 2014 Dan Horák <dan[at]danny.cz> - 2.4.0-8
|
|
|
|
- skip jpeg2k tests on big endian arches (#1100762)
|
|
|
|
|
|
|
|
* Wed May 21 2014 Jaroslav Škarvada <jskarvad@redhat.com> - 2.4.0-7
|
|
|
|
- Rebuilt for https://fedoraproject.org/wiki/Changes/f21tcl86
|
|
|
|
|
|
|
|
* Tue May 13 2014 Bohuslav Kabrda <bkabrda@redhat.com> - 2.4.0-6
|
|
|
|
- Set with_docs to 1 to build docs.
|
|
|
|
|
|
|
|
* Tue May 13 2014 Bohuslav Kabrda <bkabrda@redhat.com> - 2.4.0-5
|
|
|
|
- Bootstrap building sphinx docs because of circular dependency with sphinx.
|
|
|
|
|
|
|
|
* Fri May 9 2014 Orion Poplawski <orion@cora.nwra.com> - 2.4.0-4
|
|
|
|
- Rebuild for Python 3.4
|
|
|
|
|
|
|
|
* Tue Apr 22 2014 Sandro Mani <manisandro@gmail.com> - 2.4.0-3
|
|
|
|
- Add patch: Have the tempfile use a suffix with a dot
|
|
|
|
|
|
|
|
* Thu Apr 17 2014 Sandro Mani <manisandro@gmail.com> - 2.4.0-2
|
|
|
|
- Enable Jpeg2000 support
|
|
|
|
- Enable webp support also on s390* archs, bug #962091 is now fixed
|
|
|
|
- Add upstream patch for ghostscript detection
|
|
|
|
|
|
|
|
* Wed Apr 02 2014 Sandro Mani <manisandro@gmail.com> - 2.4.0-1
|
|
|
|
- Update to 2.4.0
|
|
|
|
|
|
|
|
* Wed Mar 19 2014 Sandro Mani <manisandro@gmail.com> - 2.3.1-1
|
|
|
|
- Update to 2.3.1 (Fix insecure use of tempfile.mktemp (CVE-2014-1932 CVE-2014-1933))
|
|
|
|
|
|
|
|
* Thu Mar 13 2014 Jakub Dorňák <jdornak@redhat.com> - 2.3.0-5
|
|
|
|
- python-pillow does not provide python3-imaging
|
|
|
|
(python3-pillow does)
|
|
|
|
|
|
|
|
* Tue Jan 07 2014 Sandro Mani <manisandro@gmail.com> - 2.3.0-4
|
|
|
|
- Add missing ghostscript Requires and BuildRequires
|
|
|
|
|
|
|
|
* Mon Jan 06 2014 Sandro Mani <manisandro@gmail.com> - 2.3.0-3
|
|
|
|
- Remove python-pillow_help-theme.patch, add python-sphinx-theme-better BR
|
|
|
|
|
|
|
|
* Sun Jan 05 2014 Sandro Mani <manisandro@gmail.com> - 2.3.0-2
|
|
|
|
- Rebuild with docs enabled
|
|
|
|
- Change lcms BR to lcms2
|
|
|
|
|
|
|
|
* Thu Jan 02 2014 Sandro Mani <manisandro@gmail.com> - 2.3.0-1
|
|
|
|
- Update to 2.3.0
|
|
|
|
- Build with doc disabled to break circular python-pillow -> python-sphinx -> python pillow dependency
|
|
|
|
|
|
|
|
* Wed Oct 23 2013 Sandro Mani <manisandro@gmail.com> - 2.2.1-2
|
|
|
|
- Backport fix for decoding tiffs with correct byteorder, fixes rhbz#1019656
|
|
|
|
|
|
|
|
* Wed Oct 02 2013 Sandro Mani <manisandro@gmail.com> - 2.2.1-1
|
|
|
|
- Update to 2.2.1
|
|
|
|
- Really enable webp on ppc, but leave disabled on s390
|
|
|
|
|
|
|
|
* Thu Aug 29 2013 Sandro Mani <manisandro@gmail.com> - 2.1.0-4
|
|
|
|
- Add patch to fix incorrect PyArg_ParseTuple tuple signature, fixes rhbz#962091 and rhbz#988767.
|
|
|
|
- Renable webp support on bigendian arches
|
|
|
|
|
|
|
|
* Wed Aug 28 2013 Sandro Mani <manisandro@gmail.com> - 2.1.0-3
|
|
|
|
- Add patch to fix memory corruption caused by invalid palette size, see rhbz#1001122
|
|
|
|
|
|
|
|
* Tue Jul 30 2013 Karsten Hopp <karsten@redhat.com> 2.1.0-2
|
|
|
|
- Build without webp support on ppc* archs (#988767)
|
|
|
|
|
|
|
|
* Wed Jul 03 2013 Sandro Mani <manisandro@gmail.com> - 2.1.0-1
|
|
|
|
- Update to 2.1.0
|
|
|
|
- Run tests in builddir, not installroot
|
|
|
|
- Build python3-pillow docs with python3
|
|
|
|
- python-pillow_endian.patch upstreamed
|
|
|
|
|
|
|
|
* Mon May 13 2013 Roman Rakus <rrakus@redhat.com> - 2.0.0-10
|
|
|
|
- Build without webp support on s390* archs
|
|
|
|
Resolves: rhbz#962059
|
|
|
|
|
|
|
|
* Sat May 11 2013 Roman Rakus <rrakus@redhat.com> - 2.0.0-9.gitd1c6db8
|
|
|
|
- Conditionaly disable build of python3 parts on RHEL system
|
|
|
|
|
|
|
|
* Wed May 08 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-8.gitd1c6db8
|
|
|
|
- Add patch to fix test failure on big-endian
|
|
|
|
|
|
|
|
* Thu Apr 25 2013 Toshio Kuratomi <toshio@fedoraproject.org> - 2.0.0-7.gitd1c6db8
|
|
|
|
- Remove Obsoletes in the python-pillow-qt subpackage. Obsoletes isn't
|
|
|
|
appropriate since qt support didn't exist in the previous python-pillow
|
|
|
|
package so there's no reason to drag in python-pillow-qt when updating
|
|
|
|
python-pillow.
|
|
|
|
|
|
|
|
* Fri Apr 19 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-6.gitd1c6db8
|
|
|
|
- Update to latest git
|
|
|
|
- python-pillow_quantization.patch now upstream
|
|
|
|
- python-pillow_endianness.patch now upstream
|
|
|
|
- Add subpackage for ImageQt module, with correct dependencies
|
|
|
|
- Add PyQt4 and numpy BR (for generating docs / running tests)
|
|
|
|
|
|
|
|
* Mon Apr 08 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-5.git93a488e
|
|
|
|
- Reenable tests on bigendian, add patches for #928927
|
|
|
|
|
|
|
|
* Sun Apr 07 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-4.git93a488e
|
|
|
|
- Update to latest git
|
|
|
|
- disable tests on bigendian (PPC*, S390*) until rhbz#928927 is fixed
|
|
|
|
|
|
|
|
* Fri Mar 22 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-3.gitde210a2
|
|
|
|
- python-pillow_tempfile.patch now upstream
|
|
|
|
- Add python3-imaging provides (bug #924867)
|
|
|
|
|
|
|
|
* Fri Mar 22 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-2.git2e88848
|
|
|
|
- Update to latest git
|
|
|
|
- Remove python-pillow-disable-test.patch, gcc is now fixed
|
|
|
|
- Add python-pillow_tempfile.patch to prevent a temporary file from getting packaged
|
|
|
|
|
|
|
|
* Tue Mar 19 2013 Sandro Mani <manisandro@gmail.com> - 2.0.0-1.git2f4207c
|
|
|
|
- Update to 2.0.0 git snapshot
|
|
|
|
- Enable python3 packages
|
|
|
|
- Add libwebp-devel BR for Pillow 2.0.0
|
|
|
|
|
|
|
|
* Wed Mar 13 2013 Peter Robinson <pbrobinson@fedoraproject.org> 1.7.8-6.20130305git
|
|
|
|
- Add ARM support
|
|
|
|
|
|
|
|
* Tue Mar 12 2013 Karsten Hopp <karsten@redhat.com> 1.7.8-5.20130305git
|
|
|
|
- add s390* and ppc* to arch detection
|
|
|
|
|
|
|
|
* Tue Mar 05 2013 Sandro Mani <manisandro@gmail.com> - 1.7.8-4.20130305git7866759
|
|
|
|
- Update to latest git snapshot
|
|
|
|
- 0001-Cast-hash-table-values-to-unsigned-long.patch now upstream
|
|
|
|
- Pillow-1.7.8-selftest.patch now upstream
|
|
|
|
|
|
|
|
* Mon Feb 25 2013 Sandro Mani <manisandro@gmail.com> - 1.7.8-3.20130210gite09ff61
|
|
|
|
- Really remove -fno-strict-aliasing
|
|
|
|
- Place comment on how to retreive source just above the Source0 line
|
|
|
|
|
|
|
|
* Mon Feb 18 2013 Sandro Mani <manisandro@gmail.com> - 1.7.8-2.20130210gite09ff61
|
|
|
|
- Rebuild without -fno-strict-aliasing
|
|
|
|
- Add patch for upstream issue #52
|
|
|
|
|
|
|
|
* Sun Feb 10 2013 Sandro Mani <manisandro@gmail.com> - 1.7.8-1.20130210gite09ff61
|
|
|
|
- Initial RPM package
|