Bug 2155769

Summary: pgadmin4: Update bundled mozjpeg for security fixes, C99 compatibility
Product: [Fedora] Fedora Reporter: Florian Weimer <fweimer>
Component: pgadmin4Assignee: Sandro Mani <manisandro>
Status: CLOSED RAWHIDE QA Contact:
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: rawhideCC: manisandro
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: pgadmin4-6.18-1.fc38 Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2023-01-03 22:55:40 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2137512    

Description Florian Weimer 2022-12-22 10:09:34 UTC 
There is a bundled copy of mozjpeg here:

package-cache/v6/npm-mozjpeg-8.0.0-cd990d96581626ca64b877146ce22ba00b3b308c-integrity/node_modules/mozjpeg/vendor/source/mozjpeg.tar.gz

It's from 2017, so it lacks quite a few security fixes.

Newer mozjpeg releases also fix a C99 compatibility issue in the right-shift-is-signed check (implicit declaration of the exit function).
Comment 1 Sandro Mani 2023-01-03 22:55:40 UTC 
Done in pgadmin4-6.18-1.fc38.
Comment 2 Florian Weimer 2023-01-04 07:57:54 UTC 
Thanks, fix verified.