Releases retrieved: 2.1.5, 2.1.90 Upstream release that is considered latest: 2.1.90 Current version/release in rawhide: 2.1.4-2.fc38 URL: https://libjpeg-turbo.org Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_Monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/1648/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/libjpeg-turbo
Created attachment 1941636 [details] Update to 2.1.90 (#2166459)
the-new-hotness/release-monitoring.org's scratch build of libjpeg-turbo-2.1.90-1.fc36.src.rpm for rawhide failed http://koji.fedoraproject.org/koji/taskinfo?taskID=96978078
Releases retrieved: 2.1.5.1, 2.1.91 Upstream release that is considered latest: 2.1.91 Current version/release in rawhide: 2.1.4-2.fc38 URL: https://libjpeg-turbo.org Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_Monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/1648/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/libjpeg-turbo
Created attachment 1943115 [details] Update to 2.1.91 (#2166459)
the-new-hotness/release-monitoring.org's scratch build of libjpeg-turbo-2.1.91-1.fc36.src.rpm for rawhide failed http://koji.fedoraproject.org/koji/taskinfo?taskID=97311178
Releases retrieved: 3.0.0 Upstream release that is considered latest: 3.0.0 Current version/release in rawhide: 2.1.4-2.fc38 URL: https://libjpeg-turbo.org Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_Monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/1648/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/libjpeg-turbo
Created attachment 1974035 [details] Update to 3.0.0 (#2166459)
the-new-hotness/release-monitoring.org's scratch build of libjpeg-turbo-3.0.0-1.fc38.src.rpm for rawhide failed http://koji.fedoraproject.org/koji/taskinfo?taskID=102928692
(In reply to Upstream Release Monitoring from comment #3) > Releases retrieved: 2.1.5.1 > Upstream release that is considered latest: 2.1.91 > Current version/release in rawhide: 2.1.4-2.fc38 > URL: https://libjpeg-turbo.org > Based on the information from Anitya: https://release-monitoring.org/project/1648/ > To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/libjpeg-turbo https://github.com/libjpeg-turbo/libjpeg-turbo/releases/tag/2.1.5.1 * Significant changes relative to 2.1.5 - The SIMD dispatchers in libjpeg-turbo 2.1.4 and prior stored the list of supported SIMD instruction sets in a global variable, which caused an innocuous race condition whereby the variable could have been initialized multiple times if jpeg_start_*compress() was called simultaneously in multiple threads. libjpeg-turbo 2.1.5 included an undocumented attempt to fix this race condition by making the SIMD support variable thread-local. However, that caused another issue whereby, if jpeg_start_*compress() was called in one thread and jpeg_read_*() or jpeg_write_*() was called in a second thread, the SIMD support variable was never initialized in the second thread. On x86 systems, this led the second thread to incorrectly assume that AVX2 instructions were always available, and when it attempted to use those instructions on older x86 CPUs that do not support them, an illegal instruction error occurred. The SIMD dispatchers now ensure that the SIMD support variable is initialized before dispatching based on its value. * Significant changes relative to 2.1.4 - Fixed issues in the build system whereby, when using the Ninja Multi-Config CMake generator, a static build of libjpeg-turbo (a build in which ENABLE_SHARED is 0) could not be installed, a Windows installer could not be built, and the Java regression tests failed. - Fixed a regression introduced by 2.0 beta1[15] that caused a buffer overrun in the progressive Huffman encoder when attempting to transform a specially-crafted malformed 12-bit-per-component JPEG image into a progressive 12-bit-per-component JPEG image using a 12-bit-per-component build of libjpeg-turbo (-DWITH_12BIT=1.) Given that the buffer overrun was fully contained within the progressive Huffman encoder structure and did not cause a segfault or other user-visible errant behavior, given that the lossless transformer (unlike the decompressor) is not generally exposed to arbitrary data exploits, and given that 12-bit-per-component builds of libjpeg-turbo are uncommon, this issue did not likely pose a security risk. - Fixed an issue whereby, when using a 12-bit-per-component build of libjpeg-turbo (-DWITH_12BIT=1), passing samples with values greater than 4095 or less than 0 to jpeg_write_scanlines() caused a buffer overrun or underrun in the RGB-to-YCbCr color converter. - Fixed a floating point exception that occurred when attempting to use the jpegtran -drop and -trim options to losslessly transform a specially-crafted malformed JPEG image. - Fixed an issue in tjBufSizeYUV2() whereby it returned a bogus result, rather than throwing an error, if the align parameter was not a power of 2. Fixed a similar issue in tjCompressFromYUV() whereby it generated a corrupt JPEG image in certain cases, rather than throwing an error, if the align parameter was not a power of 2. - Fixed an issue whereby tjDecompressToYUV2(), which is a wrapper for tjDecompressToYUVPlanes(), used the desired YUV image dimensions rather than the actual scaled image dimensions when computing the plane pointers and strides to pass to tjDecompressToYUVPlanes(). This caused a buffer overrun and subsequent segfault if the desired image dimensions exceeded the scaled image dimensions. - Fixed an issue whereby, when decompressing a 12-bit-per-component JPEG image (-DWITH_12BIT=1) using an alpha-enabled output color space such as JCS_EXT_RGBA, the alpha channel was set to 255 rather than 4095. - Fixed an issue whereby the Java version of TJBench did not accept a range of quality values. - Fixed an issue whereby, when -progressive was passed to TJBench, the JPEG input image was not transformed into a progressive JPEG image prior to decompression.
Releases retrieved: 3.0.1 Upstream release that is considered latest: 3.0.1 Current version/release in rawhide: 2.1.4-3.fc39 URL: https://libjpeg-turbo.org Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_Monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/1648/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/libjpeg-turbo
Created attachment 1994248 [details] Update to 3.0.1 (#2166459)
the-new-hotness/release-monitoring.org's scratch build of libjpeg-turbo-3.0.1-1.fc38.src.rpm for rawhide failed http://koji.fedoraproject.org/koji/taskinfo?taskID=107629951
Is this a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=2166459
Releases retrieved: 3.0.2 Upstream release that is considered latest: 3.0.2 Current version/release in rawhide: 2.1.4-3.fc39 URL: https://libjpeg-turbo.org Please consult the package updates policy before you issue an update to a stable branch: https://docs.fedoraproject.org/en-US/fesco/Updates_Policy/ More information about the service that created this bug can be found at: https://docs.fedoraproject.org/en-US/package-maintainers/Upstream_Release_Monitoring Please keep in mind that with any upstream change, there may also be packaging changes that need to be made. Specifically, please remember that it is your responsibility to review the new version to ensure that the licensing is still correct and that no non-free or legally problematic items have been added upstream. Based on the information from Anitya: https://release-monitoring.org/project/1648/ To change the monitoring settings for the project, please visit: https://src.fedoraproject.org/rpms/libjpeg-turbo
Scratch build failed. Details below: BuilderException: Build failed: Command '['rpmbuild', '-D', '_sourcedir .', '-D', '_topdir .', '-bs', '/var/tmp/thn-g75719zl/libjpeg-turbo.spec']' returned non-zero exit status 1. StdOut: setting SOURCE_DATE_EPOCH=1706140800 error: Bad file: ./libjpeg-turbo-3.0.2.tar.gz: No such file or directory RPM build errors: Bad file: ./libjpeg-turbo-3.0.2.tar.gz: No such file or directory Traceback: File "/usr/local/lib/python3.11/site-packages/hotness/use_cases/package_scratch_build_use_case.py", line 56, in build result = self.builder.build(request.package, request.opts) ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ File "/usr/local/lib/python3.11/site-packages/hotness/builders/koji.py", line 229, in build raise BuilderException( If you think this issue is caused by some bug in the-new-hotness, please report it on the-new-hotness issue tracker: https://github.com/fedora-infra/the-new-hotness/issues
Created attachment 2010404 [details] Update to 3.0.2 (#2166459)
Could it be updated to 2.1.5 for fc40?. Thanks.