Up to [cvs.NetBSD.org] / pkgsrc / graphics / openjpeg
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
openjpeg: updated to 2.5.3 OpenJPEG 2.5.3 This is mainly a bugfix release, as detailed in the Changelog hereunder, with a few new features: Use TLM (Tile Length Marker) segments to optimize decoding Add AVX2 and AVX512 optimization Support setting enumcs for CMYK and EYCC color space
openjpeg: update to 2.5.2. ## OpenJPEG 2.5.2 (Feb 2024) No API/ABI break compared to v2.5.1 * Make sure openjpeg.h includes opj_config.h [\#1514](https://github.com/uclouvain/openjpeg/issues/1514)
openjpeg: fix API change in 2.5.1 release using (to-be) upstream patch Bump PKGREVISION
openjpeg: updated to 2.5.1 OpenJPEG 2.5.1 (Feb 2024) No API/ABI break compared to v2.5.0 CMake: drop support for cmake < 3.5 Several bugfixes, including CVE-2021-3575 Significant speed-up rate allocation by rate/distoratio ratio
recursive revbump for tiff update
*: convert to cmake/build.mk
*: recursive bump for tiff shlib major bump
openjpeg: updated to 2.5.0 v2.5.0 Merged pull requests: tools/travis-ci/install.sh: git clone with https:// to fix 'The unaut… Java Support 1.8 now... Separate fuzz targets to increase coverage CMakeLists.txt: do not set INSTALL_NAME_DIR for MacOS builds for CMake >= 3.0 (fixes Avoid integer overflows in DWT. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=44544 Updated "added support for partial bitstream decoding" opj_encoder_set_extra_options(): add a GUARD_BITS=value option More overflow related bug fixes opj_j2k_setup_encoder(): validate number of tiles to avoid illegal values and potential overflow (fixes Missed conversion from unsigned int to OPJ_INT32 Added check for integer overflow in get_num_images Added overflow check for CVE-2021-29338 Fix integer overflow in num_images Remove duplicate assignments in function tiftoimage Fix some typos (found by codespell) CI: Add CIFuzz action Feature/decimation API: deprecate 'bpp' member in favor of 'prec' Added support for high throughput (HTJ2K) decoding. verify-indentation.sh: fix for pull request from bar/master to foo/master Change integer for version libtiff 4.3.0 Port continuous integration to github actions Avoid integer overflows in DWT. LGTM warning: Comparison result is always the same A couple typos found by codespell cmake: add install interface include directory fix issues 1368: exist a issues of freeing uninitialized pointer in src/bin/jp2/opj_decompress.c,that will cause a segfault opj_j2k_is_imf_compliant: Fix out of bounds access opj_j2k_is_imf_compliant: Fix argument formatting for warnings. CMakeLists.txt/appveyor.yml: update version number to 2.5.0… .travis.yml: try to fix gcc 4.8 config by updating to xenial Add support for enabling generation of TLM markers in encoder Fix various compiler warnings fix Remove obsolete components JPWL, JP3D and MJ2 tools/travis-ci/install.sh: fix links to Kakadu and jpylyzer binaries emscripten: disable big endian test Fix cmake file with DESTDIR CMakeLists.txt: Don't require a C++ compiler Import files tiff and yuv(raw) Fix year in NEWS Fix lcms2 static linking using pgk config fix static build only against tiff and its indirect dependencies Closed issues: integer constant is too large for 'long' type Openjpeg3D lossy compression not working mj2: Array overflow OPJ fails to decode image that KDU manages correctly yuvtoimage() bug in v1 and v2 for 16-Bit: please apply ASAP JP3D: Fix CVE-2013-4289 CVE-2013-4290 MJ2 libraries are installed in lib MJ2: realloc is misused and may leak memory MJ2 wrapper not functional JPWL is broken in trunk MJ2 files not using OPENJPEG API correctly Maximum bit depth supported by the OpenJPEG implementation of JP3D does openjpeg support either visually lossless or numerically lossless jpeg2000 compression? extract jpeg2000 tile without decompression openjpeg doesn't install a relocatable shared lib on macOS pull request - the cinema industry awaits! Integer overflows in j2K why lossly compression performance worse than jpeg when compress png? cect the docs don't describe bpp and prec in opj_image_comp very well converting .png to .jp2 by opj_compress is different from the original image Comparison result is always the same Exist a issues of freeing uninitialized pointer in src/bin/jp2/opj_decompress.c,that will cause a segfault [TEST NOT RUNNING]: bigendian test opj_decompress 2.4.0 built with library 2.3.0. New library htjpeg2000 Integer Overflow in num_images All IMF Profile Selections Result in PART1 grayscale image error C2169: 'lrintf': intrinsic function, cannot be defined Generate lower-case extension color of reconstructed png file much darker CVE-2019-6988, CVE-2018-20846 and CVE-2018-16376 opj 2.4.0: opj_free missing in opj3d Not able to compress volumetric data HTML documents are not installed in specified place Can't find openjpeg.h when cross-compile. OpenJPEG is available with EasyConfig Building Test Programs Builds are not reproducible strange behaviour of opj_jp3d_compress/decompress utility Potential heap-based buffer overflow in function t2_encode_packet in src/lib/openmj2/t2.c and src/lib/openjp3d/t2.c Function tgatoimage in src/bin/jpwl/convert.c need to check that the file is big enough to avoid excessive memory allocations memory & cpu are exhausted when converting jp2 file into png Cannot compress PGX into JP3D despite following the directions? sscanf buffer overflow in opj_jp3d_compress.c integer underflow may lead to writing garbage sscanf buffer overflow strcpy overflows sprintf buffer overflows strcpy buffer overflow integer overflow in malloc() out of bounds writes out of bounds writes divide by zero, perhaps multiplication overflow missing format string parameter leaks from cppcheck in lib folder How to initialize DEBUG_PROFILE in color.c? JP3D sample files BIG_ENDIAN bug in jpwl.c OpenJPEG fails to decode partial j2c where kdu succeeds building mj2 binaries fails openmj2\mj2.c: Out of bounds bin\mj2\opj_mj2_decompress.c 101 wrong check / leak
Revbump for MySQL default change
openjpeg: updated to 2.4.0 OpenJPEG 2.4.0 No API/ABI break compared to v2.3.1, but additional symbols for subset of components decoding (hence the MINOR version bump). Encoder: add support for multithreading Encoder: add support for generation of PLT markers Encoder: single-threaded performance improvements in forward DWT for 5-3 and 9-7 (and other improvements) Encoder: support IMF profiles Many bug fixes (including security fixes)
Pullup ticket #6193 - requested by nia graphics/openjpeg: security fix Revisions pulled up: - graphics/openjpeg/Makefile 1.21 - graphics/openjpeg/distinfo 1.18 - graphics/openjpeg/patches/patch-src_lib_openjp2_j2k.c 1.1 - graphics/openjpeg/patches/patch-src_lib_openjp2_tcd.c 1.1 --- Module Name: pkgsrc Committed By: nia Date: Tue May 12 10:44:46 UTC 2020 Modified Files: pkgsrc/graphics/openjpeg: Makefile distinfo Added Files: pkgsrc/graphics/openjpeg/patches: patch-src_lib_openjp2_j2k.c patch-src_lib_openjp2_tcd.c Log Message: openjpeg: Cherrypick fixes for the following CVEs from upstream: https://nvd.nist.gov/vuln/detail/CVE-2020-6851 - out-of-bounds-write https://nvd.nist.gov/vuln/detail/CVE-2020-8112 - heap-overflow Please make releases for your software. :/ Bump PKGREVISION
openjpeg: Cherrypick fixes for the following CVEs from upstream: https://nvd.nist.gov/vuln/detail/CVE-2020-6851 - out-of-bounds-write https://nvd.nist.gov/vuln/detail/CVE-2020-8112 - heap-overflow Please make releases for your software. :/ Bump PKGREVISION
all: migrate homepages from http to https pkglint -r --network --only "migrate" As a side-effect of migrating the homepages, pkglint also fixed a few indentations in unrelated lines. These and the new homepages have been checked manually.
Pullup ticket #6111 - requested by sevan graphics/openjpeg: security fix Revisions pulled up: - graphics/openjpeg/Makefile 1.19 - graphics/openjpeg/distinfo 1.17 - graphics/openjpeg/patches/patch-src_bin_jp2_convertbmp.c 1.1 --- Module Name: pkgsrc Committed By: sevan Date: Tue Jan 7 20:19:46 UTC 2020 Modified Files: pkgsrc/graphics/openjpeg: Makefile distinfo Added Files: pkgsrc/graphics/openjpeg/patches: patch-src_bin_jp2_convertbmp.c Log Message: Patch for CVE-2019-12973
Patch for CVE-2019-12973
Patch for CVE-2018-16376
Pullup ticket #5932 - requested by taca graphics/openjpeg: security fix Revisions pulled up: - graphics/openjpeg/Makefile 1.17 - graphics/openjpeg/distinfo 1.14 --- Module Name: pkgsrc Committed By: adam Date: Wed Apr 3 08:04:08 UTC 2019 Modified Files: pkgsrc/graphics/openjpeg: Makefile distinfo Log Message: openjpeg: updated to 2.3.1 v2.3.1: v2.2.0 regression for decoding images where TNsot == 0 Int overflow in jp3d Heap buffer overflow in opj_j2k_update_image_data() triggered with Ghostscript LINUX install doesn't work when building shared libraries is disabled OPENJPEG null ptr dereference in openjpeg-2.3.0/src/bin/jp2/convert.c:2243 How to drop certain subbands/layers in DWT where is the MQ-Coder ouput stream in t2.c? OpenJPEG 2.3 (and 2.2?) multi component image fails to decode with KDU v7.10 Missing checks for header_info.height and header_info.width in function pnmtoimage in src/bin/jpwl/convert.c, which can lead to heap buffer overflow Assertion Failure in jp2.c Division-by-zero vulnerabilities in the function pi_next_pcrl, pi_next_cprl and pi_next_rpcl in src/lib/openjp3d/pi.c Precinct switch (-c) doesn't right-shift last record to remaining resolution levels Sample: encode J2K a data using streams??? HIGH THROUGHPUT JPEG 2000 (HTJ2K) How to build openjpeg for arm linux? crash JP2000 returning OPJ_CLRSPC_UNKNOWN color space Compilation successful but install unsuccessful: Calling executables throws libraries missing error fprintf format string requires 1 parameter but only 0 are given fprintf format string requires 1 parameter but only 0 are given sprintf buffer overflow sprintf buffer overflow Infinite loop when reading jp2 missing format string parameter Excessive Iteration in opj_t1_encode_cblks (src/lib/openjp2/t1.c) Out-of-bound left shift in opj_j2k_setup_encoder (src/lib/openjp2/j2k.c) Encode image on Unsplash Integer overflow in opj_t1_encode_cblks (src/lib/openjp2/t1.c) Signed Integer Overflow - 68065512 Similar vulnerable functions related to CVE-2017-14041 [ERROR] COD marker already read. No more than one COD marker per tile. failing to install latest version of openjpeg from source Trouble compressing large raw image Download and installed code from 2.3 archive. Installing 2.2? missing fclose NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) Heap Buffer Overflow in function imagetotga of convert.c(jp2):942 Merged pull requests: abi-check.sh: fix broken download URL opj_t1_encode_cblks: fix UBSAN signed integer overflow convertbmp: detect invalid file dimensions early (CVE-2018-6616) color_apply_icc_profile: avoid potential heap buffer overflow Fix multiple potential vulnerabilities and bugs Fix several memory and resource leaks Fix some potential overflow issues jp3d/jpwl convert: fix write stack buffer overflow Int overflow fixed Update knownfailures- files given current configurations CVE-2018-5785: fix issues with zero bitmasks openjp2/jp2: Fix two format strings Changes in pnmtoimage if image data are missing Relative path to header files is hardcoded in OpenJPEGConfig.cmake.in file Cast on uint ceildiv Add -DBUILD_PKGCONFIG_FILES to install instructions Fix some typos in code comments and documentation Fix regression in reading files with TNsot == 0 (refs Use local type declaration for POSIX standard type only for MS compiler Fix Mac builds jp3d: Replace sprintf() by snprintf() in volumetobin() opj_mj2_extract: Rename output_location to output_prefix mj2: Add missing variable to format string in fprintf() invocation in meta_out.c Convert files to UTF-8 encoding fix unchecked integer multiplication overflow Fixed typos Note that seek uses SEEK_SET behavior. Some Doxygen tags are removed Fix resource leak (CID 179466) Changed cmake version test to allow for cmake 2.8.11.x Add missing fclose() statement in error condition.
openjpeg: updated to 2.3.1 v2.3.1: v2.2.0 regression for decoding images where TNsot == 0 Int overflow in jp3d Heap buffer overflow in opj_j2k_update_image_data() triggered with Ghostscript LINUX install doesn't work when building shared libraries is disabled OPENJPEG null ptr dereference in openjpeg-2.3.0/src/bin/jp2/convert.c:2243 How to drop certain subbands/layers in DWT where is the MQ-Coder ouput stream in t2.c? OpenJPEG 2.3 (and 2.2?) multi component image fails to decode with KDU v7.10 Missing checks for header_info.height and header_info.width in function pnmtoimage in src/bin/jpwl/convert.c, which can lead to heap buffer overflow Assertion Failure in jp2.c Division-by-zero vulnerabilities in the function pi_next_pcrl, pi_next_cprl and pi_next_rpcl in src/lib/openjp3d/pi.c Precinct switch (-c) doesn't right-shift last record to remaining resolution levels Sample: encode J2K a data using streams??? HIGH THROUGHPUT JPEG 2000 (HTJ2K) How to build openjpeg for arm linux? crash JP2000 returning OPJ_CLRSPC_UNKNOWN color space Compilation successful but install unsuccessful: Calling executables throws libraries missing error fprintf format string requires 1 parameter but only 0 are given fprintf format string requires 1 parameter but only 0 are given sprintf buffer overflow sprintf buffer overflow Infinite loop when reading jp2 missing format string parameter Excessive Iteration in opj_t1_encode_cblks (src/lib/openjp2/t1.c) Out-of-bound left shift in opj_j2k_setup_encoder (src/lib/openjp2/j2k.c) Encode image on Unsplash Integer overflow in opj_t1_encode_cblks (src/lib/openjp2/t1.c) Signed Integer Overflow - 68065512 Similar vulnerable functions related to CVE-2017-14041 [ERROR] COD marker already read. No more than one COD marker per tile. failing to install latest version of openjpeg from source Trouble compressing large raw image Download and installed code from 2.3 archive. Installing 2.2? missing fclose NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) Heap Buffer Overflow in function imagetotga of convert.c(jp2):942 Merged pull requests: abi-check.sh: fix broken download URL opj_t1_encode_cblks: fix UBSAN signed integer overflow convertbmp: detect invalid file dimensions early (CVE-2018-6616) color_apply_icc_profile: avoid potential heap buffer overflow Fix multiple potential vulnerabilities and bugs Fix several memory and resource leaks Fix some potential overflow issues jp3d/jpwl convert: fix write stack buffer overflow Int overflow fixed Update knownfailures- files given current configurations CVE-2018-5785: fix issues with zero bitmasks openjp2/jp2: Fix two format strings Changes in pnmtoimage if image data are missing Relative path to header files is hardcoded in OpenJPEGConfig.cmake.in file Cast on uint ceildiv Add -DBUILD_PKGCONFIG_FILES to install instructions Fix some typos in code comments and documentation Fix regression in reading files with TNsot == 0 (refs Use local type declaration for POSIX standard type only for MS compiler Fix Mac builds jp3d: Replace sprintf() by snprintf() in volumetobin() opj_mj2_extract: Rename output_location to output_prefix mj2: Add missing variable to format string in fprintf() invocation in meta_out.c Convert files to UTF-8 encoding fix unchecked integer multiplication overflow Fixed typos Note that seek uses SEEK_SET behavior. Some Doxygen tags are removed Fix resource leak (CID 179466) Changed cmake version test to allow for cmake 2.8.11.x Add missing fclose() statement in error condition.
openjpeg: update to 2.3.0 OpenJPEG 2.3.0: No API/ABI break compared to v2.2.0 but additional symbols for subset of components decoding (hence the MINOR version bump). * Sub-tile decoding: when setting a window of interest through the API function opj_set_decode_area(), only codeblocks that intersect this window are now decoded (i.e. MCT, IDWT, and entropy decoding are only done on the window of interest). Moreover, memory allocation now depends on the size of the window of interest (instead of the full tile size). * Ability to decode only a subset of components. This adds the following function opj_set_decoded_components(opj_codec_t p_codec, OPJ_UINT32 numcomps, const OPJ_UINT32 comps_indices, OPJ_BOOL apply_color_transforms) and equivalent opj_decompress -c compno[,compno]* option. * Many bug fixes (including security fixes)
OpenJPEG 2.2.0: This new release includes a significant number of improvements and bug fixes. In particular: * Multi-threading support at decoding side * Several speed optimisations both at encoder and decoder, and both on Wavelet Transform and Entropy Coding parts. On our test set, a single-threaded execution is now around 20% faster (encoding or decoding). * Huge memory consumption reduction at decoding side (~60% reduction on large images) * Several important bug fixes, in particular the one that was preventing OpenJPEG to encode lossless in some specific situations, as well as those related to mode switches (BYPASS/LAZY, RESTART/TERMALL, etc). * Several security fixes thanks to the inclusion of OpenJPEG in the Google OSS Fuzz project. Beside that, several improvements have been brought to the project maintenance, like inclusion of benchmarking scripts to compare speed with latest available kakadu binaries. And, last but not least, API and ABI are 100% compatible with previous version.
Pullup ticket #5133 - requested by bsiegert graphics/openjpeg: security update Revisions pulled up: - graphics/openjpeg/Makefile 1.14 - graphics/openjpeg/distinfo 1.11 - graphics/openjpeg/patches/patch-src_lib_openjp2_CMakeLists.txt 1.2 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: adam Date: Tue Oct 4 19:27:10 UTC 2016 Modified Files: pkgsrc/graphics/openjpeg: Makefile distinfo pkgsrc/graphics/openjpeg/patches: patch-src_lib_openjp2_CMakeLists.txt Log Message: v2.1.2 (2016-09-28) Closed issues: null ptr dereference in convert.c:1331 Out-of-Bounds Read in function bmp24toimage of convertbmp.c Disable automatic compilation of t1_generate_luts in CMakeLists.txt CVE-2016-7163 Integer overflow in opj_pi_create_decode Security Advisory for OpenJPEG Add dashboard with static lib hidden visibility for the static library / building with -DOPJ_STATIC against shared lib Optimization when building library from source unsigned int16 on Solaris 11.2/sparc appveyor Please make a new release FFMpeg will not link to 2.1.1 release built as shared library API change since v2: opj_event_mgr_t not available openjpeg.h needs dependencies "master" does not build on ubuntu Package 'openjp2', required by 'libopenjpip', not found Merged pull requests: Fix PNM file reading Fix some issues reported by Coverity Scan Fix potential out-of-bounds read (coverity) Remove TODO for overflow check Add overflow checks for opj_aligned_malloc Flags in T1 shall be unsigned Fix some warnings Fix issue 833. Add overflow checks for opj_aligned_malloc Add test for issue 820 Add test for issue 826 Fix coverity 113065 (CWE-484) Add sanity check for tile coordinates Add test for P-R-818 Update to libpng 1.6.25 fix incrementing of "l_tcp->m_nb_mcc_records" in opj_j2k_read_mcc Add overflow check in opj_tcd_init_tile Fix leak & invalid behavior of opj_jp2_read_ihdr Add overflow check in opj_j2k_update_image_data Change 'restrict' define to 'OPJ_RESTRICT' Switch to clang 3.8 Fix an integer overflow issue Update to lcms 2.8 Update to libpng 1.6.24 Reenable clang-3.9 build on travis Bit fields type Add compilation test for standalone inclusion of openjpeg.h jpwl: Remove non-portable data type u_int16_t Fix dependency for pkg-config Add .gitignore To generate a diff of this commit: cvs rdiff -u -r1.13 -r1.14 pkgsrc/graphics/openjpeg/Makefile cvs rdiff -u -r1.10 -r1.11 pkgsrc/graphics/openjpeg/distinfo cvs rdiff -u -r1.1 -r1.2 \ pkgsrc/graphics/openjpeg/patches/patch-src_lib_openjp2_CMakeLists.txt
v2.1.2 (2016-09-28) Closed issues: null ptr dereference in convert.c:1331 Out-of-Bounds Read in function bmp24toimage of convertbmp.c Disable automatic compilation of t1_generate_luts in CMakeLists.txt CVE-2016-7163 Integer overflow in opj_pi_create_decode Security Advisory for OpenJPEG Add dashboard with static lib hidden visibility for the static library / building with -DOPJ_STATIC against shared lib Optimization when building library from source unsigned int16 on Solaris 11.2/sparc appveyor Please make a new release FFMpeg will not link to 2.1.1 release built as shared library API change since v2: opj_event_mgr_t not available openjpeg.h needs dependencies "master" does not build on ubuntu Package 'openjp2', required by 'libopenjpip', not found Merged pull requests: Fix PNM file reading Fix some issues reported by Coverity Scan Fix potential out-of-bounds read (coverity) Remove TODO for overflow check Add overflow checks for opj_aligned_malloc Flags in T1 shall be unsigned Fix some warnings Fix issue 833. Add overflow checks for opj_aligned_malloc Add test for issue 820 Add test for issue 826 Fix coverity 113065 (CWE-484) Add sanity check for tile coordinates Add test for P-R-818 Update to libpng 1.6.25 fix incrementing of "l_tcp->m_nb_mcc_records" in opj_j2k_read_mcc Add overflow check in opj_tcd_init_tile Fix leak & invalid behavior of opj_jp2_read_ihdr Add overflow check in opj_j2k_update_image_data Change 'restrict' define to 'OPJ_RESTRICT' Switch to clang 3.8 Fix an integer overflow issue Update to lcms 2.8 Update to libpng 1.6.24 Reenable clang-3.9 build on travis Bit fields type Add compilation test for standalone inclusion of openjpeg.h jpwl: Remove non-portable data type u_int16_t Fix dependency for pkg-config Add .gitignore
Needs C99. Fixes build on SunOS.
Updated openjpeg to 2.1.1. ## v2.1.1 **Implemented enhancements:** - opj_malloc replacement - backport "-p" and "-force-rgb" options in 1.5 - Use travis-ci matrix build - Add Coverity Scan analysis - Unnecessary rate distortion calculations - Add images from various security issues to test suite - Coding speed for 9/7 on 32bits platforms (x86/ARM) can be improved with a quick fix **Fixed bugs:** - Out-of-Bounds Access in function opj_tgt_reset of tgt.c - Heap Buffer Overflow in function color_cmyk_to_rgb of color.c - division-by-zero (SIGFPE) error in opj_tcd_init_tile function (line 730 of tcd.c) - Out-Of-Bounds Read in sycc422_to_rgb function - Heap Corruption in opj_free function - Out-Of-Bounds Read in opj_tcd_free_tile function - Cannot handle box of undefined size - Compilation fails without platform-supplied aligned malloc - HP compiler warns about redeclaration of static function - Implementation-defined behavior of malloc causes different behavior on Linux and AIX - Build on AIX fails because "opj_includes.h" is included after system headers - Compiling with SSE2 on Linux 32-bit causes crashes in OpenJPEG - Build on AIX fails because of "restrict" pointers - bug in new tif conversion code - bin/jp2/convert.c line 1085 Resource leak - bin/jp2/convert.c memory leak - Resource leak in opj_j2k_create_cstr_index in case of failure - Resource leak in opj_j2k_encode in case of failure - Resource leak in opj_j2k_decode_one_tile in case of failure - Resource Leak - opj_compress fails to compress lossless on gcc/x86 (-m32) - Use-after-free in opj_j2k_write_mco - openjpeg-master-2015-07-30 failed to compile on LINUX - PNG images are always read as RGB(A) images - g4_colr.j2c not handled properly - Bigendian: opj_compress + opj_decompress fails - Suspicious code in j2k.c - Decode times almost double(!!) on Visual Studio 2013, 2015 - opj_data/input/nonregression/issue226.j2k - opj_setup_encoder always returns true - Double free in j2k_read_ppm_v3 parsing ((presumably invalid) image. - Invalid write in opj_j2k_update_image_data - Undefined printf format specifier %ud used in code - Potential double free on malloc failure in opj_j2k_copy_default_tcp_and_create_tcp() - Do not link with -ffast-math - Heap-buffer-overflow in opj_dwt_decode - opj_dump fails on Windows 7, 64 bits - SIGSEGV in opj_j2k_update_image_data via pdfium_test - Heap-buffer-overflow in opj_j2k_tcp_destroy - Invalid image causes write past end of heap buffer - Assertion `l_res->x0 >= 0' fails when parsing invalid images - Bug on opj_write_bytes_BE function - Refactor j2k_read_ppm_v3 function - compression: strange precinct dimensions - (:- Console message in opj_decompress -:) - opj_decompress fails to decompress any files - bio->ct is unnecessarily set to zero in opj_bio_flush method - Maximal unsigned short is 65535, not 65536 - OpenJpeg fails to encode components with different precision properly - component precision upscaling isn't correct in opj_decompress - Multiple precision components won't get encoded to jp2 if 1 component is unsigned 1 bit - Incorrect code in ../bin/jp2/convert.c, function rawtoimage_common(...) - [OpenJPEG-trunk] opj_stream_get_number_byte_left throws assert - NR-DEC-kodak_2layers_lrcp.j2c-31-decode-md5 fails randomly when running tests in parallel - compare_raw_files doesn't report an error on invalid arguments / missing input files - Forward discrete wavelet transform: implement periodic symmetric extension at boundaries - Bug in tiff reading method in convert.c - Image in pdf don't display - Multiple issues causing opj_decompress to segfault - opj_compress: 40% of encode time is spent freeing data - Multiple warnings when configuring OpenJPEG on MacOS with CMake 3.x (trunk) - valgrind memleak found - global-buffer-overflow src/lib/openjp2/t1.c:1146 opj_t1_getwmsedec - Warning introduced on trunk r2923 & r2924 - heap-buffer-overflow in opj_t1_decode_cblks - Heap-buffer-overflow in opj_tcd_init_decode_tile - Heap-buffer-overflow in opj_j2k_tcp_destroy - Heap-buffer-overflow in opj_jp2_apply_pclr - issue412 revisited - Image distorted (sides look cankered) - openjpeg-2.x-trunk-r2918 is broken in color.c - Heap-buffer-overflow in opj_tcd_init_decode_tile - Heap-use-after-free in opj_t1_decode_cblks - UNKNOWN in opj_read_bytes_LE - Transparency problem - Image with per channel alpha (cdef) does not decode properly - OpenJPEG crashes with attached image - Palette image with cdef fails to decompress - Invalid member values from opj_read_header or opj_decode ? - MD5 Checksum hangs under valgrind on MacOS X - Heap-buffer-overflow in opj_tcd_get_decoded_tile_size - C++ style comments in trunk/src/lib/openjp2/j2k.c - Backport bugfixes from trunk to 2.1 branch - Heap-buffer-overflow in parse_cmdline_encoder - Heap-buffer-overflow in opj_v4dwt_interleave_h - Heap-buffer-overflow in opj_dwt_decode - Heap-use-after-free in opj_t1_decode_cblks - Heap-buffer-overflow in opj_jp2_apply_cdef - Heap-buffer-overflow in opj_t2_read_packet_header - Heap-buffer-overflow in opj_t2_read_packet_header - Heap-buffer-overflow in opj_dwt_decode_1 - Heap-double-free in j2k_read_ppm_v3 - Security hole in j2k.c - Security: double-free in opj_tcd_code_block_dec_deallocate - check for negative-size params in code - Heap-buffer-overflow in opj_t2_read_packet_header - Heap overflow in OpenJpeg 1.5.2 - openjpip.so.6 file too short - Corrupted JP3D file - variable assigned to itself - Null pointer dereferencing - bad use of case statement - Release 2.1 as a Ubuntu package - Bug in libopenjpwl.pc - inconsistent tile numbering in decode output message - error in code block calculations - r2872 fails to compile due to "attempt to use poisoned malloc" error in j2k.c - OSX build gives libopenjp2.6.dylib with not-absolute install name id - opj_decompress gives error but successfully decompress in OPJ 2.1 - pngtoimage() and imagetopng() have wrong byte order for 16-Bit image - PDF crash in chrome - part2 (due to attachment limit) - PDF crash in chrome - part1 - PDF crash in chrome - part0 - Compilation fails on Windows with mingw32 gcc4.8 - security issue - improve memory management - how to compress a yuv420 raw data using opj_compress - Some memory allocation are not checked - Static library symbols shall be marked as hidden - opj_compress rejects valid bmp files - opj_compress crashes when number of resolutions is set to zero - Compilation error under Visual Studio 2003 - opj_compress description example error [Low priority] - opj_write_bytes_BE is wrong in trunk - PART1ONLY option in release.sh doesn't work properly - openjpeg crash error - openjpeg decompress error - openjpeg decompress issue - limited tif support - asoc value of 65536 is allowed - opj_skip_from_file error - Heavy quota usage in openjpeg - Verify -help actually match letter - g3_colr.j2c not handled - reopen/fix issue 165 - kakadu conformance tests - missing break after case statement in opj_dwt_decode_real - Run Coverity on trunk - NR-ENC-random-issue-0005.tif-12-encode - Use new add_test signature to handle cross compilation - Loss decoding quality in 2.0.0 - Decompress that worked in 1.5.1 fails in 2.0 - Expected endianness with raw input is not documented leading to SEGFAULT - OpenJPEG writes to stderr - Inconsistent logging of tile index - patch for openjpeg-trunk-r2347 and BIG_ENDIAN - CMAP: MTYP == 0 (direct use) not handled properly - Black Pixel - opj_compress runtime error after fresh Linux install due to apparent failure to execute ldconfig - openjp2 debug works, release build does not - openjpeg-branch15-r2299 and openjpeg-trunk-r2299 fail to decode a JP2 file - openjpeg-trunk issue with Win7 - undefined reference to `opj_version' - In tgt.c we used fprintf not the openjpeg message reporter - Windows binaries not working under WinXP - add ability to use intel ipp (performance primitive) within OpenJPEG - Migration guide v2 - Cannot decompress JPEG2000Aware3.18.7.3Win32_kdutranscode6.3.1.j2k - Cannot decompress JPEG2000Aware3.18.7.3Win32.j2k - openjpeg@googlegroups.com has disappeard - OpenJPEG 1.5.0 crashes on a ridiculously big file... - opj_image vs free - Windows .dll file invalid - Problem with second layer of a 2 layer coded LRCP (with precincts) - version 1.4 crashes when opening PDF file with JPEG2000 images - Setup a win64 dashboard - J2KP4files/codestreams_profile0/p0_13.j2k question jpeg2000 - Out of memory: Kill process 11204 (opj_server) score 917 or sacrifice child - FILE* in opj API is unsafe - third-party lib order - openjpeg-1.5.0-Darwin-powerpc.dmg is huge ! - misleading info in JP2 box lead to wrong number of components - Image_to_j2k says that j2k files is generated but no file is on the HDD - Error in openjpegV1.4 on compiling image_to_j2k: crash on reading bmp file - Update to abi-compliance-checker 1.96 - Decode error on the attached JPEG...works in KDU and with JASPER...please help! - Mac binaries v1.4 is broken - jp2_read_boxhdr() has size bug in version 1 - Support for Java JAI Imageio - encoding test failing - source archive on demand - CMakeLists.txt and Makefile.am for JPIP are buggy - pclr-cmap-cdef - Error when compiling openjpeg_v1_4_sources_r697 - J2K codec issue on Windows Mobile - image_to_j2k.exe crashes on large .bmp file - fatal error C1900 building the project on windows - same option but different size - Missing openjpegConfigure.h - Not an issue in openjpeg, but ... - OpenJPEG-1.3.0 pclr, cmap and cdef - realloc maybe too big (t2.c) - libopenjpeg/opj_malloc.h breaks on FreeBSD/Darwin systems - image_to_j2k not outputting to win32 console properly - [OpenJPEG] OpenJPEG_v13: tiled image part 2 - JP2 Color Space modification by Matteo Italia - Patch submission ( exotic video formats, and a few things ) - 16 bits lossy compression - pnm file formats not accepting bitdepth greater than 8 bpp - Heap corruption in j2k encoder - JPWL crash in marker reallocation(+patch), segfault while decoding image with main header protection - a couple of small errors in libopenjpeg detected by coverity **Closed issues:** - Shared library build broken on ubuntu - opj_includes.h shouldn't define `__attribute__` - Possible website problems due to Jekyll upgrade - Stable Release? - Meta Issue : try to fix some of these critical bugs before thinking about optimizing the library - Tiled encoding broken for images with non power of 2 dimensions - install_name (still) not set on OS X - Add section in wiki describing where one can get test images - Make EvenManager into singleton - Remove old branches from repo - MQ Coder encode: Conditional jump or move depends on uninitialised value(s) - Can we add these files to our test suite ? - -t and -d command line flags for decode are not documented on OpenJPEG website - Decoding at the precinct level - Support unscaled 10 bit data for 2K cinema @ 48 FPS, as per DCI standard - Use parallel jobs in ctest - [Security]Multiple Memory error - lossy encoding a 16 bit TIF file : severe artifiacts in decompressed image - opj_compress and opj_decompress : get_next_file method uses hard-coded unix path separator - Uninitialized variable - Use of enum variable for bit flags prevents compilation as C++ source - Serious problem with quantization during lossy encoding - Decompression does not work with sequential data source - potential overflow in opj_tcd_tile_t - Logical condition - file9.jp2 does not dump correctly on 1.5 - opj_compress man page is missing documentation of -jpip option - opj_compress fails to compress lossless on gcc/x86 (-m32) in 1.5 branch - Example: opj_compress -i image.j2k -o image.pgm - Mismatching delete - Compilation fails on Win7 - NR-JP2-file5.jp2-compare2base fails with third party libcms - CTest spits out an error at the end of the test run - opj_uint_adds() is questionable - Might consider renaming this method: - opj_compress run twice gives different fiile sizes for same file - Android Support - Add SSE2/SSE41 implementations for mct.c - Reduce encoder code block memory usage for non 64x64 code block sizes - valgrind "Uninitialized Memory Read" & "Uninitialized Memory Conditional" found - No way to debug opj_tcd_init_encode_tile or opj_tcd_init_decode_tile - Add option to call dsymutil on built binaries - Allow opj_compress and opj_decompress to read/write images over stdin/stdout - reduce memory significantly for single tile RGB encoding - Switch code repo to github and start using pull request workflow - This is a BigTIFF file. This format not supported - Add a test suite to check the convert functions - Add build config to the dashboard to verify the autotools build **Merged pull requests:** - Correct abi-check.sh for PR - Update tcd.c - Update lcms2 - Use lowercase for cmake commands consistenly - Ignore clang's summary warning - Fix UBSan gcc warning for first arg to memset non null - Update to libtiff-4.0.6 - Fix warnings - Check SSIZ is valid in opj_j2k_read_siz - Fix unsigned int overflow reported by UBSan - Fix unsigned int overflow reported by UBSan - Fix negative shift left reported by UBSan - Fix negative shift left reported by UBSan - Add clang 3.9 build to Travis matrix - Fix implicit floating bool conversion - Do not define __attribute__ in opj_includes.h - Allow to read/write 3/5/7/9/11/13/15 bpp TIF files - Fix heap-buffer-overflow in color_esycc_to_rgb - update libpng to from 1.6.17 to 1.6.21 - Update cmake & jpylyzer for travis builds - Fix Out-Of-Bounds Read in sycc42x_to_rgb function - cppcheck fix for openjp2 - Fix uninitialized variable reported by cppcheck - Remove dead code in opj_dump - issue #695 MQ Encode: ensure that bp pointer never points to uninitialized memory - Fix issue 135 - Fix implementation of opj_calloc - [git/2.1 regression] Fix opj_write_tile() failure when numresolutions=1 - Fix fatal crash on 64 bit Linux - [libtiff] Add missing include statement for ssize_t - Fix duplicate article in comments - Fix grammar in comment - Remove whitespace and CR at line endings - Fix typos - Add missing source for the JPIP library and executables (issue #658) - Fix undefined size jp2 box handling - opj_decompress: Update error message - Fix support of posix_memalloc for Linux - Fix typo in comments - Avoid pointer arithmetic with (void *) pointers - Fix HP compiler warning about redeclaration of function (#640) - Fix format strings and unneeded assignment - Fix repository for JPEG2000 test data - Update allocation functions - Fix OpenJPEG GitHub issue #633. - travis-ci: Include add ons in matrix - Add Appveyor - Use Travis-ci to run ABI check - Fix warnings for C++ - Fixed problem that C++ compilation failed because of enum variable. - Added missing casts for return values of opj_malloc()/opj_calloc(). - Add check for seek support before trying TPsot==TNsot workaround - Fix some typos found by codespell - Correct leak in color_cielab_to_rgb - Add Travis-ci build matrix - Correct lossless issue on linux x86 - Travis-ci update - Correct CMake version requirements - Add tests for CMYK/esYCC/CIELab - Add support for CIELab, EYCC and CMYK - Remove printf/fprintf to stdout/stderr throughout openjp2 lib - better -ffast-math handling - Add jpylyzer tests for JP2 compression - Add COC/QCC in main header when needed - Use __emul under msvc x86 for fast 64 = 32 * 32 - Update convert for PNG output - Remove some warnings when building - Switch to libpng-1.6.17 - Add some missing static keywords - Switch to libcms2 mm2/Little-CMS@0e8234e090d6aab33f90e2eb0296f30aa0705e57 - Prevent overflow when coding 16 bits images - Switch to libcms2-2.6 - Update PNG support - Various Minor fixes - Update TIFF conversion to support more bit depth. - Add checks for odd looking cmap & for cmap outside jp2h box - Refactor opj_j2k_read_ppm & opj_j2k_read_ppt - Add option to force component splitting in imagetopnm - fix Suspicious code in j2k.c #517 - Update zlib to version 1.2.8 - Fix opj_write_bytes_BE (#518) - Correctly decode files with incorrect tile-part header fields (TPsot==TNsot) - Fixed typos - Formatted the readme file
Check for aligned memory functions with cmake Not all platforms have posix_memalign(3) so we need to check if it exists. This fixes build failure on Darwin 9. See: https://www.gnu.org/software/gnulib/manual/html_node/posix_005fmemalign.html
Changes 2.1.0: New Features: * Digital Cinema profiles have been fixed and updated * New option to disable MCT if needed * extended RAW support: it is now possible to input raw images with subsampled color components (422, 420, etc) * New way to deal with profiles API/ABI modifications: (see abi_compat_report in dev-utils/scripts) * Removed deprecated functions - opj_stream_create_default_file_stream(FILE*,...) - opj_stream_create_file_stream(FILE*,...) - opj_stream_set_user_data (opj_stream_t* p_stream, void * p_data) * Added - opj_stream_create_default_file_stream(char*,...) - opj_stream_create_file_stream(char*,...) - opj_stream_destroy(opj_stream_t*) - opj_stream_set_user_data (opj_stream_t* p_stream, void * p_data, ... opj_stream_free_user_data_fn p_function) - JPEG 2000 profiles and Part-2 extensions defined through '#define' * Changed - 'alpha' field added to 'opj_image_comp' structure - 'OPJ_CLRSPC_EYCC' added to enum COLOR_SPACE - 'OPJ_CLRSPC_CMYK' added to enum COLOR_SPACE - 'OPJ_CODEC_JPP' and 'OPJ_CODEC_JPX' added to CODEC_FORMAT (not yet used in use) - 'max_cs_size' and 'rsiz' fields added to opj_cparameters_t Misc: * OpenJPEG is now officialy conformant with JPEG 2000 Part-1 and will soon become official reference software at the JPEG committee. * Huge amount of bug fixes. See CHANGES for details.
Changes 2.0.1: New Features: * Digital Cinema profiles have been fixed and updated * New option to disable MCT if needed * extended RAW support: it is now possible to input raw images with subsampled color components (422, 420, etc) API/ABI modifications: (see abi_compat_report_2.0.1.html in dev-utils/scripts) * No changes, API/ABI fully compatible with 2.0.0 Misc: * OpenJPEG is now officialy conformant with JPEG 2000 Part-1 and will soon become official reference software at the JPEG committee. * Huge amount of bug fixes. See CHANGES for details.
Recursive bump for png-1.6.
Revbump after graphics/jpeg and textproc/icu
Changes 2.0.0: New Features: * streaming capabilities * merge JP3D API modifications: * Use a 64bits capable API Misc: * removed autotools build system * folders hierarchies reorganisation * Huge amount of bug fixes. See CHANGES for details.
apply patch from upstream (http://code.google.com/p/openjpeg/source/detail?r=1919) to fix Heap-based buffer-overflow when decoding openjpeg image (CVE-2012-3535) bump PKGREV
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
Pullup ticket #3859 - requested by wiz graphics/openjpeg: security update Revisions pulled up: - graphics/openjpeg/DESCR 1.2 - graphics/openjpeg/Makefile 1.3 - graphics/openjpeg/distinfo 1.3 - graphics/openjpeg/patches/patch-libopenjpeg_j2k.c 1.1 --- Module Name: pkgsrc Committed By: wiz Date: Wed Jul 11 09:07:21 UTC 2012 Modified Files: pkgsrc/graphics/openjpeg: DESCR Makefile distinfo Added Files: pkgsrc/graphics/openjpeg/patches: patch-libopenjpeg_j2k.c Log Message: CVE-2012-3358: A heap-based buffer overflow was found in the way OpenJPEG, an open-source JPEG 2000 codec written in C language, performed parsing of JPEG2000 having certain number of tiles and tilesizes. A remote attacker could provide a specially crafted JPEG 2000 file, which when opened in an application linked against openjpeg would lead to that application crash, or, potentially arbitrary code execution with the privileges of the user running the application. http://code.google.com/p/openjpeg/source/detail?r=1727 Bump PKGREVISION. pkglint cleanups while here.
CVE-2012-3358: A heap-based buffer overflow was found in the way OpenJPEG, an open-source JPEG 2000 codec written in C language, performed parsing of JPEG2000 having certain number of tiles and tilesizes. A remote attacker could provide a specially crafted JPEG 2000 file, which when opened in an application linked against openjpeg would lead to that application crash, or, potentially arbitrary code execution with the privileges of the user running the application. http://code.google.com/p/openjpeg/source/detail?r=1727 Bump PKGREVISION. pkglint cleanups while here.
update to 1.5.0 This fixes a vulnerability caused due to an error when parsing a CMAP record which can be exploited to cause an out-of-bounds write via specially crafted JPEG files. (SA48498)
Import openjpeg-1.3: The OpenJPEG library is an open-source JPEG 2000 codec written in C. It has been developed in order to promote the use of JPEG 2000 and is licensed under a BSD license.
Initial revision