"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "NEWS" between
lzo-2.09.tar.gz and lzo-2.10.tar.gz

About: LZO is a portable lossless data compression library written in ANSI C.

NEWS  (lzo-2.09):NEWS  (lzo-2.10)
============================================================================ ============================================================================
User visible changes for LZO -- a real-time data compression library User visible changes for LZO -- a real-time data compression library
============================================================================ ============================================================================
Changes in 2.10 (01 Mar 2017)
* Improve CMake build support.
* Add support for pkg-config.
* Do not redefine "snprintf" so that the examples build with MSVC 2015.
* Assorted cleanups.
Changes in 2.09 (04 Feb 2015) Changes in 2.09 (04 Feb 2015)
* Work around gcc bug #64516 that could affect architectures like * Work around gcc bug #64516 that could affect architectures like
armv4, armv5 and sparc. armv4, armv5 and sparc.
Changes in 2.08 (29 Jun 2014) Changes in 2.08 (29 Jun 2014)
* Updated the Autoconf scripts to fix some reported build problems. * Updated the Autoconf scripts to fix some reported build problems.
* Added CMake build support. * Added CMake build support.
* Fixed lzo_init() on big-endian architectures like Sparc. * Fixed lzo_init() on big-endian architectures like Sparc.
Changes in 2.07 (25 Jun 2014) Changes in 2.07 (25 Jun 2014)
* Fixed a potential integer overflow condition in the "safe" decompressor * Fixed a potential integer overflow condition in the "safe" decompressor
variants which could result in a possible buffer overrun when variants which could result in a possible buffer overrun when
processing maliciously crafted compressed input data. processing maliciously crafted compressed input data.
Fortunately this issue only affects 32-bit systems and also can only happen Note that this issue only affects 32-bit systems and also can only happen
if you use uncommonly huge buffer sizes where you have to decompress more if you use uncommonly huge buffer sizes where you have to decompress more
than 16 MiB (> 2^24 bytes) untrusted compressed bytes within a single than 16 MiB (> 2^24 bytes) untrusted compressed bytes within a
function call, so the practical implications are limited. *single* function call, so the practical implications are limited.
POTENTIAL SECURITY ISSUE. CVE-2014-4607. POTENTIAL SECURITY ISSUE. CVE-2014-4607.
* Removed support for ancient configurations like 16-bit "huge" pointers - * Removed support for ancient configurations like 16-bit "huge" pointers -
LZO now requires a flat 32-bit or 64-bit memory model. LZO now requires a flat 32-bit or 64-bit memory model.
* Assorted cleanups. * Assorted cleanups.
Changes in 2.06 (12 Aug 2011) Changes in 2.06 (12 Aug 2011)
* Some minor optimizations for big-endian architectures. * Some minor optimizations for big-endian architectures.
* Fixed overly strict malloc() misalignment check in examples. * Fixed overly strict malloc() misalignment check in examples.
 End of changes. 3 change blocks. 
3 lines changed or deleted 9 lines changed or added

Home  |  About  |  All  |  Newest  |  Fossies Dox  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTPS