libspice-server1-0.14.3-150300.3.3.1<>,Obp9|)lE̍/ES4eQcr~.ۑv5UI/>d*`dhSd\9߿g`ٜ{d*8>yhrY!.l͆w%&-9ΧcV:r*  ,L FAt~7R,ן ClU#MA9;@\y%O&_5@JKtk #W%eC6>4^}ix;:3͆,^>CEH?E8d ' @ *;X^h     #Fh'' '( 8 9 `:}>?@?(B?7F?DG?XH?tI?X?Y?Z@<[@@\@T]@p^@bAgcBdBeBfBlBuBvBwClxCyCMzDDDDE4Clibspice-server10.14.3150300.3.3.1Library for SPICE-serverLibrary for SPICE-server The SPICE server is used to expose a remote machine's display and devices.bsheep591SUSE Linux Enterprise 15SUSE LLC LGPL-2.1-or-later OR GPL-2.0-or-laterhttps://www.suse.com/System/Librarieshttps://www.spice-space.org/linuxx86_64L| CgA큤A큤bbb^WT^WTb^WT5e29763537410d2f70b540ea4952041060c0503879d46ea6741553b4b0dc47a92f0eada6be6a7e03274249215dbe5dce3a7b8857c5ebf9ed6f43f925b2db93054ad2ad2f17f0995457a4a0ebe74d61a1f3628e7f2a476f05bda058389182c732dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551libspice-server.so.1.14.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootspice-0.14.3-150300.3.3.1.src.rpmlibspice-server.so.1()(64bit)libspice-server.so.1(SPICE_SERVER_0.10.0)(64bit)libspice-server.so.1(SPICE_SERVER_0.10.1)(64bit)libspice-server.so.1(SPICE_SERVER_0.10.2)(64bit)libspice-server.so.1(SPICE_SERVER_0.10.3)(64bit)libspice-server.so.1(SPICE_SERVER_0.10.4)(64bit)libspice-server.so.1(SPICE_SERVER_0.11.2)(64bit)libspice-server.so.1(SPICE_SERVER_0.11.4)(64bit)libspice-server.so.1(SPICE_SERVER_0.12.2)(64bit)libspice-server.so.1(SPICE_SERVER_0.12.3)(64bit)libspice-server.so.1(SPICE_SERVER_0.12.4)(64bit)libspice-server.so.1(SPICE_SERVER_0.12.5)(64bit)libspice-server.so.1(SPICE_SERVER_0.12.6)(64bit)libspice-server.so.1(SPICE_SERVER_0.13.1)(64bit)libspice-server.so.1(SPICE_SERVER_0.13.2)(64bit)libspice-server.so.1(SPICE_SERVER_0.14.2)(64bit)libspice-server.so.1(SPICE_SERVER_0.14.3)(64bit)libspice-server.so.1(SPICE_SERVER_0.6.0)(64bit)libspice-server.so.1(SPICE_SERVER_0.6.1)(64bit)libspice-server.so.1(SPICE_SERVER_0.8.0)(64bit)libspice-server.so.1(SPICE_SERVER_0.8.1)(64bit)libspice-server.so.1(SPICE_SERVER_0.8.2)(64bit)libspice-server.so.1(SPICE_SERVER_0.8.3)(64bit)libspice-server1libspice-server1(x86-64)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6()(64bit)libc.so.6(GLIBC_2.11)(64bit)libc.so.6(GLIBC_2.14)(64bit)libc.so.6(GLIBC_2.17)(64bit)libc.so.6(GLIBC_2.2.5)(64bit)libc.so.6(GLIBC_2.3.4)(64bit)libc.so.6(GLIBC_2.4)(64bit)libc.so.6(GLIBC_2.7)(64bit)libcrypto.so.1.1()(64bit)libcrypto.so.1.1(OPENSSL_1_1_0)(64bit)libgio-2.0.so.0()(64bit)libglib-2.0.so.0()(64bit)libgobject-2.0.so.0()(64bit)libgstapp-1.0.so.0()(64bit)libgstreamer-1.0.so.0()(64bit)libjpeg.so.8()(64bit)libjpeg.so.8(LIBJPEG_8.0)(64bit)liblz4.so.1()(64bit)libm.so.6()(64bit)libm.so.6(GLIBC_2.2.5)(64bit)libopus.so.0()(64bit)liborc-0.4.so.0()(64bit)libpixman-1.so.0()(64bit)libpthread.so.0()(64bit)libpthread.so.0(GLIBC_2.12)(64bit)libpthread.so.0(GLIBC_2.2.5)(64bit)libpthread.so.0(GLIBC_2.3.2)(64bit)librt.so.1()(64bit)librt.so.1(GLIBC_2.2.5)(64bit)libsasl2.so.3()(64bit)libssl.so.1.1()(64bit)libssl.so.1.1(OPENSSL_1_1_0)(64bit)libz.so.1()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3`_P_{ ^f/^Y^g@\P\y\N[:@[:@[z@[LZp^@Zp^@Z`@Y@X@X@X[@XOX$a@WWVU|@Uq@TBV@T>acarnold@suse.combrogers@suse.combrogers@suse.combrogers@suse.combrogers@suse.com9+suse@cirno.systemsbrogers@suse.comolaf@aepfle.debrogers@suse.comastieger@suse.combrogers@suse.comcbosdonnat@suse.comcbosdonnat@suse.comjengelh@inai.detchvatal@suse.comtchvatal@suse.comcbosdonnat@suse.compsimons@suse.comcbosdonnat@suse.comastieger@suse.comcbosdonnat@suse.commsuchanek@suse.comzaitor@opensuse.orgcbosdonnat@suse.comcbosdonnat@suse.comcbosdonnat@suse.comcbosdonnat@suse.comcrrodriguez@opensuse.orgzaitor@opensuse.org- bsc#1181686 - VUL-0: CVE-2021-20201: spice,spice-gtk: client initiated renegotiation denial of service 0001-With-OpenSSL-1.1-Disable-client-initiated-renegotiation.patch 0002-With-OpenSSL-1.0.2-and-earlier-disable-client-side-renegotiation.patch- Note: The Mar 9, 2020 spec file cleanup and the following change satisfy jsc#SLE-15520 - Remove gstreamer-plugins-libav and gstreamer-plugins-good as BuildRequires. Even though the configure step of the package build does report detection of features from these packages, the build is actually not otherwise influenced by the presence of these packages. It is at runtime when these plugin packages are utilized, so leave the Recommends for these in the package spec, so that if the packages are available in a distro they can get installed and utilized.- Fix buffer overflow vunerabilities in QUIC image decoding (CVE-2020-14355 bsc#1177158) 0001-quic-Check-we-have-some-data-to-start-decoding-quic-.patch 0002-quic-Check-image-size-in-quic_decode_begin.patch 0003-quic-Check-RLE-lengths.patch 0004-quic-Avoid-possible-buffer-overflow-in-find_bucket.patch- Clean up some spec file conditionals that are no longer helpful- Update to v0.14.3 release The main changes are WebSocket and support for Windows. * Add support for WebSocket, this will allow to use spice-html5 without proxy * Support Windows, now Qemu Windows can be build enabling Spice * Fix some alignment problem * Converted some documentation to Asciidoc format to make easier to update, updated some * Minor compatibility fix for PPC64EL and ARMHF * Minor fixes for big endian machines like MIPS * Avoid some crashes with some buggy guest drivers, simply ignore the invalid request * Fix for old OpenSSL versions * Minor fix for Windows clients and brushes, fixed an issue with Photoshop under Windows 7 * Add ability to query video-codecs * Small use-after-free fix * Fix for debugging recording/replaying using QUIC images * Fix a regression where spice reported no monitors to the client * Fix DoS in spicevmc if WebDAV used * Updated and improved test migration script * Some minor fixes to smartcard support * Avoid possible disconnection using proxies using a in-flow keepalive mechanism - The NEWS file is now named CHANGELOG.md, and the previously provided ChangeLog, which was a summary of the git log is no longer provided- Enable video codec support (VPX and MJPEG)- Update to v0.14.2 stable release The main changes are support for Meson build and graphic device info messages allowing to better support multi-monitor configurations. * support H265 in stream-channel * add support for building with meson/ninja * minor tests fixes improving CI * set char device state for smartcard, allowing Qemu optimization * improve red-parse-qxl.c interface making it more consistent * add some instrumentation for streaming device * QXL interface: add a function to identify monitors in the guest (spice_qxl_set_device_info) * add support for GraphicsDeviceInfo messages * video-stream: prevent crash on stream reattach * make channel client callbacks virtual functions * bumped minimum required glib version to 2.38 * attempt to have a reliable led state for keyboard modifiers - Removed patches: (The first two are altered versions of what is carried upstream. I think we're fine with what upstream does here) 0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch 0002-lz-More-checks-on-image-sizes.patch 0001-memslot-Fix-off-by-one-error-in-group-slot-boundary-.patch- Use plain python2 for SLE12 builds - Remove PYTHON=python3, configure will find and use the python3- Fix OOB memory access in internal tracking of slot_ids and group_ids. (CVE-2019-3813 bsc#1122706) * 0001-memslot-Fix-off-by-one-error-in-group-slot-boundary-.patch - Remove celt051 Requires directive- Upstream disabled support for the celt051 audio codec by default, do likewise in the spec - Note updated 0.14.1 build dependencies in the spec: * OpenSSL 1.0.0 or newer is now required * glib 2.32 required - add upstream signing key and verify source signature- Update to v0.14.1 stable release The announcement email describes this release as follows: The main change in this release is the addition of a new protocol extension in order to support streaming the remote display as a video stream rather than going through the QXL protocol. Together with spice-streaming-agent, and/or with more work on the qemu/ spice-server side, this should allow streaming of 3D accelerated VMs in the future. At this point, this part of spice-server is still a work in progress (multi-monitor support and various features are missing). * avoid performance issues on Windows 10 KVM guests (boo#1109044) * add new org.spice-space.stream.0 channel used for passing an encoded video stream from the guest to the client * add support for TCP_CORK to reduce the amount of packets that we send * fix CVE-2018-10873 (maintainer note: we already carried fix) * fix cursor related migration crash * fix regression causing sound recording to be muted after client disconnection/reconnection (introduced in 0.13.90) * fix regression in corner cases where images could be sent uncompressed when they used to be compressed with QUIC * disable TLS 1.0 support * CELT 0.5.1 support is now disabled by default. If celt051-devel is installed at build-time, --enable-celt051/--disable-celt051 must be explicitly specified * drop support for unsupported OpenSSL version. OpenSSL 1.0.0 or newer is now required * bumped minimum required glib version to 2.32 * endianness fixes * (small) leak fixes * usual round of code cleanups * not directly related to this release, but the upstream git repository is now hosted on gitlab.freedesktop.org - Removed patches: bb15d481-Fix-flexible-array-buffer-overflow.patch- Fix potential heap corruption when demarshalling (CVE-2018-10873, bsc#1104448) Added patch: bb15d481-Fix-flexible-array-buffer-overflow.patch- Avoid buffer overflow on image lz cheks (CVE-2018-10893, bsc#1101295) Added patches: 0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch 0002-lz-More-checks-on-image-sizes.patch- Correct RPM group for shared library.- Split the sle condition again for exact features to allow their override- Enable smartcards on sle15 as the supportlib is available * Condition it using name everywhere instead of suse versions and join together with lz4 - Format with spec-cleaner - Convert dependencies to pkgconfig style - Install documentation and license file - Add configure arguments to most of the options to not rely on autotools automatic behavior * Also enable gstreamer and lz4 options - Drop the not needed python dependencies, they are needed only when building from git snapshot- Release 0.14.0 * fix client mouse with virgl * fix frozen display after seamless migration * set human-readable name on spice threads * add sanity-checks for ORC library as it can abort spice-server when selinux is in use * Close TCP connection early when client did not send the correct SPICE magic bytes: this allows VNC clients to gracefully fail when connecting to a SPICE port * Add VP9 encoding support when GStreamer is being used and misc streaming/encoding improvements * Improvements to replay utility * Limit (deprecated/unusud) QXLMessage size to 100,000 characters for improved safety * Improve image quality in low bitrate situation when using the GStreamer backend * Added GStreamer support to the video streaming code * Fix old migration bug causing migration to never end in some cases * Added lz4 compression to the spicevmc channel * Ongoing code cleanups * add spice_qxl_gl_scanout() spice_qxl_gl_draw_async() for local virgl support * spice_server_set_keepalive_timeout() has been removed in favour of unconditionally sending keepalive probes every 10 minutes * Added public spice_server_set_keepalive_timeout() to make it possible to tweak keepalive on all SPICE connection. This can prevent unwanted idle disconnections if proxies are used between the client and the host. * Fix important memory usage when the webdav channel is used * Do not disconnect when the client requests an unsupported compression type * Fix potential race condition when using multiple QXL devices * Fix display glitch when using XSpice * Improve help string for 'replay -s' * Fix small leak in MJPEG code - Removed patches: * CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch * CVE-2016-9578-remote-dos-via-crafted-message.patch- Added patches to fix two security vulnerabilities. * CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch [CVE-2016-9577, bsc#1023078] * CVE-2016-9578-remote-dos-via-crafted-message.patch [CVE-2016-9578, bsc#1023079]- Synchronize with SLES (fate#322402): + bnc#894069: disable smartcard support for SLES + merge changelog- restrict suppression of obsoletes-not-provided warning to spice-client bsc#1013916- Obsolete spice-client (bsc#1013916)- remove ExclusiveArch (boo#1009438)- Update to version 0.12.8: + Fixes for bsc#982385 / CVE-2016-0749 and bsc#982386 / CVE-2016-2150.- Update to version 0.12.7 (fate#320079) + spice-server will now send TCP keepalive probes on the TCP connections it uses. This can prevent unwanted idle disconnections if proxies are used between the client and the host. + Fix important memory usage when the webdav channel is used + Do not disconnect when the client requests an unsupported compression type + Fix a few race conditions + Fix display glitch when using XSpice + Improve help string for 'replay -s' + Fix crashes in corner cases (buggy spice-html5 + win10, vnc + SPICE port configured, USB webcam redirection over a slow link) + Fix various compilation warning when building on 32 bit machines + Some fixes for big-endian machines, more work is likely to be needed + Do not build static libraries by default, this can be reenabled with --enable-static + Fix small leak in MJPEG code- Update to version 0.12.6 + Removed spicec client code, it has been superseded by remote-viewer and other spice-gtk based clients + Unix socket support + LZ4 support + Let clients specify their preferred image compression format + Allow to record and replay a spice-server session + Fixes for CVE-2015-3247 CVE-2015-5260 and CVE-2015-5261 bsc#944787, bsc#948976 + spice-protocol submodule has been removed, spice-protocol must now be installed when building spice-server + Remove write polling in chardevs to reduce wakeups - Remove upstream merged patches: + spice-Don-t-use-48kHz-for-playback-recording-rates.patch + password-length-check.patch + cve-2015-3247.patch- bsc#944460: fix CVE-2015-3247. cve-2015-3247.patch- Don't allow setting password longer than what the spice protocol allows. password-length-check.patch. boo#931044- Replace xorg-x11-devel buildrequire by selected pkgconfig(xlibs..)- Update to version 0.12.5: + Added Opus support. Celt support will be obsoleted in a future release. + Addition of webdav channel. + Force use of TLS 1.0 or newer for TLS connections. + Reference manual. + Some optimizations improving CPU use. + Various bug fixes for race conditions, memory corruption, which could be triggered on client disconnections, migration, and cause spice-server to misbehave. + Portability fixes. + Code cleanups. + bsc#848279: fix CVE-2013-4282. - Add pkconfig(opus) BuildRequires: Needed to build new opus support. - Add spice-Don-t-use-48kHz-for-playback-recording-rates.patch: Fix advertised sound playback/recording rates in public headers (rh#1129961). - Drop spice-glibc217.patch: No longer needed. - Run spec-clean on spec file, remove conditionals for obsolete versions of openSUSE, enable parallel build and drop obsolete clean section./sbin/ldconfig/sbin/ldconfigspice-clientsheep59 16608086020.14.3-150300.3.3.10.14.3-150300.3.3.10.14.3-150300.3.3.1libspice-server.so.1libspice-server.so.1.14.0libspice-server1CHANGELOG.mdREADMElibspice-server1COPYING/usr/lib64//usr/share/doc/packages//usr/share/doc/packages/libspice-server1//usr/share/licenses//usr/share/licenses/libspice-server1/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:25522/SUSE_SLE-15-SP3_Update/e286794a742c3ff573031286cf03db5e-spice.SUSE_SLE-15-SP3_Updatedrpmxz5x86_64-suse-linuxELF 64-bit LSB shared object, x86-64, version 1 (SYSV), dynamically linked, BuildID[sha1]=bc77622026c71354381979d52a236e49dc5c4336, strippeddirectoryASCII textMPPPPPPPPPPPPPPPPPPPPPPPPPPPP P P P P P P P P P PPPPPPPRRR!R RRRRRRR RRRRRR RRRRRRRR R R R"RRRRR@puZڍ4O-utf-80eb7a3e93f0bb089d0e6157ba15f1b40401eb6a93699dd109423a960fd027da3?7zXZ !t/]"k%dVf~+׼lȸf|n[Jhfun7nxF42P#ns]=U-% )Ru+_D^uLǡ1N p/Kۮrnfr$q7tro!Ck Ԇ V,\[7詹(/ Q*kQպ| @劧5Aݟ'( d9f+ H].į+oG;.cGD@Lo19y eA ]ycD=m(NL/s^1#}됖?iGTw:xbO;1;*/sk׍&7"zBXy[h@0lm MϿ-5Q(׃QG-H,/^e#kC3NT/Ӱ#CioIj ܄6b#&0”iR43'؊&ˌG޸GtvI2.mN!l\a% |FHX}9' []¡<}jl$! c}cq4z-"bLz̹}9=Z6>WǾj)Z}?R@u|#S4FkȦXLN1wkEҠĎD*Z6IŊoթi9l!dSulpE}ؑn)u{B'ZOk-K+2P聮n eľB