libspice-server1-0.14.2-lp152.2.6.1<>,Hԉ`Ӝ/=„Mj(RZ-.Z1B֌UJ #kY.ܚeO]Z9#T9|u!TdW.[D0mjDo:Ƈ,Q8]bUrsԑR뀪^*\>W-o?mz1lbXFA\K  ž*'6*L֥lR,v3Pp a_DJ2zN7M||J2JdAC\Ώ\kuliD-ETYH>C<?<d & ?  =CHh x    4\t(( )(( i8 p9 : >6@6B6 F6-G6@H6`I6X6Y6Z7$[7(\7<]7\^7b8Sc9d9e9f9l9u9v9w:x:y:Lz< <0<4<:<|Clibspice-server10.14.2lp152.2.6.1Library for SPICE-serverLibrary for SPICE-server The SPICE server is used to expose a remote machine's display and devices.`Ӝlamb14#IopenSUSE Leap 15.2openSUSELGPL-2.1-or-later OR GPL-2.0-or-laterhttp://bugs.opensuse.orgSystem/Librarieshttps://www.spice-space.org/linuxi586[HQ CgA큤A큤`ә`Ӛ`ӛ\ \ x\ x`ӛ\ xd9be8b2f77cfa61f8f0027c110f7ea5d749d7a999d95d7c8f65f407fe9066a9be284efb9d25c25965a7fa2861db3602ee139aa4f7ccc79604c223b5e60d267bffb55cdaf113b6dc54e8d03e41984e7b0e49faf7aa3443e386148d53eec031f724ad2ad2f17f0995457a4a0ebe74d61a1f3628e7f2a476f05bda058389182c732dc626520dcd53a22f727af3ee42c770e56c97a64fe3adb063799d8ab032fe551libspice-server.so.1.13.0rootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootspice-0.14.2-lp152.2.6.1.src.rpmlibspice-server.so.1libspice-server.so.1(SPICE_SERVER_0.10.0)libspice-server.so.1(SPICE_SERVER_0.10.1)libspice-server.so.1(SPICE_SERVER_0.10.2)libspice-server.so.1(SPICE_SERVER_0.10.3)libspice-server.so.1(SPICE_SERVER_0.10.4)libspice-server.so.1(SPICE_SERVER_0.11.2)libspice-server.so.1(SPICE_SERVER_0.11.4)libspice-server.so.1(SPICE_SERVER_0.12.2)libspice-server.so.1(SPICE_SERVER_0.12.3)libspice-server.so.1(SPICE_SERVER_0.12.4)libspice-server.so.1(SPICE_SERVER_0.12.5)libspice-server.so.1(SPICE_SERVER_0.12.6)libspice-server.so.1(SPICE_SERVER_0.13.1)libspice-server.so.1(SPICE_SERVER_0.13.2)libspice-server.so.1(SPICE_SERVER_0.14.2)libspice-server.so.1(SPICE_SERVER_0.6.0)libspice-server.so.1(SPICE_SERVER_0.6.1)libspice-server.so.1(SPICE_SERVER_0.8.0)libspice-server.so.1(SPICE_SERVER_0.8.1)libspice-server.so.1(SPICE_SERVER_0.8.2)libspice-server.so.1(SPICE_SERVER_0.8.3)libspice-server1libspice-server1(x86-32)@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@    /sbin/ldconfig/sbin/ldconfiglibc.so.6libc.so.6(GLIBC_2.0)libc.so.6(GLIBC_2.1)libc.so.6(GLIBC_2.1.3)libc.so.6(GLIBC_2.11)libc.so.6(GLIBC_2.3.4)libc.so.6(GLIBC_2.4)libc.so.6(GLIBC_2.7)libcrypto.so.1.1libcrypto.so.1.1(OPENSSL_1_1_0)libgio-2.0.so.0libglib-2.0.so.0libgobject-2.0.so.0libgstapp-1.0.so.0libgstreamer-1.0.so.0libjpeg.so.8libjpeg.so.8(LIBJPEG_8.0)liblz4.so.1libm.so.6libm.so.6(GLIBC_2.0)libopus.so.0liborc-0.4.so.0libpixman-1.so.0libpthread.so.0libpthread.so.0(GLIBC_2.0)libpthread.so.0(GLIBC_2.1)libpthread.so.0(GLIBC_2.12)libpthread.so.0(GLIBC_2.3.2)librt.so.1librt.so.1(GLIBC_2.2)libsasl2.so.3libssl.so.1.1libssl.so.1.1(OPENSSL_1_1_0)libz.so.1rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.1`_{ \P\y\N[:@[:@[z@[LZp^@Zp^@Z`@Y@X@X@X[@XOX$a@WWVU|@Uq@TBV@T>acarnold@suse.comBruce Rogers Bruce Rogers olaf@aepfle.deBruce Rogers astieger@suse.comBruce Rogers cbosdonnat@suse.comcbosdonnat@suse.comjengelh@inai.detchvatal@suse.comtchvatal@suse.comcbosdonnat@suse.compsimons@suse.comcbosdonnat@suse.comastieger@suse.comcbosdonnat@suse.commsuchanek@suse.comzaitor@opensuse.orgcbosdonnat@suse.comcbosdonnat@suse.comcbosdonnat@suse.comcbosdonnat@suse.comcrrodriguez@opensuse.orgzaitor@opensuse.org- bsc#1181686 - VUL-0: CVE-2021-20201: spice,spice-gtk: client initiated renegotiation denial of service 0001-With-OpenSSL-1.1-Disable-client-initiated-renegotiation.patch 0002-With-OpenSSL-1.0.2-and-earlier-disable-client-side-renegotiation.patch- Fix buffer overflow vulnerabilities in QUIC image decoding (CVE-2020-14355 bsc#1177158) 0001-quic-Check-we-have-some-data-to-start-decoding-quic-.patch 0002-quic-Check-image-size-in-quic_decode_begin.patch 0003-quic-Check-RLE-lengths.patch 0004-quic-Avoid-possible-buffer-overflow-in-find_bucket.patch- Update to v0.14.2 stable release The main changes are support for Meson build and graphic device info messages allowing to better support multi-monitor configurations. * support H265 in stream-channel * add support for building with meson/ninja * minor tests fixes improving CI * set char device state for smartcard, allowing Qemu optimization * improve red-parse-qxl.c interface making it more consistent * add some instrumentation for streaming device * QXL interface: add a function to identify monitors in the guest (spice_qxl_set_device_info) * add support for GraphicsDeviceInfo messages * video-stream: prevent crash on stream reattach * make channel client callbacks virtual functions * bumped minimum required glib version to 2.38 * attempt to have a reliable led state for keyboard modifiers - Removed patches: (The first two are altered versions of what is carried upstream. I think we're fine with what upstream does here) 0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch 0002-lz-More-checks-on-image-sizes.patch 0001-memslot-Fix-off-by-one-error-in-group-slot-boundary-.patch- Use plain python2 for SLE12 builds - Remove PYTHON=python3, configure will find and use the python3- Fix OOB memory access in internal tracking of slot_ids and group_ids. (CVE-2019-3813 bsc#1122706) * 0001-memslot-Fix-off-by-one-error-in-group-slot-boundary-.patch - Remove celt051 Requires directive- Upstream disabled support for the celt051 audio codec by default, do likewise in the spec - Note updated 0.14.1 build dependencies in the spec: * OpenSSL 1.0.0 or newer is now required * glib 2.32 required - add upstream signing key and verify source signature- Update to v0.14.1 stable release The announcement email describes this release as follows: The main change in this release is the addition of a new protocol extension in order to support streaming the remote display as a video stream rather than going through the QXL protocol. Together with spice-streaming-agent, and/or with more work on the qemu/ spice-server side, this should allow streaming of 3D accelerated VMs in the future. At this point, this part of spice-server is still a work in progress (multi-monitor support and various features are missing). * avoid performance issues on Windows 10 KVM guests (boo#1109044) * add new org.spice-space.stream.0 channel used for passing an encoded video stream from the guest to the client * add support for TCP_CORK to reduce the amount of packets that we send * fix CVE-2018-10873 (maintainer note: we already carried fix) * fix cursor related migration crash * fix regression causing sound recording to be muted after client disconnection/reconnection (introduced in 0.13.90) * fix regression in corner cases where images could be sent uncompressed when they used to be compressed with QUIC * disable TLS 1.0 support * CELT 0.5.1 support is now disabled by default. If celt051-devel is installed at build-time, --enable-celt051/--disable-celt051 must be explicitly specified * drop support for unsupported OpenSSL version. OpenSSL 1.0.0 or newer is now required * bumped minimum required glib version to 2.32 * endianness fixes * (small) leak fixes * usual round of code cleanups * not directly related to this release, but the upstream git repository is now hosted on gitlab.freedesktop.org - Removed patches: bb15d481-Fix-flexible-array-buffer-overflow.patch- Fix potential heap corruption when demarshalling (CVE-2018-10873, bsc#1104448) Added patch: bb15d481-Fix-flexible-array-buffer-overflow.patch- Avoid buffer overflow on image lz cheks (CVE-2018-10893, bsc#1101295) Added patches: 0001-lz-Avoid-buffer-reading-overflow-checking-for-image-.patch 0002-lz-More-checks-on-image-sizes.patch- Correct RPM group for shared library.- Split the sle condition again for exact features to allow their override- Enable smartcards on sle15 as the supportlib is available * Condition it using name everywhere instead of suse versions and join together with lz4 - Format with spec-cleaner - Convert dependencies to pkgconfig style - Install documentation and license file - Add configure arguments to most of the options to not rely on autotools automatic behavior * Also enable gstreamer and lz4 options - Drop the not needed python dependencies, they are needed only when building from git snapshot- Release 0.14.0 * fix client mouse with virgl * fix frozen display after seamless migration * set human-readable name on spice threads * add sanity-checks for ORC library as it can abort spice-server when selinux is in use * Close TCP connection early when client did not send the correct SPICE magic bytes: this allows VNC clients to gracefully fail when connecting to a SPICE port * Add VP9 encoding support when GStreamer is being used and misc streaming/encoding improvements * Improvements to replay utility * Limit (deprecated/unusud) QXLMessage size to 100,000 characters for improved safety * Improve image quality in low bitrate situation when using the GStreamer backend * Added GStreamer support to the video streaming code * Fix old migration bug causing migration to never end in some cases * Added lz4 compression to the spicevmc channel * Ongoing code cleanups * add spice_qxl_gl_scanout() spice_qxl_gl_draw_async() for local virgl support * spice_server_set_keepalive_timeout() has been removed in favour of unconditionally sending keepalive probes every 10 minutes * Added public spice_server_set_keepalive_timeout() to make it possible to tweak keepalive on all SPICE connection. This can prevent unwanted idle disconnections if proxies are used between the client and the host. * Fix important memory usage when the webdav channel is used * Do not disconnect when the client requests an unsupported compression type * Fix potential race condition when using multiple QXL devices * Fix display glitch when using XSpice * Improve help string for 'replay -s' * Fix small leak in MJPEG code - Removed patches: * CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch * CVE-2016-9578-remote-dos-via-crafted-message.patch- Added patches to fix two security vulnerabilities. * CVE-2016-9577-buffer-overflow-in-main_channel_alloc_msg_rcv_buf.patch [CVE-2016-9577, bsc#1023078] * CVE-2016-9578-remote-dos-via-crafted-message.patch [CVE-2016-9578, bsc#1023079]- Synchronize with SLES (fate#322402): + bnc#894069: disable smartcard support for SLES + merge changelog- restrict suppression of obsoletes-not-provided warning to spice-client bsc#1013916- Obsolete spice-client (bsc#1013916)- remove ExclusiveArch (boo#1009438)- Update to version 0.12.8: + Fixes for bsc#982385 / CVE-2016-0749 and bsc#982386 / CVE-2016-2150.- Update to version 0.12.7 (fate#320079) + spice-server will now send TCP keepalive probes on the TCP connections it uses. This can prevent unwanted idle disconnections if proxies are used between the client and the host. + Fix important memory usage when the webdav channel is used + Do not disconnect when the client requests an unsupported compression type + Fix a few race conditions + Fix display glitch when using XSpice + Improve help string for 'replay -s' + Fix crashes in corner cases (buggy spice-html5 + win10, vnc + SPICE port configured, USB webcam redirection over a slow link) + Fix various compilation warning when building on 32 bit machines + Some fixes for big-endian machines, more work is likely to be needed + Do not build static libraries by default, this can be reenabled with --enable-static + Fix small leak in MJPEG code- Update to version 0.12.6 + Removed spicec client code, it has been superseded by remote-viewer and other spice-gtk based clients + Unix socket support + LZ4 support + Let clients specify their preferred image compression format + Allow to record and replay a spice-server session + Fixes for CVE-2015-3247 CVE-2015-5260 and CVE-2015-5261 bsc#944787, bsc#948976 + spice-protocol submodule has been removed, spice-protocol must now be installed when building spice-server + Remove write polling in chardevs to reduce wakeups - Remove upstream merged patches: + spice-Don-t-use-48kHz-for-playback-recording-rates.patch + password-length-check.patch + cve-2015-3247.patch- bsc#944460: fix CVE-2015-3247. cve-2015-3247.patch- Don't allow setting password longer than what the spice protocol allows. password-length-check.patch. boo#931044- Replace xorg-x11-devel buildrequire by selected pkgconfig(xlibs..)- Update to version 0.12.5: + Added Opus support. Celt support will be obsoleted in a future release. + Addition of webdav channel. + Force use of TLS 1.0 or newer for TLS connections. + Reference manual. + Some optimizations improving CPU use. + Various bug fixes for race conditions, memory corruption, which could be triggered on client disconnections, migration, and cause spice-server to misbehave. + Portability fixes. + Code cleanups. + bsc#848279: fix CVE-2013-4282. - Add pkconfig(opus) BuildRequires: Needed to build new opus support. - Add spice-Don-t-use-48kHz-for-playback-recording-rates.patch: Fix advertised sound playback/recording rates in public headers (rh#1129961). - Drop spice-glibc217.patch: No longer needed. - Run spec-clean on spec file, remove conditionals for obsolete versions of openSUSE, enable parallel build and drop obsolete clean section./sbin/ldconfig/sbin/ldconfigspice-clientlamb14 16233153560.14.2-lp152.2.6.10.14.2-lp152.2.6.10.14.2-lp152.2.6.1libspice-server.so.1libspice-server.so.1.13.0libspice-server1ChangeLogNEWSREADMElibspice-server1COPYING/usr/lib//usr/share/doc/packages//usr/share/doc/packages/libspice-server1//usr/share/licenses//usr/share/licenses/libspice-server1/-fomit-frame-pointer -fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:16488/openSUSE_Leap_15.2_Update/0bbbf904e7190908364c7950e098f310-spice.openSUSE_Leap_15.2_Updatedrpmxz5i586-suse-linuxELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, BuildID[sha1]=6d31634f778ab47de9d7e2cbd6bd05c686fac54c, strippeddirectoryUTF-8 Unicode text, with very long linesASCII textLPPPPPPPPPPPPPPPPPPPPPPPPPPPP P P P P P P P P P PPPPPRRR"R RRRRRRRR RRRRRR RRRR RRRR R!R R#RRRRRBɔ%eƎButf-8a7001c1d105baa5028e6f4b6c18dfe43e15b96e83457ca7da1b905177f13a212?7zXZ !t/]"k%+<rI'}3ɗ]5$ⳙ@ )9](o@|)fKFnOa<4j)(1N)Z0]Z(v:vB)  +[|NW-., 㤨~ME\@ME~[glie̊(+׹4 ~ҩ<!YL.c@V`3υKT˻59T?N&E⼨FHzuDZ?Uth[ڝ*z %|0eL# ,%8n3JilZyIAOɐGʛoՍ3 @UA?e '9|iZ3<t++Y&?XF`P7M\gі ؽj)6>tmJZ-VrJ?H_`&u14Pʤ1ԭ?nZ)@ژYpz~_ Yxh^;GSVZ.|E'T;l;wY*TyTSXldƥÚU kJehoJ_ hZ<5f7\_{4wsO@\a6Q7~|Yk7Z@C?t VE\7wI e.-ߨ}z֔#]x<IœKĵP*7S6ť @~RR,j1AlCs0MUj"9yXXɭ]DԹCm"ZZ\#e΢<ڹI/)pOΡ $tVx?߫[O-i.y2Sx)Q >&AsNA@_8V%㿖qGDr45:7Sj!JhR[p2Nr~p+븫LTs~E<\A"T8Rw{@޹h—5%fW״i(ǂd9رV܊4GhߖcPfNQ  gz@9ԗ7r;LiSc'iS& b`C0%P |K^tA~x!Խ>"/qn!ȞrGSWЯ'f42ϼpTd4"YjX.p{NB~WăIZ g9g"_8y1/hX$ <3eۨ Y7fn6Gyk -E Úf@/VBv {8nE]Nyv8Ed~{`>J$&tρ9pdL1|a6}vHizfU_g22_b X@ңk/5&Dr%kg[WeL./b,T^iP'zp!%9w"7CsϺ;ğ!I2H`›|pTͱ0Ϸ@Z5:2 ܻ$QW4<4ToI}V/=+ JS=h}YP\+F:%莱\s6cqm F<]:mpM,[ah59"~8[_68 YZ