seedlingattempt/godot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
79,293 Commits 21 Branches 65 Tags
master
Commit Graph

8 Commits

Author SHA1 Message Date
Pāvels Nadtočajevs
f0dcccf11c Fix unzSeekCurrentFile not resetting total_out_64. 2025-05-27 16:23:48 +03:00
Rémi Verschelde
91907a89f7 Thirdparty: Harmonize patches to document downstream changes 2025-02-06 01:40:03 +01:00
Rémi Verschelde
8ead8d2ddb zlib/minizip: Update to version 1.3.1 
Minizip includes previously backported fix for CVE-2023-45853,
and a Debian patch for CVE-2014-9485 was also upstreamed.
 2024-01-24 11:32:38 +01:00
Rémi Verschelde
c8dee05bf0 minizip: Backport patch to fix CVE-2023-45853 2023-11-29 15:16:26 +01:00
Rémi Verschelde
e0e1f2e4a2 zlib/minizip: Update to version 1.3 
Upstreams the fix from #73310, so we can remove that patch.
Remove `infback.c` which we stopped compiling after #79273.

The `OF` macro was also removed so I can drop the patch where I yell
at Gentoo developers.
 2023-08-29 11:02:34 +02:00
RedworkDE
071499ac0d Fix ZIPReader failing to open empty zip files 2023-02-14 20:43:11 +01:00
DeeJayLSP
93409b8e64 zlib/minizip: Update to version 1.2.13, remove zlib from freetype 
Security update, fixes CVE-2022-37434 in zlib.

Only applications exposing/using `inflateGetHeader()` seem to be affected,
which is not our case, so this is not critical for Godot.

Remove duplicated copy of zlib in freetype sources to force using the updated
version in `thirdparty/zlib/`.

Co-authored-by: Rémi Verschelde <rverschelde@gmail.com>
 2023-01-07 13:03:06 +01:00
Rémi Verschelde
420d0d50bc zlib/minizip: Update to version 1.2.12 
Security update, fixes CVE-2018-25032 in zlib.

Preliminary assessment doesn't show Godot as affected since we don't
seem to call `deflate` with the problematic parameters, but the extent
of the vulnerability is not fully clear upstream yet.
 2022-03-31 15:19:11 +02:00