document patches

2010-04-19 09:29:44 +00:00 · 2010-04-19 09:29:44 +00:00 · 1b3fd48fca
commit 1b3fd48fca
parent 23613a6e07
1 changed files with 12 additions and 0 deletions
--- a/libwmf.spec
+++ b/libwmf.spec
@ -12,13 +12,25 @@ License: LGPLv2+ and GPLv2+ and GPL+
 Source: http://downloads.sourceforge.net/wvware/%{name}-%{version}.tar.gz
 URL: http://wvware.sourceforge.net/libwmf.html
 Buildroot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
+#Upstream is uncontactable for some time now, which is a real pity esp.
+#wrt CVE-2006-3376/CVE-2009-1364
+#Don't install out of date documentation
 Patch0: libwmf-0.2.8.3-nodocs.patch
+#Allow use of system install fonts intead of libwmf bundled ones
 Patch1: libwmf-0.2.8.3-relocatablefonts.patch
+#Set a fallback font of Times for text if a .wmf file don't set any
 Patch2: libwmf-0.2.8.4-fallbackfont.patch
+#Strip unnecessary extra library dependencies
 Patch3: libwmf-0.2.8.4-deps.patch
+#convert libwmf-config to a pkg-config to avoid multilib conflicts
 Patch4: libwmf-0.2.8.4-multiarchdevel.patch
+#CVE-2006-3376 Integer overflow in player.c
 Patch5: libwmf-0.2.8.4-intoverflow.patch
+#Don't export the modified embedded GD library symbols, to avoid conflicts with
+#the external one
 Patch6: libwmf-0.2.8.4-reducesymbols.patch
+#CVE-2009-1364, Use-after-free vulnerability in the modified embedded GD
+#library
 Patch7: libwmf-0.2.8.4-useafterfree.patch
 Requires: urw-fonts
 Requires: %{name}-lite = %{version}-%{release}