<br/>
<h1>Changelog from Git</h1><br/><br/>
<div class='changelog'>
-<pre class='wrap'>commit 4776b15fa7ec2afa74f65cd471f94513ea08205a
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-28 18:07:44 +0200
+<pre class='wrap'>commit 69a7a312dccebc8b5f28f8a5e4a703cb8d447d44
+Merge: d6b8aed 5151426
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2019-03-29 12:25:39 +0100
- Add test for fix of a55c024fc6b917a409b85aeafd7326421c4aea34
+ Merge pull request #1188 from rouault/fix_abi_check
+
+ abi-check.sh: fix broken download URL
-commit a55c024fc6b917a409b85aeafd7326421c4aea34
+commit 5151426d6e6f7f0e1ae6f050aaa7cec6bc4ffd08
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-28 17:18:33 +0200
+Date: 2019-03-29 11:53:23 +0100
- Subtile decoding: fix overflows in subband coordinate computation that cause later buffer overflow. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3115. Credit to OSS Fuzz. master only
+ abi-check.sh: fix broken download URL
-commit 8f92fc97913bec7ffa2dc10d062c0cdd19da20e4
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-28 14:57:49 +0200
-
- Make opj_set_decode_area() and opj_decode() take into account opj_set_decoded_resolution_factor() (#1006, affect API use)
-
- * Better document usage of opj_set_decode_area(), ie expecting coordinates
- in full resolution/reference grid even if requesting at a lower resolution
- factor
- * Make sure that image->comps[].factor is set by opj_set_decode_area() and
- opj_decode() from the value specified in opj_set_decoded_resolution_factor()
- * opj_decompress: add 2 environmenet variables to test alternate ways of
- using the API, namely USE_OPJ_SET_DECODED_RESOLUTION_FACTOR=YES to use
- opj_set_decoded_resolution_factor() instead of parameters.cp_reduce, and
- SKIP_OPJ_SET_DECODE_AREA=YES to not call opj_set_decode_area() if -d is
- not specified.
-
-commit 5a4a10120a648848de7522245f8671c3ce285dbc
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-24 14:38:24 +0200
+commit d6b8aed5612e6be6d3a4053867fbd2ae0cb7c8af
+Merge: 25b815d a1d32a5
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2019-03-29 11:52:38 +0100
- Another cleanup in knownfailures-* files
+ Merge pull request #1187 from rouault/fix_ubsan_in_opj_t1_encode_cblks
+
+ opj_t1_encode_cblks: fix UBSAN signed integer overflow
-commit e0a5d148f7e84d18a52c97bd08b21b1dffa9570a
+commit a1d32a596a94280178c44a55d7e7f1acd992ed5d
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-24 14:32:36 +0200
+Date: 2019-03-29 11:17:39 +0100
- Remove test steps from specialized knownfailures- that are already in knownfailures-all.txt
+ opj_t1_encode_cblks: fix UBSAN signed integer overflow
+
+ Fixes #1053 / CVE-2018-5727
+
+ Note: I don't consider this issue to be a security vulnerability, in
+ practice.
+ At least with gcc or clang compilers on x86_64 which generate the same
+ assembly code with or without that fix.
-commit 79aa0b54ddd3e4e3ca09374cb82bd3302a65783a
+commit 25b815dc460dbf9def7e6b822c8998727094f85a
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-24 14:31:13 +0200
+Date: 2019-03-29 10:44:35 +0100
- issue104_jpxstream.jp2 decompresses just fine (and like Kakadu). Update md5refs.txt and remove from knownfailures
+ Revert "[JPWL] tgatoimage(): avoid excessive memory allocation attempt,"
+
+ This reverts commit 05be3084460e46282ee63f04c72c451f3271fd28.
+
+ This commit doesn't compile due to missing OPJ_UINT64 type
-commit c059f431e6262fe5ce296e8137dd478dfe4d1af1
+commit e1740e7ce79d0a1676db4da0f4189b64e85f52cb
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-24 14:09:34 +0200
+Date: 2019-03-29 10:40:58 +0100
- Remove broken.jpc test from known failures, by avoiding too long processing time
+ Revert "[MJ2] Avoid index out of bounds access to pi->include[]"
+
+ This reverts commit c277159986c80142180fbe5efb256bbf3bdf3edc.
+
+ The commit didn't compile. include_size is not defined in openmj2
-commit 5146abc02ebd871aa1e737373cdc7654e8e4b07f
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-24 14:09:31 +0200
+commit 51f097e6d5754ddae93e716276fe8176b44ec548
+Merge: e7640f5 8ee3352
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-12-21 16:41:00 +0100
- imagetopgx(): improve performance in 8 bit case (relates to broken.jpc test case)
+ Merge pull request #1172 from hlef/master
+
+ convertbmp: detect invalid file dimensions early (CVE-2018-6616)
-commit fdcd4e6365731cc1015213e424068131bcd1f31f
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-24 13:23:25 +0200
+commit 8ee335227bbcaf1614124046aa25e53d67b11ec3
+Author: Hugo Lefeuvre <hle@debian.org>
+Date: 2018-12-14 04:58:40 +0100
- Remove -NR-DEC-p1_06.j2k-156-decode and NR-DEC-p1_06.j2k-164-decode from knownfailures
+ convertbmp: detect invalid file dimensions early
+
+ width/length dimensions read from bmp headers are not necessarily
+ valid. For instance they may have been maliciously set to very large
+ values with the intention to cause DoS (large memory allocation, stack
+ overflow). In these cases we want to detect the invalid size as early
+ as possible.
- and make them explicit failures. The result images are empty at the requested resolution
+ This commit introduces a counter which verifies that the number of
+ written bytes corresponds to the advertized width/length.
+
+ Fixes #1059 (CVE-2018-6616).
-commit bc71bd1219269057ea18e6acbc77a96ec37aba82
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-23 18:58:32 +0200
+commit e7640f58f122d1228f3d750864543ad4703e18fc
+Merge: e0f5212 05be308
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-12-07 21:27:38 +0100
- opj_dwt_decode_partial_97(): perf improvement: limit copy of coefficients at end of horizontal pass to actual range of interest
+ Merge pull request #1168 from Young-X/fix_dev
+
+ Fix multiple potential vulnerabilities and bugs
-commit 8180eeace13ffceef5dd7c3f80be156e36181846
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-21 23:06:53 +0200
+commit 05be3084460e46282ee63f04c72c451f3271fd28
+Author: Young Xiao <YangX92@hotmail.com>
+Date: 2018-11-28 14:44:06 +0800
- test_tile_encoder: fix checks on argc
+ [JPWL] tgatoimage(): avoid excessive memory allocation attempt,
+ and fixes unaligned load
+
+ Signed-off-by: Young Xiao <YangX92@hotmail.com>
-commit c97666f72ba26a7ceb64931963b988a6f8f377f9
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-21 19:02:04 +0200
+commit bd88611ed9ad7144ec4f3de54790cd848175891b
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 17:15:05 +0800
- j2k.c: fix comment, and remove FIXME
+ [JP3D] To avoid divisions by zero / undefined behaviour on shift (CVE-2018-14423
+
+ Signed-off-by: Young_X <YangX92@hotmail.com>
-commit 24d069e3ffa2286930a2e7e2638431ea1de6846a
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-21 17:19:13 +0200
+commit ce9583d1d7627e007a34a31ae4e22a00d78bd153
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 17:12:06 +0800
- Add comment
+ [JPWL] opj_compress: reorder checks related to code block dimensions to avoid potential int overflow
+
+ Signed-off-by: Young_X <YangX92@hotmail.com>
+
+commit c58df149900df862806d0e892859b41115875845
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 16:24:19 +0800
+
+ [OPENJP2] change the way to compute *p_tx0, *p_tx1, *p_ty0, *p_ty1 in function
+ opj_get_encoding_parameters
+
+ Signed-off-by: Young_X <YangX92@hotmail.com>
-commit e9bbc6d3dde946bdb5195f053f24b91335d5d84c
-Merge: 3eed024 17a7ac4
+commit c277159986c80142180fbe5efb256bbf3bdf3edc
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 16:12:53 +0800
+
+ [MJ2] Avoid index out of bounds access to pi->include[]
+
+ Signed-off-by: Young_X <YangX92@hotmail.com>
+
+commit e0f5212888c0c1abc5e060a75a3a4a5ff99afd1a
+Merge: 92023cd 2e5ab1d
Author: Even Rouault <even.rouault@mines-paris.org>
-Date: 2017-08-21 13:02:07 +0200
+Date: 2018-11-28 00:04:30 +0100
- Merge pull request #1001 from rouault/subtile_decoding_stage2
+ Merge pull request #1170 from rouault/fix_color_apply_icc_profile
- Subtile decoding: only apply IDWT on areas that participate to the window of interest
+ color_apply_icc_profile: avoid potential heap buffer overflow
-commit 17a7ac42d581c537cfc1da4324e53047ad82b13e
+commit 2e5ab1d9987831c981ff05862e8ccf1381ed58ea
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-21 12:25:38 +0200
+Date: 2018-11-27 23:31:30 +0100
- Add comments for filter_width values
+ color_apply_icc_profile: avoid potential heap buffer overflow
+
+ Derived from a patch by Thuan Pham
-commit f87c5ef7ebef3d7a908e98f2de1b6a0336ae57ae
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-20 22:02:41 +0200
+commit 46822d0eddc3324b2a056bc60ffa997027bebd66
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 15:58:23 +0800
- Subtile decoding: only do 9x7 IDWT computations on relevant areas of tile-component buffer.
+ [JPWL] imagetotga(): fix read heap buffer overflow if numcomps < 3 (#987)
+
+ Signed-off-by: Young_X <YangX92@hotmail.com>
-commit 3eed024eb45534f86537404e08d08fa572a40782
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-19 15:45:54 +0200
+commit 619e1b086eaa21ebd9b23eb67deee543b07bf06f
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 15:02:26 +0800
- pgxtoimage(): avoid excessive memory allocation attempt (#999)
+ [JPWL] fix CVE-2018-16375
+
+ Signed-off-by: Young_X <YangX92@hotmail.com>
-commit 5d403250561398f7ba3041d9eb8c893bd680dd72
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-18 15:08:51 +0200
+commit c5bd64ea146162967c29bd2af0cbb845ba3eaaaf
+Author: Young_X <YangX92@hotmail.com>
+Date: 2018-11-23 14:47:36 +0800
- Subtile decoding: only do 5x3 IDWT computations on relevant areas of tile-component buffer.
+ [MJ2] To avoid divisions by zero / undefined behaviour on shift
- This lowers 'bin/opj_decompress -i ../MAPA.jp2 -o out.tif -d 0,0,256,256'
- down to 0.860s
+ Signed-off-by: Young_X <YangX92@hotmail.com>
-commit e5285319229a5d77bf316bb0d3a6cbd3cb8666d9
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-18 13:39:20 +0200
+commit 92023cd6c377e0384a7725949b25655d4d94dced
+Merge: c196b23 cab352e
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-11-16 09:42:19 +0100
- pgxtoimage(): fix write stack buffer overflow (#997)
+ Merge pull request #1160 from hlef/master
+
+ jp3d/jpwl convert: fix write stack buffer overflow
-commit 028c504a43e962a725c4fd73d6642ee73c653e1b
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-18 12:30:11 +0200
+commit c196b23b90321b5c7e3238294607a2e8626c503f
+Author: ichlubna <43234438+ichlubna@users.noreply.github.com>
+Date: 2018-11-16 09:40:31 +0100
- test_decode_area: fix to make it work with odd image dimensions
+ openjp3d: Int overflow fixed (#1159)
+
+ When compressing a lot of slices (starting from 44 FullHD slices with 3 8bit components in our experiments) the rate values are high enough to cause an int overflow that leads to negative lengths and wrong results. The cast happens too late.
-commit 5597522cac96b1bc6d48a447751b1c6049248eef
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-18 10:16:38 +0200
+commit cab352e249ed3372dd9355c85e837613fff98fa2
+Author: Hugo Lefeuvre <hle@debian.org>
+Date: 2018-11-07 18:48:29 +0100
- bmp_read_rle8_data(): avoid potential infinite loop (#996)
+ jp2: convert: fix null pointer dereference
+
+ Tile components in a JP2 image might have null data pointer by defining a
+ zero component size (for example using large horizontal or vertical
+ sampling periods). This null data pointer leads to null image component
+ data pointer, causing crash when dereferenced without != null check in
+ imagetopnm.
+
+ Add != null check.
+
+ This commit addresses #1152 (CVE-2018-18088).
-commit 5d12806091eab0659431fefcefdb797b09f8e884
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 19:18:48 +0200
+commit 0bc90e4062a5f9258c91eca018c019b179066c62
+Author: Hugo Lefeuvre <hle@debian.org>
+Date: 2018-10-22 16:59:41 +0200
- opj_j2k_update_rates(): grow tile size buffer for some situations
+ jp3d/jpwl convert: fix write stack buffer overflow
+
+ Missing buffer length formatter in fscanf call might lead to write
+ stack buffer overflow.
+
+ fixes #1044 (CVE-2017-17480)
-commit 4b0bfbfabc3ce1cc4c6d18dc7113b9f6335372d4
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 16:07:19 +0200
+commit 948332e6ed17565100d1df5f6fdbf66865218e36
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2018-10-31 20:44:30 +0100
+
+ Fix some potential overflow issues (#1161)
+
+ * Fix some potential overflow issues
+
+ Put sizeof to the beginning of the multiplication to enforce that
+ size_t instead of smaller integer types is used for the calculation.
+
+ This fixes warnings from LGTM:
+
+ Multiplication result may overflow 'unsigned int'
+ before it is converted to 'unsigned long'.
+
+ It also allows removing some type casts.
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
+
+ * Fix code indentation
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
- Zero-initialize tile buffer regions of skipped code-blocks, so as to make Valgrind happy
+commit e52909f4c7896c5efff3340d707c12d0df55d3f9
+Merge: cd900d9 943db0f
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-10-31 20:41:52 +0100
-commit fe338a057c39797bf61939471ebaef09e44464c7
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-14 13:23:57 +0200
+ Merge pull request #1163 from nforro/memory-and-resource-leaks
+
+ Fix several memory and resource leaks
+
+commit 943db0f1c28ca6a7df6d18483f97166a03be9bf7
+Author: Nikola Forró <nforro@redhat.com>
+Date: 2018-10-31 13:39:05 +0100
- Sub-tile decoding: only decode precincts and codeblocks that intersect the window specified in opj_set_decode_area()
+ Fix several memory and resource leaks
+
+ Signed-off-by: Nikola Forró <nforro@redhat.com>
-commit 17ea17f487a777d14bd322ac06c4e6cb9124a226
+commit cd900d96618ab77e79812db654731dd6b5fc7bd8
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 19:05:29 +0200
+Date: 2018-10-18 11:45:45 +0200
- Fix -Wconversion warning
+ opj_thread_pool_setup(): fix infinite waiting if a thread creation failed
-commit fd8448ed446a935da3210821a783e794ede3c599
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 17:04:48 +0200
+commit 0e6a5553cfef21b764d289585af2c6934a95456b
+Merge: 8fc09e5 ca16fe5
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 23:54:12 +0200
- bench_dwt.c: fix signedness related warnings
+ Merge pull request #1148 from hlef/master
+
+ CVE-2018-5785: fix issues with zero bitmasks
-commit da046b73a89806eae2f7f461c2a46bda7e07aaa8
+commit 8fc09e50e557fa6af4c099b9c6d36bb1071ee1ed
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 17:02:40 +0200
+Date: 2018-09-22 23:47:56 +0200
- convert.c: fix recently introduced -Wsign-conversion warnings
+ opj_jp2_apply_pclr(): remove useless assert that can trigger on some files (fixes #1125)
-commit 9f7d79fd30df3712e6bfc6d475bfa143c069c4df
+commit aaf48ee6bae91032f025f9ac11592c4085a0d96b
+Merge: ee827ad cc38247
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 14:52:10 +0200
+Date: 2018-09-22 23:12:50 +0200
- opj_getopt_long(): avoid infinite loop on invalid or missing value for an option (#736)
+ Merge branch 'pr1095'
-commit 1ab6e0e07a67193564811c5720a69cb28f09a809
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 12:01:16 +0200
+commit cc3824767bde397fedb8a1ae4786a222ba860c8d
+Author: Karol Babioch <kbabioch@suse.de>
+Date: 2018-03-02 14:40:58 +0100
- opj_decompress_fuzzer.cpp: reject images with too big tiles. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2918. Credit to OSS Fuzz
+ opj_mj2_extract: Check provided output prefix for length
+
+ This uses snprintf() with correct buffer length instead of sprintf(), which
+ prevents a buffer overflow when providing a long output prefix. Furthermore
+ the program exits with an error when the provided output prefix is too long.
+
+ Fixes #1088.
-commit 2cd30c2b06ce332dede81cccad8b334cde997281
+commit ee827ad3f32469d4854b2da71c9703a2af359f9f
+Merge: 5d94bcd 1eb9a57
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 11:47:40 +0200
+Date: 2018-09-22 23:05:54 +0200
- tgatoimage(): avoid excessive memory allocation attempt, and fixes unaligned load (#995)
+ Merge branch 'pr1107'
-commit 09e83407fa2b53c606d3179031b8d8b31272e20c
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-17 11:05:53 +0200
+commit 1eb9a57ac1216209a4d9adf87bc47ba19810d3b3
+Author: szukw000 <szukw000@arcor.de>
+Date: 2018-03-13 18:11:54 +0100
- Avoid asserting on assert(i == pcol) in opj_jp2_apply_pclr() by adding new check in opj_jp2_check_color(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3068. Credit to OSS Fuzz
+ opj_mj2_extract: Avoid segfault for long filenames
-commit 8e6c371e66d9c579048fd336cc3365869486080a
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 18:29:59 +0200
+commit 5d94bcd89c6e281614955c56cbfebb11b866a9dd
+Merge: b54c06f 0fa7ebe
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:59:36 +0200
+
+ Merge pull request #1136 from reverson/master
+
+ Cast on uint ceildiv
+
+commit b54c06fb350d318c8e74755710b3480eae3b9911
+Merge: 17bbb0e 4aaf52e
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:59:17 +0200
- opj_t1_encode_cblk(): avoid uint32 overflow when numbps = 0 (which is well defined behaviour, and is properly handled here, but better avoid it to detect real issues)
+ Merge pull request #1119 from stweil/ssize_t
+
+ Use local type declaration for POSIX standard type only for MS compiler
-commit 1e387de74273c4dac618df94475556541c1caf3e
+commit 17bbb0e23ff03bb722914841a9b962b21fe7a310
+Merge: ccc4441 3d6ffaf
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:55:33 +0200
+
+ Merge pull request #1128 from stweil/typos
+
+ Fix some typos in code comments and documentation
+
+commit ccc4441aeb7bf4928e55bd543fab8de662f6d5e7
+Merge: c6ee006 24fd3ce
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:54:51 +0200
+
+ Merge pull request #1140 from bukatlib/fix_relpath
+
+ Relative path to header files is hardcoded in OpenJPEGConfig.cmake.in file
+
+commit c6ee006250b093f443e226288c6c866c5ebe12f5
+Merge: 2d28610 98363e2
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:47:27 +0200
+
+ Merge pull request #1141 from szukw000/changes-in-pnmtoimage
+
+ Changes in pnmtoimage if image data are missing
+
+commit 2d2861036cfb68560e0cf21340760781ea78595d
+Merge: 1b9a81d 31a03b3
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:28:04 +0200
+
+ Merge pull request #1143 from stweil/format
+
+ openjp2/jp2: Fix two format strings
+
+commit 1b9a81dff7c22ed0cb22bf1033e6dfee1292da31
+Merge: 9d1a9dc c28ed52
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-09-22 22:27:14 +0200
+
+ Merge pull request #1149 from rouault/fix_knownfailures
+
+ Update knownfailures- files given current configurations
+
+commit c28ed521633c074f1e4891208028fe97f7602a14
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 17:38:47 +0200
+Date: 2018-09-22 21:56:50 +0200
+
+ Update knownfailures- files given current configurations
+
+commit ca16fe55014c57090dd97369256c7657aeb25975
+Author: Hugo Lefeuvre <hle@debian.org>
+Date: 2018-09-22 14:33:19 -0400
+
+ convertbmp: fix issues with zero bitmasks
+
+ In the case where a BMP file declares compression 3 (BI_BITFIELDS)
+ with header size <= 56, all bitmask values keep their initialization
+ value 0. This may lead to various undefined behavior later e.g. when
+ doing 1 << (l_comp->prec - 1).
+
+ This issue does not affect files with bit count 16 because of a check
+ added in 16240e2 which sets default values to the color masks if they
+ are all 0.
+
+ This commit adds similar checks for the 32 bit case.
+
+ Also, if a BMP file declares compression 3 with header size >= 56 and
+ intentional 0 bitmasks, the same issue will be triggered in both the
+ 16 and 32 bit count case.
+
+ This commit adds checks to bmp_read_info_header() rejecting BMP files
+ with "intentional" 0 bitmasks. These checks might be removed in the
+ future when proper handling of zero bitmasks will be available in
+ openjpeg2.
+
+ fixes #1057 (CVE-2018-5785)
+
+commit 31a03b390a77bfbe4b0f140121d1296acb611f76
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2018-09-05 21:51:30 +0200
+
+ openjp2/jp2: Fix two format strings
+
+ Compiler warnings:
+
+ src/lib/openjp2/jp2.c:1008:35: warning:
+ too many arguments for format [-Wformat-extra-args]
+ src/lib/openjp2/j2k.c:1928:73: warning:
+ format ‘%d’ expects argument of type ‘int’, but argument 4 has type ‘OPJ_OFF_T {aka long int}’ [-Wformat=]
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
+
+commit 3d6ffaf3f3463b62830f88f50a8c1b510f555eb5
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2018-07-30 21:04:28 +0200
+
+ Fix some typos in code comments and documentation
+
+ All typos were found by Codespell.
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
+
+commit 98363e244e027c731f73ee8239d3c19451a9153b
+Author: szukw000 <szukw000@arcor.de>
+Date: 2018-08-31 16:24:41 +0200
+
+ Changes in pnmtoimage if image data are missing
+
+commit 24fd3ce777a64b8b315cfe1ee642ec7b1cc6aa97
+Author: Libor Bukata <libor.bukata@oracle.com>
+Date: 2018-08-31 12:57:40 +0200
+
+ The change makes a relative path to header files
+ always correct regardless of the number of sub-
+ directories in OPENJPEG_INSTALL_PACKAGE_DIR variable.
+
+commit 0fa7ebe2540990f590c2247b3505ac1dc84b6eec
+Author: Robert Everson <robert@reverson.net>
+Date: 2018-08-27 15:28:53 -0700
+
+ Cast on uint ceildiv
+
+commit 9d1a9dc20dd5155bab977a4f53d05c4bbd66533a
+Merge: d2205ba 56f23b2
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-08-11 23:35:35 +0200
+
+ Merge pull request #1133 from robe2/robe2-pkgconfig-instructions
+
+ Add -DBUILD_PKGCONFIG_FILES to install instructions
- Fix build issue of JPWL by adding opj_image_data_alloc() and opj_image_data_free() to src/lib/openmj2 (#994)
+commit 56f23b29a075467fc2377ba086c0263a3eb70fe6
+Author: Regina Obe <lr@pcorp.us>
+Date: 2018-08-11 16:59:30 -0400
-commit c535531f03369623b9b833ef41952c62257b507e
+ Add -DBUILD_PKGCONFIG_FILES to install instructions
+
+ Building under msys/mingw doesn't automatically install the pkg config files needed to build GDAL and other libraries
+
+commit d2205ba2ee78faeea659263383446c4472b1f9df
+Merge: fd205f4 4170681
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-06-20 16:26:24 +0200
+
+ Merge pull request #1121 from rouault/fix_tnsot_zero
+
+ Fix regression in reading files with TNsot == 0 (refs #1120)
+
+commit 4170681661126bc9c1348a0183633dc2f4fc8b05
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 17:20:29 +0200
+Date: 2018-06-20 15:06:16 +0200
- opj_t2_encode_packet(): fix potential write heap buffer overflow (#992)
+ Add test cases for https://github.com/uclouvain/openjpeg/issues/1120 and https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2785
-commit dcac91b8c72f743bda7dbfa9032356bc8110098a
+commit 0c913b0aba409148b51ca43d45c50ae595449723
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 17:09:10 +0200
+Date: 2018-06-20 14:54:09 +0200
- opj_j2k_write_sot(): fix potential write heap buffer overflow (#991)
+ Avoid assertion when running opj_j2k_merge_ppt() several time due to e6674f7ed66abdb32a0be5944f618722b6a7b5d5 revert. Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2785
-commit af760007711bf93041d3eba3a41b9a48d365f303
+commit 832dfd18665da08745748bde2d2563f00c7cd9e7
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 13:36:52 +0200
+Date: 2018-06-20 14:38:41 +0200
- tiftoimage(): fix read heap buffer overflow (#988)
+ Revert "Avoid assertion in opj_j2k_merge_ppt() in case premature EOC is encountered in opj_j2k_read_tile_header(). Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=2785. Credit to OSS Fuzz" (fixes #1120)
- The number of components is given only by TIFFTAG_SAMPLESPERPIXEL / tiSpp.
- Querying TIFFTAG_EXTRASAMPLES only give information about which channel is
- the alpha channel, but we mostly ignore it for now, so remove that part of the
- code.
+ This reverts commit 9906fbf737692486cebabe98169988d818e2e66a.
+ which broke decoding of images where TNsot == 0
-commit ab4de904e7dc1deee83122cd2bf6e0e7f4eb2eb0
-Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 13:11:36 +0200
+commit 4aaf52ec8d8ec7b94c73f77f9c0029a3d3cabbf9
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2018-06-18 14:06:25 +0200
- imagetotga(): fix read heap buffer overflow if numcomps < 3 (#987)
+ Use local type declaration for POSIX standard type only for MS compiler
+
+ ssize_t is a POSIX type which is declared in POSIX include files.
+ Mingw-w64 provides it also for Windows.
+
+ Use the local declaration only with MS compilers.
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
-commit 9624b2fa4722edf77fbac631e7dacaae12c91672
+commit fd205f457b157e925e2a6eb03aba397b45b0ed4e
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-16 12:52:33 +0200
+Date: 2018-06-16 16:17:58 +0200
- opj_t2_encode_packet(): only emit an error about insufficiently large output buffer in FINAL_PASS mode. Fixes (master-only) regression added in 0b4fef6d1901254e41ab74ed681daba477d724c3
+ opj_compress: try to make help message of -c switch clearer (fixes #1117)
-commit 4241ae6fbbf1de9658764a80944dc8108f2b4154
+commit 2c7eb4fed9cbed43ae402840f6706998ce2dd1c4
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-15 11:55:58 +0200
+Date: 2018-03-12 14:24:20 +0100
- Fix assertion in debug mode / heap-based buffer overflow in opj_write_bytes_LE for Cinema profiles with numresolutions = 1 (#985)
+ opj_compress: fix help message regarding default precinct size
-commit 52d5690a6fcba86b5f117eeac8aca1971cac3688
-Merge: baf0c1a bc59410
+commit a59512e0990c5923de77a542a1386edee32acd47
+Merge: 3910be8 8ad94f6
Author: Even Rouault <even.rouault@mines-paris.org>
-Date: 2017-08-14 17:28:26 +0200
+Date: 2018-03-04 23:54:09 +0100
- Merge pull request #984 from stweil/const
+ Merge pull request #1104 from rouault/macos_fix
- Use more const qualifiers
+ Fix Mac builds
-commit baf0c1ad4572daa89caa3b12985bdd93530f0dd7
+commit 8ad94f689ecabc5e9058874af42306793d5b93e9
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-14 17:26:58 +0200
+Date: 2018-03-04 23:27:44 +0100
- bmp_read_info_header(): reject bmp files with biBitCount == 0 (#983)
+ Fix Mac builds
-commit afb308b9ccbe129608c9205cf3bb39bbefad90b9
+commit 3910be8a68d21df5f23e764c593058ba35557051
+Merge: e98d0a2 cfc5395
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-03-04 23:19:59 +0100
+
+ Merge pull request #1062 from radarhere/master
+
+ Fixed typos
+
+commit e98d0a20f049c59ba31a19de2fccfaabdcbce502
+Merge: 31a347a d4d7827
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-03-04 23:16:04 +0100
+
+ Merge pull request #1094 from kbabioch/fix/missing-format-string-parameter
+
+ mj2: Add missing variable to format string in fprintf() invocation in meta_out.c
+
+commit 31a347a9a04209933c63b180c9ff04bdf8a427e5
+Merge: b02e0d9 db6841a
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-03-04 23:13:45 +0100
+
+ Merge pull request #1096 from kbabioch/fix/opj_mj2_extract-help
+
+ opj_mj2_extract: Rename output_location to output_prefix
+
+commit b02e0d9c4e746faf7448cb06f0487402dff66083
+Merge: 564fbfb e351c22
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-03-04 23:10:48 +0100
+
+ Merge pull request #1101 from kbabioch/fix/jp3d-sprintf-overflow
+
+ jp3d: Replace sprintf() by snprintf() in volumetobin()
+
+commit e351c22ee8c4d8cef0f212831a00447bc0400601
+Author: Karol Babioch <karol@babioch.de>
+Date: 2018-03-03 10:10:32 +0100
+
+ jp3d: Replace sprintf() by snprintf() in volumetobin()
+
+ This replaces the unsafe sprintf() invocation by the safer snprintf()
+ one, with the correct buffer size to prevent buffer overflows.
+
+ This fixes #1085.
+
+commit db6841a099645f5063dc8c2f804b0724a9ea557b
+Author: Karol Babioch <kbabioch@suse.de>
+Date: 2018-03-02 15:19:19 +0100
+
+ opj_mj2_extract: Rename output_location to output_prefix
+
+ This renames the argument in the help output, as the latter better describes
+ the the purpose of this argument.
+
+commit d4d78272ebe3b65a22e5c98841d451f2078625fa
+Author: Karol Babioch <kbabioch@suse.de>
+Date: 2018-03-02 14:03:03 +0100
+
+ mj2: Add missing variable to format string in fprintf() invocation in meta_out.c
+
+ This adds the appropriate variables to the invocation of fprintf(). They were
+ specified in the format string, but were missing in the actual call. This
+ fixes #1074 and #1075.
+
+commit 564fbfb67830e2eb234bc16b3db8fecf54261f95
+Merge: bce2bd7 b49fa93
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-02-25 19:59:18 +0100
+
+ Merge pull request #1090 from stweil/utf8
+
+ Convert files to UTF-8 encoding
+
+commit bce2bd71c06e3550e57442dfa715fcce5351bc7a
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-14 17:20:37 +0200
+Date: 2018-02-25 19:20:38 +0100
- Encoder: grow buffer size in opj_tcd_code_block_enc_allocate_data() to avoid write heap buffer overflow in opj_mqc_flush (#982)
+ .travis.yml: temporarily disable OPJ_CI_ASAN=1 (refs #1091)
-commit bc59410f253b0cd3d4818ec06ce957cbdbfe4341
+commit b49fa93aa759cb2e2e22e174ef793470eb02a148
Author: Stefan Weil <sw@weilnetz.de>
-Date: 2017-08-14 14:36:06 +0200
+Date: 2018-02-24 14:55:33 +0100
- Use const qualifier for mqc_states
-
- This allows more compiler optimizations.
+ openjp3d: Convert ISO-8859 to UTF-8
Signed-off-by: Stefan Weil <sw@weilnetz.de>
-commit 10e6ce2c2cfacf51fdde7e9c69bf2365840f4bb0
+commit 244f52483df75e6507d676b25d31e6e7bf08bdf5
Author: Stefan Weil <sw@weilnetz.de>
-Date: 2017-08-13 22:57:31 +0200
+Date: 2018-02-24 14:51:28 +0100
- Use const qualifier for j2k_prog_order_list
-
- This allows more compiler optimizations.
+ jp3d: Convert ISO-8859 to UTF-8
Signed-off-by: Stefan Weil <sw@weilnetz.de>
-commit 0b4c3ce75d11600ebc6675bd871f78ca3c95bc60
-Merge: a35b489 9f75088
+commit 90b1bffa7e745c754afb56dc89ccb70f8aeeadcf
+Merge: 06f7d41 24d08ff
Author: Even Rouault <even.rouault@mines-paris.org>
-Date: 2017-08-11 15:13:35 +0200
+Date: 2018-02-25 18:21:23 +0100
- Merge pull request #980 from szukw000/changes-for-ppc64-converttif
+ Merge pull request #1080 from setharnold/patch-1
- Changes in converttif.c for PPC64
+ fix unchecked integer multiplication overflow
-commit 9f750884f91a4f1b9ca3e6a401057c21a7e2bd99
-Author: szukw000 <szukw000@arcor.de>
-Date: 2017-08-11 00:06:23 +0200
+commit 06f7d412435ddb62f8e9935af7e306783bc4b75b
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2018-02-18 14:38:16 +0100
+
+ bench_dwt: fix wrong index in iteration (issue found by Fethi Migaou)
- Changes in converttif.c for PPC64
+commit 24d08ff94ad8b0f51534e46f87cf5a2f2f85d22a
+Author: setharnold <seth.arnold@gmail.com>
+Date: 2018-02-14 17:46:38 -0800
+
+ fix unchecked integer multiplication overflow
+
+ Hello, this fixes an unchecked integer multiplication overflow. Thanks.
-commit a35b4891340dcecf2b248c7e57a90bf7d7aa9b2f
+commit da5e897232ef824daf9a492e746ed22cf2a43f18
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-10 16:58:36 +0200
+Date: 2018-02-11 13:31:04 +0100
+
+ Avoid out-of-bounds write overflow due to uint32 overflow computation on images with huge dimensions. Credit to Google Autofuzz project for providing test case
+
+commit cfc539512a1b138c2feedda9fd2f57d36cdaa0db
+Author: Andrew Murray <radarhere@users.noreply.github.com>
+Date: 2018-02-09 21:02:25 +1100
+
+ Fixed typos
+
+commit d96d2b9a2524f41a8e024462f94417c09747ba99
+Merge: 07d526e 6941bc6
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-02-05 17:31:49 +0100
+
+ Merge pull request #1055 from ideasman42/patch-1
+
+ Note that seek uses SEEK_SET behavior.
+
+commit 6941bc67cf0b152adde1a46746037b7e96e947b2
+Author: Campbell Barton <ideasman42@gmail.com>
+Date: 2018-01-18 15:16:03 +1100
- Fix argument order in error message of previous commit
+ Note that seek uses SEEK_SET behavior.
-commit 0b4fef6d1901254e41ab74ed681daba477d724c3
+commit 07d526e4cb93b6d2e1a52cf49e3d011d3d4caa11
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-10 16:49:47 +0200
+Date: 2018-01-08 09:38:44 +0100
- Propagate event manager down to opj_t2_encode_packet() and use it to emit an error message when the output buffer is too small
+ opj_t2_encode_packet(): disable setting empty packet header bit to 1 when there is an empty packet
+
+ This effectively reverts commit 2609fb8077125b5b31f1bcc2f98c12ff1e6572d7
+ since it has been reported that
+ such packets cause decoding issues with cinema J2K hardware
+ decoders: https://groups.google.com/forum/#!topic/openjpeg/M7M_fLX_Bco
+
+commit bdcead70d5900cf5b90774b218183334ca898723
+Merge: e4c3595 4841292
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-01-07 17:49:37 +0100
-commit a316f36dfc7cc4217bfce0ac6d23b47f90cf8fd9
+ Merge pull request #1047 from stweil/coverity
+
+ Fix resource leak (CID 179466)
+
+commit e4c3595077b2a38579c32f2c63bb01d5213b64d2
+Merge: d241298 6e6f835
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2018-01-07 17:49:08 +0100
+
+ Merge pull request #1050 from szukw000/changes-for-obsolete-doxygen-tags
+
+ Some Doxygen tags are removed
+
+commit d241298fdcd95932346da993d5fbe20210dadd2d
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-10 14:43:16 +0200
+Date: 2018-01-07 17:45:53 +0100
+
+ Add known failure for Windows VC10 i386 target (refs #1043)
+
+commit 6e6f8354a0614a6af61568a73aea573b8e76f894
+Author: szukw000 <szukw000@arcor.de>
+Date: 2018-01-07 17:11:09 +0100
- Fix crash on encoding if using opj_set_default_encoder_parameters() without defining tcp_numlayers
+ Some Doxygen tags are removed
+
+commit 4841292b5df8f5ed3c92f1760769428ad7500b7a
+Author: Stefan Weil <sw@weilnetz.de>
+Date: 2017-12-15 16:49:33 +0100
+
+ Fix resource leak (CID 179466)
+
+ Coverity report:
+
+ CID 179466 (#1 of 1): Resource leak (RESOURCE_LEAK)
+ 93. leaked_storage: Variable name going out of scope leaks the storage it points to.
+
+ Signed-off-by: Stefan Weil <sw@weilnetz.de>
-commit a4c938181deb2cb48e408ac6e358062927060125
+commit 9d0d1a0128c7a9324c9a935b2ded01deb4d660d4
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-10 12:30:31 +0200
+Date: 2017-11-30 15:39:45 +0100
- Reformat tests/test_tile_encoder.c
+ Add known failure for i386 target (refs #1043)
-commit 26fe8f60433aa677fd29590e7da23437c41e99c8
+commit 98cfdd31340509895f3e2a36f667f66bb3cf1ff2
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-10 11:45:49 +0200
+Date: 2017-11-30 14:48:34 +0100
- Improve doc of opj_tccp_info_t::cblkw and cblkh
+ opj_j2k_read_cod: remove check for 'No more than one COD marker per tile' (fixes #1043)
+
+ This check was added per https://github.com/uclouvain/openjpeg/commit/daed8cc9195555e101ab708a501af2dfe6d5e001
+ to fix https://github.com/uclouvain/openjpeg/issues/476 , but it does not seem
+ to be necessary with latest master (issue476.jp2 doesn't cause memory issues),
+ and breaks reading legit files.
-commit 07c2fe28b0ef3dc9f168f2b2c449275ac1dde981
-Author: Antonin Descampe <antonin@gmail.com>
-Date: 2017-08-09 21:51:16 -0700
+commit 936910cf7a4d85e341582746126d105a8a044f30
+Author: Even Rouault <even.rouault@spatialys.com>
+Date: 2017-11-30 14:26:17 +0100
- Comment back previous version in abi-check.sh
+ Fix typo in comments
-commit c5987173c5ca2d6fb140dd84d7ae7736824e6d66
-Author: Antonin Descampe <antonin@gmail.com>
-Date: 2017-08-09 21:35:30 -0700
+commit 370d024d108ffe2d5ce9b52f6b7fae5261c4871d
+Merge: d9f8f7b 157a3d8
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2017-11-14 12:28:44 +0100
- update abi-check for latest release
+ Merge pull request #1042 from radarhere/cmake
+
+ Changed cmake version test to allow for cmake 2.8.11.x
-commit 3d7cde5fc9fbc5618d02160900d32e02ed12a00e
-Author: Antonin Descampe <antonin@descampe.net>
-Date: 2017-08-09 17:31:50 -0700
+commit 157a3d840884abe5020b1a8b94576a7447063385
+Author: Andrew Murray <radarhere@users.noreply.github.com>
+Date: 2017-11-14 21:45:09 +1100
- Preparing Release v2.2.0
+ Changed cmake version test to allow for cmake 2.8.11.x
-commit bc21818c635f1f84aa72bb327a20ca42c3b6dcbe
-Author: Antonin Descampe <antonin@gmail.com>
-Date: 2017-08-09 17:28:17 -0700
+commit d9f8f7ba9a51732eda9017cea6493cc86a62c7ef
+Merge: 53d2655 10d22ec
+Author: Even Rouault <even.rouault@mines-paris.org>
+Date: 2017-10-20 21:59:14 +0200
+
+ Merge pull request #1037 from gfiumara/master
+
+ Add missing fclose() statement in error condition.
+
+commit 10d22ec26d864e93ad92b4570f044258c6c5bdf9
+Author: Gregory Fiumara <gregory.fiumara@nist.gov>
+Date: 2017-10-20 15:31:45 -0400
- Preparing Release v2.2.0
+ Add missing fclose() statement in error condition.
-commit c03fbbee6399d6a996f484015035d5996ce80f9a
+commit 53d265576ae0cea480f22f3b08f1c05c8af40d4d
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-10 01:14:35 +0200
+Date: 2017-10-14 22:42:12 +0200
- .travis.yml: add 'dist: precise' for config that requires it
+ CMakeLists.txt: turn BUILD_PKGCONFIG_FILES ON by default on Windows if compiler is GCC
-commit 4b16e8d27ae524c5bf5f8af299703f7334752465
+commit be6ea90e13fe81a922d831b589c54554282e5545
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-09 17:37:05 +0200
+Date: 2017-10-12 01:16:23 +0200
- Remove useless opj_tcd_t::enumcs field added per #975
+ opj_j2k_set_threads(): add sanity check to error out if called after opj_read_header()
-commit 5e200452db84947f4eb893ae7f02f7dd9a358378
+commit b8bf9bf78995526bbf0dc0536914661a07f9d2f5
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-09 15:04:29 +0200
+Date: 2017-10-12 01:05:04 +0200
- Doc: fix error in previous commit
+ Improve doc of opj_codec_set_threads()
-commit 9203e8ec51a1c1c1a358a9cbafdf3391549ebc80
+commit 66297f07a43d2770a97c8456d20202f3d051d980
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-09 14:50:59 +0200
+Date: 2017-10-09 11:40:43 +0200
- tcd.h: doc fixes and improvements
+ Unix build: fix regression of 2.3.0 where a shared-only or static-only build lacks the installation target for the library (#1019, fixes regression introduced by 3dfc6ca2bcf06fd1adb6b6b4cecc6c092f08ba0b)
-commit 11b1ffb373d8e41705348080ba5e74a4ffe4148c
+commit e8b6b54d1f7a2c3d501b9afebe9019ad14f4053a
Author: Even Rouault <even.rouault@spatialys.com>
-Date: 2017-08-09 14:13:58 +0200
+Date: 2017-10-06 19:25:07 +0200
+
+ opj_decompress -h: document -threads ALL_CPUS
+
+commit acd915080e7a63d1892171533ec245e629c88116
+Author: Antonin Descampe <antonin@gmail.com>
+Date: 2017-10-04 23:17:04 -0300
+
+ Finalise ABI check update for v2.3.0
+
+commit d322cc876f976a88328c00c148e5a5536f5c1b56
+Author: Antonin Descampe <antonin@gmail.com>
+Date: 2017-10-04 22:59:08 -0300
+
+ Update ABI check for v2.3.0
+
+commit 081de4b15f54cb4482035b7bf5e3fb443e4bc84b
+Author: Antonin Descampe <antonin@descampe.net>
+Date: 2017-10-04 19:23:14 -0300
+
+ Update CHANGELOG.md
+
+commit 3916fa2e2a286ea795cdb6df7cebed6ac05be983
+Author: Antonin Descampe <antonin@descampe.net>
+Date: 2017-10-03 17:48:44 -0300
+
+ Update NEWS.md
+
+commit ab84ad39d71481555efdd2dd7c56b344b7b75f0f
+Author: Antonin Descampe <antonin@descampe.net>
+Date: 2017-10-03 17:48:09 -0300
+
+ Update CHANGELOG.md
+
+commit 5a67128a251af3f9557d6a9b3b23a7925aec1a5f
+Author: Antonin Descampe <antonin@descampe.net>
+Date: 2017-10-03 17:15:44 -0300
- Document qmfbid values
+ Update NEWS.md
...</pre></div>