Branches for Maverick

Author: Scott Kitterman
Revision Date: 2010-09-09 08:41:26 UTC

* Revert conversion to poppler and other recent changes to get a working
  package before release on the advice of the Debian maintainer
  (LP: #611446)
  - Retain only debian/patches/fix-577031.patch from newer revisions

Author: Brian Thomason
Revision Date: 2011-01-20 17:05:14 UTC

* SECURITY UPDATE: Gfx::getPos function allows context-dependent attackers to
  cause a denial of service (crash) via unknown vectors that trigger an
  uninitialized pointer dereference. (LP: #701220)
  - cve-2010-3702.dpatch: Patch provided by Debian (courtesy of Michael Gilbert)
  - CVE-2010-3702
* SECURITY UPDATE: FoFiType1::parse function allows context-dependent
  attackers to cause a denial of service (crash) and possibly execute
  arbitrary code via a PDF file with a crafted Type1 font that contains a
  negative array index, which bypasses input validation and which triggers
  memory corruption. (LP: #701220)
  - cve-2010-3704.dpatch: Patch provided by Debian (courtesy of Michael Gilbert)
  - CVE-2010-3704

Author: Brian Thomason
Revision Date: 2011-01-20 17:05:14 UTC

* SECURITY UPDATE: Gfx::getPos function allows context-dependent attackers to
  cause a denial of service (crash) via unknown vectors that trigger an
  uninitialized pointer dereference. (LP: #701220)
  - cve-2010-3702.dpatch: Patch provided by Debian (courtesy of Michael Gilbert)
  - CVE-2010-3702
* SECURITY UPDATE: FoFiType1::parse function allows context-dependent
  attackers to cause a denial of service (crash) and possibly execute
  arbitrary code via a PDF file with a crafted Type1 font that contains a
  negative array index, which bypasses input validation and which triggers
  memory corruption. (LP: #701220)
  - cve-2010-3704.dpatch: Patch provided by Debian (courtesy of Michael Gilbert)
  - CVE-2010-3704