lp:debian/lenny/imlib2

Created by James Westby and last modified
Get this branch:
bzr branch lp:debian/lenny/imlib2
Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Status:
Mature

Recent revisions

9. By Nico Golde <email address hidden>

* Non-maintainer upload by the Security Team.
* Fix various heap and stack in the argb, bmp, jpeg, lbm, pnm, tga
  and xpm loaders resulting in arbitrary code execution (CVE-2008-6079).

8. By Thomas Viehmann <email address hidden>

* Non-maintainer upload.
* Fix crash in XPM loader. Bug and test case by Julien Danjou, patch by
  Peter De Wachter, thanks! Closes: #505714 aka CVE-2008-5187
* Change libungif4-dev to libgif-dev in (Build-)Depends.
* Fix doc-base section to drop Apps/.

7. By Nico Golde <email address hidden>

* Non-maintainer upload by the Security Team.
* Fix stack-based buffer overflow in pnm and xpm image loader modules
  leading to arbitrary code execution (CVE-2008-2426; Closes: #483816).

6. By Laurence J. Lane

debian/rules: disable amd64 optimzations. closes: #397012

5. By Martin Pitt

debian/control: Remove duplicate Architecture: field to fix FTBFS.

4. By Laurence J. Lane

src/lib/rend.c: upstream CVS patch fixes crash in digikam.
Reported by <email address hidden>. Thanks. Closes: #318013

3. By Steve Langasek

* Non-maintainer upload.
* High-urgency upload for sarge-targetted RC bugfix.
* Drop the Requires: line from imlib2.pc.in, since there's nothing in
  the current code that will populate it with a proper pkg-config
  dependency list. Closes: #286636.

2. By Joey Hess <email address hidden>

* NMU with the following changes taken from the Ubuntu patch by Martin Pitt
  Closes: #284925
* SECURITY UPDATE: fix several buffer overflows
* loaders/loader_bmp.c: check for negative image width/height
* loaders/loader_xpm.c:
  - check for negative image attributes
  - check the length of the "col" buffer to avoid overflowing it
  - patch taken from upstream CVS
* References:
  CAN-2004-1025
  CAN-2004-1026

1. By Joey Hess <email address hidden>

Import upstream version 1.1.2

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:debian/squeeze/imlib2
This branch contains Public information 
Everyone can see this information.

Subscribers