Ubuntu
poppler package

lp:ubuntu/edgy-updates/poppler

Edgy (6.10)
edgy-updates

Created by James Westby on 2009-12-04 and last modified on 2009-12-04

Get this branch:: bzr branch lp:ubuntu/edgy-updates/poppler

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

34. By Kees Cook on 2008-04-15: * SECURITY UPDATE: arbitrary code execution via malicious embedded fonts.
* debian/patches/102_embedded-font-fixes.patch: upstream fix and stronger
type-checking added.
* References
CVE-2008-1693
33. By Jamie Strandboge on 2007-11-13: * SECURITY UPDATE: out of bounds array access causes memory corruption via
  a crafted PDF file
* fix for DCTStream::readScanInfo() in Stream.cc to properly check
  boundaries
* SECURITY UPDATE: integer overflow resulting in heap-based overflow and
  potential arbitrary code execution via crafted PDF file
* fix for DCTStream::reset() in Stream.cc to properly check width and height
* SECURITY UPDATE: boundary error in lookChar() resulting in heap-based
  overflow and potential arbitrary code execution via crafted PDF file
* fixes for CCITTFaxStream::CCITTFaxStream and CCITTFaxStream::lookChar() in
  Stream.cc to properly check boundary conditions. This also includes
  upstream refactoring for easier maintenance.
* References
  CVE-2007-4352
  CVE-2007-5392
  CVE-2007-5393
32. By Kees Cook on 2007-08-07: * SECURITY UPDATE: arbitrary code execution via crafted PDFs
* Add debian/patches/100_streampredictor_overflow.patch: upstream fixes.
* References
CVE-2007-3387
31. By Martin Pitt on 2007-01-16: * SECURITY UPDATE: Denial of Service.
* Add debian/patches/004_CVE-2007-0104.patch:
  - Limit recursion depth of the parsing tree to 100 to avoid infinite loop
    with crafted documents.
  - Patch taken from koffice security update (which has a copy of xpdf
    sources).
30. By Jonathan Riddell on 2006-10-12: Clean sources before upload
29. By Jonathan Riddell on 2006-10-11: Include missing header files in libpoppler-qt4-dev.install and libpoppler-qt-dev.install
28. By Sebastien Bacher on 2006-10-10: * debian/control.in:
- Build-Depends on libglade2-dev to fix the build
27. By Sebastien Bacher on 2006-09-26: * New upstream version, UVF exception granted by Matt Zimmerman
* debian/patches/003_fontconfig-undefined-symbols.patch:
- fixed with the new version
* debian/patches/003_glib_pkgconfig_fix.patch:
- fix pkg-config call to glib
26. By Sebastien Bacher on 2006-09-19: * Build with splash for now, the cairo backend is much slower
  (Ubuntu: #61161)
* debian/control.in:
  - applied the changes made by Jonathan to the correct control file
  - don't Build-Depends on libcairo2-dev
  - no libpoppler-glib-dev Depends on libcairo2-dev
* debian/libpoppler-dev.install:
  - don't list files for cairo
* debian/rules:
  - don't build with cairo
25. By Jonathan Riddell on 2006-09-18: Add Qt 4 packages

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/lucid/poppler

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntupoppler package