lp:ubuntu/edgy-updates/poppler
- Get this branch:
- bzr branch lp:ubuntu/edgy-updates/poppler
Branch merges
Branch information
Recent revisions
- 34. By Kees Cook
-
* SECURITY UPDATE: arbitrary code execution via malicious embedded fonts.
* debian/patches/ 102_embedded- font-fixes. patch: upstream fix and stronger
type-checking added.
* References
CVE-2008-1693 - 33. By Jamie Strandboge
-
* SECURITY UPDATE: out of bounds array access causes memory corruption via
a crafted PDF file
* fix for DCTStream::readScanInfo( ) in Stream.cc to properly check
boundaries
* SECURITY UPDATE: integer overflow resulting in heap-based overflow and
potential arbitrary code execution via crafted PDF file
* fix for DCTStream::reset() in Stream.cc to properly check width and height
* SECURITY UPDATE: boundary error in lookChar() resulting in heap-based
overflow and potential arbitrary code execution via crafted PDF file
* fixes for CCITTFaxStream::CCITTFaxStream and CCITTFaxStream: :lookChar( ) in
Stream.cc to properly check boundary conditions. This also includes
upstream refactoring for easier maintenance.
* References
CVE-2007-4352
CVE-2007-5392
CVE-2007-5393 - 32. By Kees Cook
-
* SECURITY UPDATE: arbitrary code execution via crafted PDFs
* Add debian/patches/ 100_streampredi ctor_overflow. patch: upstream fixes.
* References
CVE-2007-3387 - 31. By Martin Pitt
-
* SECURITY UPDATE: Denial of Service.
* Add debian/patches/ 004_CVE- 2007-0104. patch:
- Limit recursion depth of the parsing tree to 100 to avoid infinite loop
with crafted documents.
- Patch taken from koffice security update (which has a copy of xpdf
sources). - 29. By Jonathan Riddell
-
Include missing header files in libpoppler-
qt4-dev. install and libpoppler- qt-dev. install - 27. By Sebastien Bacher
-
* New upstream version, UVF exception granted by Matt Zimmerman
* debian/patches/ 003_fontconfig- undefined- symbols. patch:
- fixed with the new version
* debian/patches/ 003_glib_ pkgconfig_ fix.patch:
- fix pkg-config call to glib - 26. By Sebastien Bacher
-
* Build with splash for now, the cairo backend is much slower
(Ubuntu: #61161)
* debian/control.in:
- applied the changes made by Jonathan to the correct control file
- don't Build-Depends on libcairo2-dev
- no libpoppler-glib-dev Depends on libcairo2-dev
* debian/libpoppler- dev.install:
- don't list files for cairo
* debian/rules:
- don't build with cairo
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/poppler