Ubuntu
qt-x11-free package

lp:ubuntu/edgy-security/qt-x11-free

Edgy (6.10)
edgy-security

Created by James Westby on 2010-01-13 and last modified on 2010-01-13

Get this branch:: bzr branch lp:ubuntu/edgy-security/qt-x11-free

Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

No branches dependent on this one.

Related bugs

Link a bug report

Related blueprints

Branch information

Owner:: Ubuntu branches

Review team:: Ubuntu Development Team

Status:: Development

Recent revisions

33. By Kees Cook on 2007-09-18: * SECURITY UPDATE: unterminated UTF8 strings could lead to 2 byte
overflow that may allow arbitrary code execution.
* Add debian/patches/kubuntu_20_utf8_2_byte_overflow: upstream fixes.
* References
CVE-2007-4137
32. By Jonathan Riddell on 2007-08-02: * SECURITY UPDATE: remote execution when parsing vulnerability
* Format string bugs were found in several Qt warning messages.
  Applications using Qt for processing certain data types could
  trigger them if the data caused Qt to print warnings. The bugs
  potentially allow to execute arbitrary code via specially crafted
  files.
* Added kubuntu_08_CVE-2007-3387.dpatch from http://www.trolltech.com/developer/download/170529.diff
    sql/qdatatable.cpp
    sql/qsqldatabase.cpp
    sql/qsqlindex.cpp
    sql/qsqlrecord.cpp
    tools/qglobal.cpp
    widgets/qtextedit.cpp
    xml/qsvgdevice.cpp
  Perform better checks when parsing SQL, QTextEdit HTML, SVG XML and qSystemWarning
* References
  http://trolltech.com/company/newsroom/announcements/press.2007-07-27.7503755960
  CVE-2007-3388
31. By Kees Cook on 2007-04-09: * SECURITY UPDATE: invalid UTF8 parsing could lead to overflows.
* Add kubuntu_07_utf8-fix.dpatch: upstream fixes.
* References
CVE-2007-0242
30. By Jonathan Riddell on 2006-10-20: * SECURITY UPDATE: integer overflow flaw
* An integer overflow flaw was discovered in the way Qt 3.x and 4.x handles
pixmap images. This issue can occur when transforming
specially prepared images from untrusted sources.
* Add kubuntu_05_CVE-2006-4811-qt3_pixmap.dpatch fix
* References:
- CVE-2006-4811
- http://www.trolltech.com/company/newsroom/announcements/press.2006-10-19.5434451733
29. By Jonathan Riddell on 2006-10-02: Install a default qt_plugins_3.3rc with Plastik plugin listed
28. By Anthony Mercatante on 2006-08-25: * Synchronise with Debian
* Removed kubuntu_01_arabic_fonts.dpatch since debian has its own patch
now (30_qtc_arabic_font_fixes.dpatch)
27. By Jonathan Riddell on 2006-07-20: Fix bad patch kubuntu_04_xinerama.dpatch
26. By Jonathan Riddell on 2006-07-20: * Install debian/qtrc to /etc/qt3
* Add kubuntu_04_xinerama.dpatch from http://ktown.kde.org/~seli/xinerama/
25. By Jonathan Riddell on 2006-06-28: Don't compile with binary incompatible input modules
24. By Jonathan Riddell on 2006-06-26: Synchronise with Debian

Branch metadata

Branch format:: Branch format 7

Repository format:: Bazaar repository format 2a (needs bzr 1.16 or later)

Stacked on:: lp:ubuntu/lucid/qt-x11-free

This branch contains Public information

Everyone can see this information.

Subscribers

James Westby

Ubuntuqt-x11-free package