lp:ubuntu/intrepid-updates/qt4-x11
- Get this branch:
- bzr branch lp:ubuntu/intrepid-updates/qt4-x11
Branch merges
Branch information
Recent revisions
- 61. By Marc Deslauriers
-
* SECURITY UPDATE: remote code execution via document with a SVGPathList
data structure containing a negative index.
- debian/patches/ security_ CVE-2009- 0945.diff: make sure index is valid
in src/3rdparty/webkit/ WebCore/ svg/SVGList. h.
- CVE-2009-0945
* SECURITY UPDATE: denial of service or arbitrary code execution via
JavaScript garbage collector allocation failures.
- debian/patches/ security_ CVE-2009- 1687.diff: make sure numBlocks is
valid in src/3rdparty/webkit/ JavaScriptCore/ runtime/ Collector. cpp.
- CVE-2009-1687
* SECURITY UPDATE: denial of service or arbitrary code execution via
use-after-free.
- debian/patches/ security_ CVE-2009- 1690.diff: Fix incorrect handling of
head element in src/3rdparty/webkit/ WebCore/ html/HTMLParser .{h,cpp} .
- CVE-2009-1690
* SECURITY UPDATE: denial of service or arbitrary code execution via
attr function call with a large numerical argument.
- debian/patches/ security_ CVE-2009- 1698.diff: fix attr handling in
src/3rdparty/ webkit/ WebCore/ css/{CSSParser, CSSPrimitiveVal ue}.cpp.
- CVE-2009-1698
* SECURITY UPDATE: arbitrary file disclosure via crafted DTD.
- debian/patches/ security_ CVE-2009- 1698.diff: fix
shouldAllowExternalLoad logic in
src/3rdparty/ webkit/ WebCore/ dom/XMLTokenize r.cpp.
- CVE-2009-1699
* SECURITY UPDATE: denial of service or arbitrary code execution via
crafted HTML document with Attr DOM objects.
- debian/patches/ security_ CVE-2009- 1711.diff: add isMappedAttribute
and remove attributeItem, getAttributeItem in
src/3rdparty/ webkit/ WebCore/ css/CSSStyleSel ector.cpp,
src/3rdparty/ webkit/ WebCore/ dom/{Attribute. h,MappedAttribu te.h,
NamedMappedAttrMap. *,StyledElement .cpp},
src/3rdparty/ webkit/ WebCore/ html/HTMLInputE lement. cpp.
- CVE-2009-1711
* SECURITY UPDATE: arbitrary code execution via remote loading of
local java applets.
- debian/patches/ security_ CVE-2009- 1712.diff: Use same rule for loading
java applets as webkit does for images in
src/3rdparty/ webkit/ WebCore/ html/HTMLApplet Element. cpp,
src/3rdparty/ webkit/ WebCore/ loader/ FrameLoader. cpp.
- CVE-2009-1712
* SECURITY UPDATE: arbitrary file disclosure via XSLT functionality
- debian/patches/ security_ CVE-2009- 1713.diff: Test that the XSL
document() function doesn't load a document from a foreign origin in
src/3rdparty/ webkit/ WebCore/ xml/XSLTProcess or.cpp.
- CVE-2009-1713
* SECURITY UPDATE: denial of service or arbitrary code execution via
numeric character references.
- debian/patches/ security_ CVE-2009- 1725.diff: increase size of
checkBuffer() in src/3rdparty/webkit/ WebCore/ html/HTMLTokeni zer.cpp.
- CVE-2009-1725 - 60. By Jamie Strandboge
-
* SECURITY UPDATE: fix vulnerability with NULL byte in Subject Alternate
Names field of X.509 certificates
- debian/patches/ kubuntu_ 09_CVE_ 2009_2700. diff: adjust
network/ssl/qsslcertifi cate.cpp to use QString::fromLatin1 instead of
QLatin1String
- CVE-2009-2700 - 59. By Roderick B. Greening
-
* New Upstream Release - bump config from ubuntu 4.4.2 deb
* Update copyright info from debian copyright
* Re-sync with Debian svn
- Add following qt-copy patches:
0245-fix-randr- changes- detecting. diff
0248-fix-qwidget- scroll- slowness. diff
0249-webkit- stale-frame- pointer. diff
0254-fix-qgraphicspr oxywidget- deletion- crash.diff
- Remove following qt-copy patches (prev disabled):
0214-fix-qgraphicspr oxywidget- tab-crash. diff
0220-no-x-recursion- in-xerrhandler. diff
0223-fix-qpixmap- hasalpha. diff
0227-qdatastream- regression. diff
0228-qsortfilterprox ymodel- invalidate- noscroll. diff
0237-printdialog- assert. diff
0240-printdialog- print-into- real-printer. diff
- Remove following Debian patches (prev disabled):
90_gcc43.diff
- Add following debian patches:
16_hide_std_ symbols_ on_qtwebkit. diff
17_add_postgresql_ 8.3_support. diff
30_webkit_ unaligned_ access. diff
71_hppa_unaligned_ access_ fix_458133. diff
81_hurd_more_ max_path. diff
- Cosmetic cleanup in control
replace Qt4 with Qt 4 as per Debian
some grammer clean-up in comments/notes
- libqt4-dev.install (insert missing help - usr/include/qt4/QtHelp/ QHelpGlobal)
- Updated some patches (line numbering changed - cosmetic only)
0167-fix-group- reading. diff
0180-window- role.diff
0195-compositing- properties. diff
0203-qtexthtmlparser -link-color. diff
0216-allow-isystem- for-headers. diff
0224-fast-qpixmap- fill.diff
0226-qtreeview- column_ resize_ when_needed. diff
0234-fix-mysql- threaded. diff
0238-fix-qt- qttabbar- size.diff
05_append_ qt4_target. diff
50_kfreebsd_ build_fix. diff
- Patches with some re-write changes/fixes (non-cosmetic):
14_add_libraries_ to_gui_ build_where_ actually_ needed. diff
20_mips_atomic_ ops.diff - 58. By Jonathan Riddell
-
Add links from /usr/share/qt4/lib/ to /usr/lib for Qt libraries
needed for Qt Jambi - 57. By Roderick B. Greening
-
* New Upstream Release - bump config from ubuntu 4.4.1 deb
* Removed the following patches (resolved upstream)
- 0230-qtextcontrol-selectnextwo rd.diff
- 0233-fix-q3textbrowser- image.diff
- 0235-qdbus-dispatch- async-timeout. diff
- 0236-qtoolbararealayout- restore. diff
- 0241-fix-null-stylesheet -warning. diff
- 60_m68k_inotify_ fix.diff
- 72_generic_arch_atomic_ header_ fix.diff
* Updated broken patch (code changes upstream)
- 10_config_tests_fixes. diff
* Removed unknown header file refs in debian/libqt4- dev.install
- qatomic_windows. h/qatomic_ windowsce. h - 53. By Jonathan Riddell
-
* Merge with Debian, remaining changes:
- remove ibase and firebird from debian/control and debian/rules
- patches - 52. By Jonathan Riddell
-
Remove pkgconfig directory from libqt4-dev.install, it installed
files that were in other packages
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/qt4-x11