lp:ubuntu/natty/evince
- Get this branch:
- bzr branch lp:ubuntu/natty/evince
Branch merges
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 134. By Jamie Strandboge
-
* debian/
apparmor- profile. abstraction: allow /usr/bin/mktextfm
* debian/apparmor- profile: allow read of /etc/passwd to cut down on
.xsession-errors output - 133. By Jamie Strandboge
-
* debian/
apparmor- profile. abstraction: allow read of @{PROC} /[0-9]* /status
* debian/apparmor*: more strictly confine the thumbnailer, in particular
with regard to networking (LP: #720961)
- move a bunch of abstractions from the evince abstraction into the
evince and evince-previewer profiles
- move yelp and bug-buddy execs to evince and evince-previewer profiles
- deny reads to /etc/passwd and /etc/nsswitch.conf. These are caused by
calls to getuid() and geteuid() from gnome libraries, but the
thumbnailer doesn't actually need them - 132. By Dennis Sheil <email address hidden>
-
* debian/
patches/ 06_new_ poppler_ api_update. patch
- fix for changes in poppler API (LP: #708404) - 131. By Luke Yelavich
-
debian/
patches/ 05_library- path.patch: Include the path to libdocument
when building gobject introspection data for libevview3 - 128. By Jamie Strandboge
-
* debian/
apparmor- profile. abstraction:
- deny access to kwallet, chromium configuration, writing to .pki/nssdb/*,
and some popular mail client files (LP: #698194)
- add ibus abstraction
- clean out some redundant abstraction includes - 127. By Marc Deslauriers
-
* SECURITY UPDATE: arbitrary code execution via multiple dvi backend
overflows
- debian/patches/ 03_CVE- 2010-264x. patch: add bounds checking in
backend/dvi/mdvi- lib/{afmparse, dviread, pk,tfmfile, vf}.c.
- CVE-2010-2640
- CVE-2010-2641
- CVE-2010-2642
- CVE-2010-2643
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)