lp:ubuntu/oneiric-security/gimp

Created by Ubuntu Package Importer on 2012-09-10 and last modified on 2012-12-06
Get this branch:
bzr branch lp:ubuntu/oneiric-security/gimp
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

68. By Marc Deslauriers on 2012-12-06

* SECURITY UPDATE: code execution via malformed xwd files
  - debian/patches/CVE-2012-5576.patch: validate sizes in
    plug-ins/common/file-xwd.c.
  - CVE-2012-5576

67. By Marc Deslauriers on 2012-09-05

* SECURITY UPDATE: denial of service via malformed .fit file header
  - debian/patches/CVE-2012-3236.patch: check for valid XTENSION header
    in plug-ins/file-fits/fits-io.c.
  - CVE-2012-3236
* SECURITY UPDATE: denial of service and possible code execution via
  crafted KiSS palette file
  - debian/patches/CVE-2012-3403.patch: validate return codes and header
    data in plug-ins/common/file-cel.c.
  - CVE-2012-3403
* SECURITY UPDATE: denial of service and possible code execution via
  crafted GIF image file
  - debian/patches/CVE-2012-3481.patch: validate sizes, and prevent
    overflows in plug-ins/common/file-gif-load.c.
  - CVE-2012-3481

66. By Marc Deslauriers on 2011-09-21

* SECURITY UPDATE: possible arbitrary code execution via malformed GIF
  - debian/patches/09_CVE-2011-2896.patch: properly calculate lengths in
    plug-ins/common/file-gif-load.c.
  - CVE-2011-2896

65. By Micah Gersten on 2011-09-11

* Convert to dh_python2 (LP: #847514)
  - update debian/control
  - update debian/rules

64. By Marc Deslauriers on 2011-06-08

* SECURITY UPDATE: denial of service and possible code execution via
  malformed PSP image file
  - debian/patches/08_CVE-2011-1782.patch: further fix buffer overflow in
    plug-ins/common/file-psp.c.
  - CVE-2011-1782

63. By Iain Lane on 2011-05-03

* Merge with Debian unstable, remaining changes:
  - debian/patches/02_help-message.patch,
    debian/patches/03_gimp.desktop.in.in.patch:
    + Update some strings for Ubuntu
  - debian/control:
    + Update description
    + Change build-depends from libwebkit-dev to libwebkitgtk-dev
  - debian/rules:
    + Set gettext domain and update translation templates

62. By Marc Deslauriers on 2011-04-07

* SECURITY UPDATE: denial of service and possible code execution via
  malformed plugin configuration files
  - debian/patches/05_CVE-2010-454x.patch: fix format strings in
    plug-ins/{common/sphere-designer,gfig/gfig-style,
    lighting/lighting-ui}.c.
  - CVE-2010-4540
  - CVE-2010-4541
  - CVE-2010-4542
* SECURITY UPDATE: denial of service and possible code execution via
  malformed PSP image file
  - debian/patches/06_CVE-2010-4543.patch: fix buffer overflow in
    plug-ins/common/file-psp.c.
  - CVE-2010-4543

61. By Martin Pitt on 2011-01-27

debian/control: Drop libhal-dev build dependency. We don't install it any
more, and it's absolutely unsupported these days.

60. By Robert Ancell on 2011-01-10

* debian/control:
  - Change build-depends from libwebkit-dev to libwebkitgtk-dev

59. By Matthias Klose on 2010-12-08

Rebuild with python 2.7 as the python default.

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:ubuntu/quantal/gimp
This branch contains Public information 
Everyone can see this information.

Subscribers