ubuntu/+source/icu:applied/ubuntu/dapper-updates

Last commit made on 2009-03-26
Get this branch:
git clone -b applied/ubuntu/dapper-updates https://git.launchpad.net/ubuntu/+source/icu
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/dapper-updates
Repository:
lp:ubuntu/+source/icu

Recent commits

65601c4... by Marc Deslauriers on 2009-03-25

Import patches-applied version 3.4.1a-1ubuntu1.6.06.2 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 51e728d8c9a48c96044766bd39d23b80e57b3db1
Unapplied parent: ff0040d94ef787d0647d1db8863746676b2ff4ad

New changelog entries:
  * SECURITY UPDATE: Cross-site scripting attack via invalid character
    sequences (LP: #341834)
    - debian/patches/03-cve-2008-1036.patch: Improve parsing logic in
      source/common/{ucnv2022.c,ucnv_bld.*,ucnv.c,ucnvhz.c} to replace
      invalid character sequences. Also, add test case to
      source/test/{cintltst/nucnvtst.c,testdata/conversion.txt}.
    - CVE-2008-1036

ff0040d... by Marc Deslauriers on 2009-03-25

Import patches-unapplied version 3.4.1a-1ubuntu1.6.06.2 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 8842a809606a2e2157909c0d9fb3f5b5d5b770d7

New changelog entries:
  * SECURITY UPDATE: Cross-site scripting attack via invalid character
    sequences (LP: #341834)
    - debian/patches/03-cve-2008-1036.patch: Improve parsing logic in
      source/common/{ucnv2022.c,ucnv_bld.*,ucnv.c,ucnvhz.c} to replace
      invalid character sequences. Also, add test case to
      source/test/{cintltst/nucnvtst.c,testdata/conversion.txt}.
    - CVE-2008-1036

51e728d... by Jamie Strandboge on 2008-03-20

Import patches-applied version 3.4.1a-1ubuntu1.6.06.1 to applied/ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 33ad3fe19da3b2fce0b7563104b91c24dba7c4e2
Unapplied parent: 8842a809606a2e2157909c0d9fb3f5b5d5b770d7

New changelog entries:
  * SECURITY UPDATE: possible read from and write to out of bounds memory
    locations via back reference '\0' in regular expressions
  * SECURITY UPDATE: denial of service due to memory exhaustion via a
    crafted regular expression
  * debian/patches/SECURITY_CVE-2007-4770_4771.patch: fix regexcmp.cpp to
    return error on invalid back reference. fix rematch.cpp, uvectr32.h and
    uvectr32.cpp to return error when capacity is greater than maxCapacity
  * References
    CVE-2007-4770
    CVE-2007-4771

8842a80... by Jamie Strandboge on 2008-03-20

Import patches-unapplied version 3.4.1a-1ubuntu1.6.06.1 to ubuntu/dapper-security

Imported using git-ubuntu import.

Changelog parent: 20235f19b9960b432727c1fe4475d40e9f8016ca

New changelog entries:
  * SECURITY UPDATE: possible read from and write to out of bounds memory
    locations via back reference '\0' in regular expressions
  * SECURITY UPDATE: denial of service due to memory exhaustion via a
    crafted regular expression
  * debian/patches/SECURITY_CVE-2007-4770_4771.patch: fix regexcmp.cpp to
    return error on invalid back reference. fix rematch.cpp, uvectr32.h and
    uvectr32.cpp to return error when capacity is greater than maxCapacity
  * References
    CVE-2007-4770
    CVE-2007-4771

33ad3fe... by Matthias Klose on 2006-04-24

Import patches-applied version 3.4.1a-1ubuntu1 to applied/ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: 31528a4caf2bd46938c34edadde4552f4777c496
Unapplied parent: 20235f19b9960b432727c1fe4475d40e9f8016ca

New changelog entries:
  * Synchronize with Debian unstable.
  * Upstream re-released 3.4.1 without changing the version number because
    the header file with 3.4.1 still said it was 3.4. Unfortunately, the
    debian 3.4.1 package had already been uploaded. This "3.4.1a" release
    now matches upstream's 3.4.1.
  * New upstream release

20235f1... by Matthias Klose on 2006-04-24

Import patches-unapplied version 3.4.1a-1ubuntu1 to ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: 886ee9fad2d0f0efb0cab710b11ebed429659206

New changelog entries:
  * Synchronize with Debian unstable.
  * Upstream re-released 3.4.1 without changing the version number because
    the header file with 3.4.1 still said it was 3.4. Unfortunately, the
    debian 3.4.1 package had already been uploaded. This "3.4.1a" release
    now matches upstream's 3.4.1.
  * New upstream release

31528a4... by Matthias Klose on 2006-03-15

Import patches-applied version 3.4-4ubuntu1 to applied/ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: 3bd0458371991b9377a1cf012c4ae4f4ae0b4e09
Unapplied parent: 886ee9fad2d0f0efb0cab710b11ebed429659206

New changelog entries:
  * Fix Bengali rendering. Ubuntu #35085.

886ee9f... by Matthias Klose on 2006-03-15

Import patches-unapplied version 3.4-4ubuntu1 to ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: 90bf7c5e828ea7faca6f448c7ce7e8e82b7e5fe3

New changelog entries:
  * Fix Bengali rendering. Ubuntu #35085.

3bd0458... by Matthias Klose on 2006-02-16

Import patches-applied version 3.4-4build1 to applied/ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: c696c42a393301da717337507adcbd6495136706
Unapplied parent: 90bf7c5e828ea7faca6f448c7ce7e8e82b7e5fe3

New changelog entries:
  * Rebuild using g++-4.0.
  * Build with g++ 4.0 with -fno-strict-aliasing to work around g++ 4.0
    bugs that impact ICU. Future versions should work properly with the
    latest g++ without any special flags. (Closes: #342970)
  * Enable static libraries.

90bf7c5... by Matthias Klose on 2006-02-16

Import patches-unapplied version 3.4-4build1 to ubuntu/dapper

Imported using git-ubuntu import.

Changelog parent: c84a3131aa04ef01db2dbe80ee63db6ada4038dc

New changelog entries:
  * Rebuild using g++-4.0.
  * Build with g++ 4.0 with -fno-strict-aliasing to work around g++ 4.0
    bugs that impact ICU. Future versions should work properly with the
    latest g++ without any special flags. (Closes: #342970)
  * Enable static libraries.