ubuntu/+source/icu:ubuntu/vivid-updates

Last commit made on 2015-09-16
Get this branch:
git clone -b ubuntu/vivid-updates https://git.launchpad.net/ubuntu/+source/icu
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/vivid-updates
Repository:
lp:ubuntu/+source/icu

Recent commits

98a9855... by Marc Deslauriers on 2015-09-11

Import patches-unapplied version 52.1-8ubuntu0.2 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: bb55b76160ce5239af76ef8fa309fd32abdf3f1e

New changelog entries:
  * SECURITY UPDATE: denial of service via mishandling of converter names
    with initial x- substrings
    - debian/patches/CVE-2015-1270.patch: fix logic in
      source/common/ucnv_io.cpp.
    - CVE-2015-1270
  * SECURITY UPDATE: information disclosure via overflows
    - debian/patches/CVE-2015-2632.patch: properly calculate index in
      source/layout/Features.cpp, check for overflows in
      source/layout/LETableReference.h.
    - CVE-2015-2632
  * SECURITY UPDATE: denial of service and possible code execution via
    overflows
    - debian/patches/CVE-2015-4760.patch: check bounds in
      source/layout/ContextualGlyphInsertionProc2.cpp,
      source/layout/ContextualGlyphSubstProc.cpp,
      source/layout/ContextualGlyphSubstProc2.cpp,
      source/layout/IndicRearrangementProcessor.cpp,
      source/layout/IndicRearrangementProcessor2.cpp,
      use unsigned flags in source/layout/LigatureSubstProc.cpp,
      source/layout/StateTables.h, properly handle errors in
      source/layout/StateTableProcessor.cpp,
      source/layout/StateTableProcessor2.cpp.
    - CVE-2015-4760

bb55b76... by Marc Deslauriers on 2015-05-08

Import patches-unapplied version 52.1-8ubuntu0.1 to ubuntu/vivid-security

Imported using git-ubuntu import.

Changelog parent: f4c754f5ba1c9ea6bae05d257ef2de6e51681113

New changelog entries:
  * SECURITY UPDATE: heap overflow via incorrect isolateCount
    - debian/patches/CVE-2015-8146.patch: check for valid isolateCount in
      source/common/ubidi.c.
    - CVE-2015-8146
  * SECURITY UPDATE: integer overflow via incorrect state size
    - debian/patches/CVE-2015-8147.patch: change state to int32_t in
      source/common/ubidiimp.h.
    - CVE-2015-8147

f4c754f... by Laszlo Boszormenyi on 2015-03-17

Import patches-unapplied version 52.1-8 to debian/sid

Imported using git-ubuntu import.

Changelog parent: a1a112bd8e89dbf82fd7438caf2d0bfb6f1c978d

New changelog entries:
  * New maintainer (closes: #777694).
  * Update Standars-Version to 3.9.6 .
  [ Michael Gilbert <email address hidden> ]
  * Apply a more complete fix for CVE-2014-7940 (closes: #780503).
    - Thanks to Marc Deslauriers.

a1a112b... by Michael Gilbert <email address hidden> on 2015-02-15

Import patches-unapplied version 52.1-7.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 529ed80ded7f451a2d31dcc3fa1628f1dbb46832

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Unfixed issue from the previous upload (closes: #776264)
    - CVE-2014-6585: out-of-bounds read.
  * Issues fixed in chromium 40.0.2214.91 (closes: #776265, #776719).
    - CVE-2014-7923: memory corruption in regular expression comparison.
    - CVE-2014-7926: memory corruption in regular expression comparison.
    - CVE-2014-7940: uninitialized memory in i18n/icol.cpp.
    - CVE-2014-9654: more regular expression handling issues.

529ed80... by Jay Berkenbilt <email address hidden> on 2015-01-22

Import patches-unapplied version 52.1-7 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5ef2452bf20428dfa38716d6dc8f744ef2a3ba51

New changelog entries:
  * Patch to CVE-2014-6591, CVE-2014-6585 a font parsing bug.
    (Closes: #775884)

5ef2452... by Jay Berkenbilt <email address hidden> on 2014-09-29

Import patches-unapplied version 52.1-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 994e4c66bc3f46f0d115d2489cf9802d8897239c

New changelog entries:
  * Ensure that only flags intended to be set by users make it into
    icu-config. Previously hardening flags were sneaking in there.
    (Closes: #759792)

994e4c6... by Jay Berkenbilt <email address hidden> on 2014-07-26

Import patches-unapplied version 52.1-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8e0d86b2a78a1ba3dd38678d3b993c0ed89a1f85

New changelog entries:
  * Switch hardening back to dpkg-buildflags. It wasn't previously working
    but now is, probably because of other bugfixes that have happened in
    the mean time.

8e0d86b... by Jay Berkenbilt <email address hidden> on 2014-06-21

Import patches-unapplied version 52.1-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: beac7b9a31c33b81c627700a55415884eea3b7f0

New changelog entries:
  * Fix test case that fails with gcc 4.9. Fix is from upstream. (Closes:
    #746860)

beac7b9... by Jay Berkenbilt <email address hidden> on 2013-12-24

Import patches-unapplied version 52.1-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: dab23cc1c299b562541aeafe317f6341647c2a18

New changelog entries:
  * Add package dependency information to assist with upgrades in Ubuntu.
    This eliminates the need for a delta on the Ubuntu version of the
    package.

dab23cc... by Jay Berkenbilt <email address hidden> on 2013-12-03

Import patches-unapplied version 52.1-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: bca64f62248b485635898e90518b5e45767c6851

New changelog entries:
  * Re-upload to unstable