ubuntu/+source/libraw:ubuntu/trusty-updates

Last commit made on 2018-12-06
Get this branch:
git clone -b ubuntu/trusty-updates https://git.launchpad.net/ubuntu/+source/libraw
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/trusty-updates
Repository:
lp:ubuntu/+source/libraw

Recent commits

ec70387... by Alex Murray on 2018-12-05

Import patches-unapplied version 0.15.4-1ubuntu0.3 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 291500b3f10d4621069dfa2069aee4e374814a64

New changelog entries:
  * SECURITY UPDATE: Multiple memory management issues
    - debian/patches/CVE-2018-5807_5810.patch: out-of-bounds read and NULL
      pointer dereference in dcraw/dcraw.c and internal/dcraw_common.cpp
    - CVE-2018-5807
    - CVE-2018-5810
  * SECURITY UPDATE: Infinite loop
    - debian/patches/CVE-2018-5813.patch: infinite loop in dcraw/dcraw.c
      and internal/dcraw_common.cpp
    - CVE-2018-5813

291500b... by Marc Deslauriers on 2018-03-30

Import patches-unapplied version 0.15.4-1ubuntu0.2 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: d240323ed3d4003892c636cc4047960af68ce80e

New changelog entries:
  * SECURITY UPDATE: buffer overflow in panasonic_load_raw
    - debian/patches/CVE-2017-16909.patch: add more bounds checking to
      dcraw/dcraw.c, internal/dcraw_common.cpp, libraw/libraw_const.h.
    - CVE-2017-16909
  * SECURITY UPDATE: invalid read in xtrans_interpolate
    - debian/patches/CVE-2017-16910.patch: add checks and proper
      initialization to dcraw/dcraw.c.
    - CVE-2017-16910
  * SECURITY UPDATE: multiple security issues
    - debian/patches/CVE-2018-580x.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp, src/libraw_cxx.cpp.
    - CVE-2018-5800
    - CVE-2018-5801
    - CVE-2018-5802
  * SECURITY UPDATE: image size and alloc issues
    - debian/patches/security_0.18.8_1.patch: add more checks to
      dcraw/dcraw.c, internal/dcraw_common.cpp, libraw/libraw_const.h,
      src/libraw_cxx.cpp.
    - No CVE number
  * SECURITY UPDATE: Secunia #81000 security issues
    - debian/patches/security_0.18.8_2.patch: add more checks to
      dcraw/dcraw.c, internal/dcraw_common.cpp.
    - No CVE number

d240323... by Marc Deslauriers on 2017-11-16

Import patches-unapplied version 0.15.4-1ubuntu0.1 to ubuntu/trusty-security

Imported using git-ubuntu import.

Changelog parent: 51ac0011f7747428d57114e88ae5189529026663

New changelog entries:
  * SECURITY UPDATE: integer overflow in ljpeg_start
    - debian/patches/CVE-2015-3885.patch: use ushort in dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2015-3885
  * SECURITY UPDATE: index overflow and lack of initialization
    - debian/patches/CVE-2015-836x.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp, add proper initialization to
      src/libraw_cxx.cpp.
    - CVE-2015-8366
    - CVE-2015-8367
  * SECURITY UPDATE: memory corruption in parse_tiff_ifd
    - debian/patches/CVE-2017-688x.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-6886
    - CVE-2017-6887
  * SECURITY UPDATE: floating point exception in kodak_radc_load_raw
    - debian/patches/CVE-2017-13735.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-13735
  * SECURITY UPDATE: buffer overflow in xtrans_interpolate
    - debian/patches/CVE-2017-14265.patch: add checks to dcraw/dcraw.c.
    - CVE-2017-14265
  * SECURITY UPDATE: out of bounds read in kodak_65000_load_raw
    - debian/patches/CVE-2017-14608.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-14608

51ac001... by Luca Falavigna on 2013-10-05

Import patches-unapplied version 0.15.4-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b641bfea3790268510c29b08038e5cee08e2bcae

New changelog entries:
  * Team upload.
  * New upstream release.
    - Fix for CVE-2013-1438 (Closes: #721231).
    - Fix for CVE-2013-1439 (Closes: #721338).
    - Fix segmentaition fault when unprocessed_raw is passed -s option
      wihout any parameter (Closes: #716423).
  * debian/patches/4channels_parameter.patch:
    - Dropped, applied upstream.
  * debian/patches/typo.patch:
    - Dropped, applied upstream.

b641bfe... by Luca Falavigna on 2013-07-10

Import patches-unapplied version 0.15.3-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5e48705dddb333c7b8bb04d3d26783e0934093ce

New changelog entries:
  * Team upload to unstable.
  * New upstream release (Closes: #710353).
    - Fix error handling for broken full-color images - CVE-2013-2126.
    - Fix wrong data_maximum calcluation - CVE-2013-2127.
  * debian/patches/4channels_parameter.patch:
    - Fix segmentaition fault when 4channel is passed -s option without
       any parameter (Closes: #715577).

5e48705... by Luca Falavigna on 2013-05-25

Import patches-unapplied version 0.15.1-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 2bb38d255f72159491d54c1c233b0ec58a3af11f

New changelog entries:
  * Team upload.
  * New upstream release.
  * debian/patches/typo.patch:
    - Fix typo in help output.
  * debian/control:
    - Build-depend on dh-autoreconf.
    - Build-depend on libjpeg8-dev | libjpeg-dev.
    - Replace libraw5 with libraw9, SONAME changed.
    - libraw-dev depends on libraw9 accordingly.
  * debian/copyright:
    - Update copyright years.
  * debian/libraw9.install:
    - Renamed from libraw5.install to match new binary.
  * debian/libraw9.symbols.amd64:
    - Renamed from libraw9.symbols.amd64 to match new binary.
  * debian/rules:
    - Build with autoreconf support.
    - Build with DNG support (Closes: #699356).
    - Pass "-Wl,-z,defs -Wl,--as-needed" to LDFLAGS.
    - Update dh_makeshlibs call to match new binary.

2bb38d2... by Luca Falavigna on 2013-05-12

Import patches-unapplied version 0.14.7-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ebab0a56ba8c8400b279e87bf82c5a3d0465014c

New changelog entries:
  * Team upload.
  * Upload to unstable.
  * debian/control:
    - Remove deprecated DM-Upload-Allowed field.
    - Bump Standards-Version to 3.9.4.

ebab0a5... by Luca Falavigna on 2012-08-25

Import patches-unapplied version 0.14.7-1 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 95701ca6d338936f896a05ec74c8deb7c3e3bf5d

New changelog entries:
  * Team upload.
  * New upstream release (Closes: #682982).
  * debian/control:
    - Add DM-Upload-Allowed field.
  * debian/watch:
    - Use new redirector librawredir.debian.net.

95701ca... by Luca Falavigna on 2012-05-27

Import patches-unapplied version 0.14.6-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9dc1a5ee172b6d7094dc12ea9430c1daf6cf8e72

New changelog entries:
  * Team upload.
  * debian/control:
    - Add liblcms2-dev to libraw-dev Depends field.

9dc1a5e... by Luca Falavigna on 2012-05-06

Import patches-unapplied version 0.14.6-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ecdd07393c9d3084b2da0ece907f7b9ab6b322d7

New changelog entries:
  * Team upload to unstable.
  * New upstream release.
  * Multi-arch support.
  * debian/compat:
    - Bump compatibility level to 9.
  * debian/control:
    - Bump Standards-Version to 3.9.3.
  * debian/copyright:
    - Update copyright years.
    - Format now points to copyright-format site.
  * debian/libraw5.symbols.amd64:
    - Refresh symbols file.
  * debian/rules:
    - Bump minimum version in dh_makeshlibs to 0.14.6.