ubuntu/+source/libraw:ubuntu/xenial-devel

Last commit made on 2019-05-21
Get this branch:
git clone -b ubuntu/xenial-devel https://git.launchpad.net/ubuntu/+source/libraw
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/xenial-devel
Repository:
lp:ubuntu/+source/libraw

Recent commits

656da5d... by Marc Deslauriers on 2019-05-17

Import patches-unapplied version 0.17.1-1ubuntu0.5 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 695c03762f0272909676b8adcfec493a0e143c22

New changelog entries:
  * SECURITY UPDATE: infinite loop issues
    - debian/patches/CVE-2018-581x.patch: add more checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2018-5817
    - CVE-2018-5818
    - CVE-2018-5819
  * SECURITY UPDATE: NULL deref in LibRaw::raw2image
    - debian/patches/CVE-2018-20363.patch: add check in src/libraw_cxx.cpp.
    - CVE-2018-20363
  * SECURITY UPDATE: NULL deref in LibRaw::copy_bayer
    - debian/patches/CVE-2018-20364.patch: add check in src/libraw_cxx.cpp.
    - CVE-2018-20364
  * SECURITY UPDATE: heap overflow in LibRaw::raw2image()
    - debian/patches/CVE-2018-20365.patch: zero filters in dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2018-20365

695c037... by Alex Murray on 2018-12-04

Import patches-unapplied version 0.17.1-1ubuntu0.4 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 09b5282a11c3a54c2fbb99fa8c0031d54b14ea5a

New changelog entries:
  * SECURITY UPDATE: Multiple memory management issues
    - debian/patches/CVE-2018-5807_5810_5811_5812.patch: out-of-bounds
      reads, heap-based buffer overflow and NULL pointer dereference in
      internal/dcraw_common.cpp
    - CVE-2018-5807
    - CVE-2018-5810
    - CVE-2018-5811
    - CVE-2018-5812
  * SECURITY UPDATE: Infinite loop
    - debian/patches/CVE-2018-5813.patch: infinite loop in dcraw/dcraw.c
      and internal/dcraw_common.cpp
    - CVE-2018-5813
  * SECURITY UPDATE: Integer overflow
    - debian/patches/CVE-2018-5815.patch: integer overflow in
      internal/dcraw_common.cpp
    - CVE-2018-5815
  * SECURITY UPDATE: Divide by zero
    - debian/patches/CVE-2018-5816.patch: divide by zero in
      internal/dcraw_common.cpp
    - CVE-2018-5816

09b5282... by Leonidas S. Barbosa on 2018-05-07

Import patches-unapplied version 0.17.1-1ubuntu0.3 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 97687a5cbd6a1db850d7a767ded1da18ae8ea7e2

New changelog entries:
  * SECURITY UPDATE: Stack-based buffer overflow
    - debian/patches/CVE-2018-10528.patch: parser possible
      buffer overrun in src/libraw_cxx.cpp.
    - CVE-2018-10528
  * SECURITY UPDATE: Out-of-bounds read
    - debian/patches/CVE-2018-10529.patch: X3F property table list fix
      in src/libraw_cxx.cpp, internal/libraw_x3f.cpp.
    - CVE-2018-10529

97687a5... by Marc Deslauriers on 2018-03-30

Import patches-unapplied version 0.17.1-1ubuntu0.2 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 8ea22cbb7fa7620473810be79dc17587d78db09a

New changelog entries:
  * SECURITY UPDATE: buffer overflow in panasonic_load_raw
    - debian/patches/CVE-2017-16909.patch: add more bounds checking to
      dcraw/dcraw.c, internal/dcraw_common.cpp, libraw/libraw_const.h.
    - CVE-2017-16909
  * SECURITY UPDATE: invalid read in xtrans_interpolate
    - debian/patches/CVE-2017-16910.patch: add checks and proper
      initialization to dcraw/dcraw.c, internal/dcraw_common.cpp.
    - CVE-2017-16910
  * SECURITY UPDATE: multiple security issues
    - debian/patches/CVE-2018-580x.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp, src/libraw_cxx.cpp.
    - CVE-2018-5800
    - CVE-2018-5801
    - CVE-2018-5802
  * SECURITY UPDATE: image size and alloc issues
    - debian/patches/security_0.18.8_1.patch: add more checks to
      dcraw/dcraw.c, internal/dcraw_common.cpp, libraw/libraw_const.h,
      src/libraw_cxx.cpp.
    - No CVE number
  * SECURITY UPDATE: Secunia #81000 security issues
    - debian/patches/security_0.18.8_2.patch: add more checks to
      dcraw/dcraw.c, internal/dcraw_common.cpp.
    - No CVE number

8ea22cb... by Marc Deslauriers on 2017-11-16

Import patches-unapplied version 0.17.1-1ubuntu0.1 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: fbb29a74be638f02a2cccf6bc1be98484b9f9628

New changelog entries:
  * SECURITY UPDATE: memory corruption in parse_tiff_ifd
    - debian/patches/CVE-2017-688x.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-6886
    - CVE-2017-6887
  * SECURITY UPDATE: floating point exception in kodak_radc_load_raw
    - debian/patches/CVE-2017-13735.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-13735
  * SECURITY UPDATE: buffer overflow in xtrans_interpolate
    - debian/patches/CVE-2017-14265.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-14265
  * SECURITY UPDATE: buffer overflow in processCanonCameraInfo
    - debian/patches/CVE-2017-14348.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-14348
  * SECURITY UPDATE: out of bounds read in kodak_65000_load_raw
    - debian/patches/CVE-2017-14608.patch: add checks to dcraw/dcraw.c,
      internal/dcraw_common.cpp.
    - CVE-2017-14608

fbb29a7... by "Matteo F. Vescovi" <email address hidden> on 2015-12-03

Import patches-unapplied version 0.17.1-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 8f1e00f5cb89fa064f9fcefd9ff79ef5c87584e7

New changelog entries:
  * New upstream release (Closes: #806809)
    - Fix CVE-2015-8366 and CVE-2015-8367

8f1e00f... by "Matteo F. Vescovi" <email address hidden> on 2015-10-16

Import patches-unapplied version 0.17.0-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: aed9d1042d88c3eb545e7a8ece41d375eb6f4833

New changelog entries:
  * New upstream release
    - debian/: SONAME bump libraw10 => libraw15
    - debian/rules: bump dh_makeshlibs to libraw15
    - debian/libraw15.symbols: symbols refreshed
  * debian/copyright: file updated

aed9d10... by "Matteo F. Vescovi" <email address hidden> on 2015-05-26

Import patches-unapplied version 0.16.2-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 5fab595ec55144ac1af9548e92e35271c01b0b41

New changelog entries:
  * New upstream release
    - Fix CVE-2015-3885
  * debian/control:
    - XS-Testsuite field dropped
    - Uploader e-mail address updated

5fab595... by Matteo F. Vescovi on 2014-09-30

Import patches-unapplied version 0.16.0-9 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0199d97317ac05f1ecf90684267e33fe1cb500c9

New changelog entries:
  * debian/control: strictly build-depends on libjpeg-dev.
    Thanks to Ondřej Surý (ondrej) for the patch. (Closes: #763482)
  * debian/control: S-V bump 3.9.5 => 3.9.6 (no changes needed)

0199d97... by Matteo F. Vescovi on 2014-08-29

Import patches-unapplied version 0.16.0-8 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e70c530dcdbda13e8ed9d59af3064a994dd567bc

New changelog entries:
  * debian/watch: search path updated (Closes: #759650)