ubuntu/+source/unzip:ubuntu/precise-updates

Last commit made on 2015-11-09
Get this branch:
git clone -b ubuntu/precise-updates https://git.launchpad.net/ubuntu/+source/unzip
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/precise-updates
Repository:
lp:ubuntu/+source/unzip

Recent commits

4515ee2... by Marc Deslauriers on 2015-11-09

Import patches-unapplied version 6.0-4ubuntu2.5 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 7a766e6e6218849e1e086af72f23207a89d1a9d6

New changelog entries:
  * debian/patches/16-fix-integer-underflow-csiz-decrypted: updated to fix
    regression in handling 0-byte files (LP: #1513293)

7a766e6... by Marc Deslauriers on 2015-10-29

Import patches-unapplied version 6.0-4ubuntu2.4 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 2510e378ddcc218922c8ccfce4d356dda3d11cd2

New changelog entries:
  * SECURITY UPDATE: denial of service and possible code execution via
    heap overflow
    - debian/patches/14-cve-2015-7696: add check to crypt.c.
    - CVE-2015-7696
  * SECURITY UPDATE: infinite loop when extracting empty bzip2 data
    - debian/patches/15-cve-2015-7697: check for empty input in extract.c.
    - CVE-2015-7697
  * SECURITY UPDATE: unsigned overflow on invalid input
    - debian/patches/16-fix-integer-underflow-csiz-decrypted: make sure
      csiz_decrypted doesn't overflow in extract.c.
    - No CVE number

2510e37... by Marc Deslauriers on 2015-02-17

Import patches-unapplied version 6.0-4ubuntu2.3 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 1a55eb72a8b1b5389a9845b6f7bcd4620bb5d2cc

New changelog entries:
  * SECURITY UPDATE: heap overflow in charset_to_intern()
    - debian/patches/04-unzip60-alt-iconv-utf8: updated to fix buffer
      overflow in unix/unix.c.
    - CVE-2015-1315
  * SECURITY REGRESSION: regression with executable jar files
    - debian/patches/09-cve-2014-8139-crc-overflow: updated to fix
      regression.
  * SECURITY REGRESSION: regression with certain compressed data headers
    - debian/patches/12-cve-2014-9636-test-compr-eb: updated to fix
      regression.

1a55eb7... by Marc Deslauriers on 2015-01-29

Import patches-unapplied version 6.0-4ubuntu2.2 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: e527d7f0fcca2ffc583613e44f369804f49dc76e

New changelog entries:
  * SECURITY UPDATE: heap overflow via mismatched block sizes
    - debian/patches/12-cve-2014-9636-test-compr-eb: ensure compressed and
      uncompressed block sizes match when using STORED method in extract.c.
    - CVE-2014-9636

e527d7f... by Marc Deslauriers on 2015-01-07

Import patches-unapplied version 6.0-4ubuntu2.1 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: b05b8cedfe6fe141c431754481416dcb06e6f190

New changelog entries:
  * SECURITY UPDATE: CRC32 verification heap-based overflow
    - debian/patches/09-cve-2014-8139-crc-overflow: check extra block
      length in extract.c.
    - CVE-2014-8139
  * SECURITY UPDATE: out-of-bounds write issue in test_compr_eb()
    - debian/patches/10-cve-2014-8140-test-compr-eb: properly validate
      sizes in extract.c.
    - CVE-2014-8140
  * SECURITY UPDATE: out-of-bounds read issues in getZip64Data()
    - debian/patches/11-cve-2014-8141-getzip64data: validate extra fields
      in fileio.c, check sizes in process.c.
    - CVE-2014-8141

b05b8ce... by Brian Murray on 2013-11-06

Import patches-unapplied version 6.0-4ubuntu2 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 666c78a364735b435cdf70603362cb6067b3e14d

New changelog entries:
  * Fix incorrectly displayed file names with UTF-8 characters.
    Add -DNO_WORKING_ISPRINT to build flags. (LP: #1199239, LP: #580961)

666c78a... by Brian Thomason on 2011-01-13

Import patches-unapplied version 6.0-4ubuntu1 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: ec29d8964151a87d82e2ae33c1b28cb27c6a4245

New changelog entries:
  * Added patch from archlinux which adds the -O option allowing a charset
    to be specified for the proper unzipping of non-latin and non-unicode
    filenames. (LP: #580961)

ec29d89... by Santiago Vila on 2010-02-21

Import patches-unapplied version 6.0-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2e1e047f3bda3192d606c4ffbfb92a7162664fac

New changelog entries:
  * Added homepage field to control file.
  * Switch to 3.0 (quilt) source format.
  * Support cross-build.

2e1e047... by Santiago Vila on 2010-02-09

Import patches-unapplied version 6.0-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: b6a0431333678d7516b609e068400dff324b2084

New changelog entries:
  * Added "set -e" to postinst and postrm.

b6a0431... by Santiago Vila on 2010-02-08

Import patches-unapplied version 6.0-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4bdd92f1dac8c5f8fbf29456c2a2e12339281b2e

New changelog entries:
  * Do not ignore errors from make clean (lintian warning)
  * Remove .comment section from executables (lintian warning).
  * Added mime stuff so that mutt is able to see the contents of a zipfile
    using "unzip -l". Closes: #474538.