lp://staging/ubuntu/natty-updates/jasper

Created by Ubuntu Package Importer and last modified
Get this branch:
bzr branch lp://staging/ubuntu/natty-updates/jasper
Members of Ubuntu branches can upload to this branch. Log in for directions.

Branch merges

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Review team:
Ubuntu Development Team
Status:
Mature

Recent revisions

10. By Marc Deslauriers

* SECURITY UPDATE: denial of service and possible code execution via
  heap-based buffer overflows.
  - src/libjasper/jpc/jpc_cs.c: validate compparms->numrlvls and allocate
    proper size in src/libjasper/jpc/jpc_cs.c.
  - Thanks to Red Hat for the patch
  - CVE-2011-4516
  - CVE-2011-4517

9. By Kees Cook

debian/rules: clear dependency_libs from shipped .la files,
per Policy 10.2.

8. By Kees Cook

* Enable multiarch build (LP: #733501)
  - debian/control: update depends for multiarch toolchain
  - debian/*.install: update /usr/lib paths
  - debian/rules:
    - add --libdir to configure
    - update library path creation

7. By Roland Stigge <email address hidden>

* Acknowledge NMU
* Added patch to fix Debian patch for CVE-2008-3521 (Closes: #506739)
* debian/control: Standards-Version: 3.8.4

6. By Francesco Paolo Lovergine

* Non-maintainer upload.
* This is a fix for the GeoJP2 patch introduced in 1.900.1-5 which caused
  GDAL faulting. Thanks Even Rouault. (Closes: #553429)

5. By Roland Stigge <email address hidden>

* Reverted to jasper 1.900.1-6 because 1.900.1-5.1 messed up (see #528543)
  but 1.900.1-5 wasn't available anymore. (Closes: #514296, #528543)
* Re-applied patch from #275619 as in 1.900.1-5
* debian/control: Standards-Version: 3.8.2
* Applied patch by Nico Golde (Closes: #501021)
   - CVE-2008-3522[0]: Buffer overflow.
   - CVE-2008-3521[1]: unsecure temporary files handling.
   - CVE-2008-3520[2]: Multiple integer overflows.

4. By Pierre Habouzit

* Non-maintainer upload.
* add patches/02_security.dpatch to fix various CVEs (Closes: #501021):
   + CVE-2008-3522[0]: Buffer overflow.
   + CVE-2008-3521[1]: unsecure temporary files handling.
   + CVE-2008-3520[2]: Multiple integer overflows.

3. By Roland Stigge <email address hidden>

* Prevent compression of pdf documents in binary packages
* Added man pages for the executables (Closes: #250077)
* Again renamed binary packages to reflect Policy:
    - libjasper-1.701-1
    - libjasper-1.701-dev (Provides, Replaces and Conflicts: libjasper-dev)
    - libjasper-runtime

2. By Chris Cheney

Initial Release.

1. By Chris Cheney

Import upstream version 1.700.2

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp://staging/ubuntu/precise/jasper
This branch contains Public information 
Everyone can see this information.

Subscribers