lp://staging/ubuntu/natty-updates/jasper
- Get this branch:
- bzr branch lp://staging/ubuntu/natty-updates/jasper
Branch merges
Branch information
Recent revisions
- 10. By Marc Deslauriers
-
* SECURITY UPDATE: denial of service and possible code execution via
heap-based buffer overflows.
- src/libjasper/jpc/jpc_ cs.c: validate compparms->numrlvls and allocate
proper size in src/libjasper/jpc/jpc_ cs.c.
- Thanks to Red Hat for the patch
- CVE-2011-4516
- CVE-2011-4517 - 8. By Kees Cook
-
* Enable multiarch build (LP: #733501)
- debian/control: update depends for multiarch toolchain
- debian/*.install: update /usr/lib paths
- debian/rules:
- add --libdir to configure
- update library path creation - 7. By Roland Stigge <email address hidden>
-
* Acknowledge NMU
* Added patch to fix Debian patch for CVE-2008-3521 (Closes: #506739)
* debian/control: Standards-Version: 3.8.4 - 6. By Francesco Paolo Lovergine
-
* Non-maintainer upload.
* This is a fix for the GeoJP2 patch introduced in 1.900.1-5 which caused
GDAL faulting. Thanks Even Rouault. (Closes: #553429) - 5. By Roland Stigge <email address hidden>
-
* Reverted to jasper 1.900.1-6 because 1.900.1-5.1 messed up (see #528543)
but 1.900.1-5 wasn't available anymore. (Closes: #514296, #528543)
* Re-applied patch from #275619 as in 1.900.1-5
* debian/control: Standards-Version: 3.8.2
* Applied patch by Nico Golde (Closes: #501021)
- CVE-2008-3522[0]: Buffer overflow.
- CVE-2008-3521[1]: unsecure temporary files handling.
- CVE-2008-3520[2]: Multiple integer overflows. - 4. By Pierre Habouzit
-
* Non-maintainer upload.
* add patches/02_security. dpatch to fix various CVEs (Closes: #501021):
+ CVE-2008-3522[0]: Buffer overflow.
+ CVE-2008-3521[1]: unsecure temporary files handling.
+ CVE-2008-3520[2]: Multiple integer overflows. - 3. By Roland Stigge <email address hidden>
-
* Prevent compression of pdf documents in binary packages
* Added man pages for the executables (Closes: #250077)
* Again renamed binary packages to reflect Policy:
- libjasper-1.701-1
- libjasper-1.701-dev (Provides, Replaces and Conflicts: libjasper-dev)
- libjasper-runtime
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp://staging/ubuntu/precise/jasper