-
Committer:
Bazaar Package Importer
-
Author(s):
Marc Deslauriers
-
Date:
2010-05-03 09:17:58 UTC
-
Revision ID:
james.westby@ubuntu.com-20100503091758-8cg30i22bpdevb05
Tags: 2007.dfsg.1-2ubuntu0.1
* SECURITY UPDATE: denial of service via buffer overflow
- debian/patches/security-CVE-2009-1284.patch: check for pool overflow
in build/source/texk/web2c/bibtex.ch.
- CVE-2009-1284
* SECURITY UPDATE: arbitrary code execution via memory corruption
(LP: #537103)
- debian/patches/security-CVE-2010-0827.patch: make sure name isn't
too long in build/source/texk/dvipsk/virtualfont.c.
- CVE-2010-0827
* SECURITY UPDATE: arbitrary code execution via integer overflow
- debian/patches/security-CVE-2010-0739,1440.patch: make sure numbytes
doesn't overflow in build/source/texk/dvipsk/dospecial.c.
- CVE-2010-0739
- CVE-2010-1440