~ubuntu-branches/ubuntu/natty/webkit/natty

Committer: Bazaar Package Importer
Author(s): Sebastien Bacher
Date: 2011-01-20 18:37:41 UTC
mfrom: (4.2.9 experimental)
Revision ID: james.westby@ubuntu.com-20110120183741-o91zq5wv7exobi20

Tags: 1.3.10-1ubuntu1

* Synchronize on Debian, remaining diff is:
* debian/libwebkitgtk-1.0-0.symbols, debian/libwebkitgtk-3.0-0.symbols:
  - Use regexp to add symbols that only appear on the ARM build
  - Use regexp to disable C++ private symbols
* debian/patches/01_missing_armv7_files.patch:
  - Add files missing for ARMv7 build
* debian/control, debian/rules:
  - build without geoclue, it's in universe

files added:
debian/gir1.2-webkit-3.0.install

debian/libwebkitgtk-3.0-0.install

debian/libwebkitgtk-3.0-0.symbols

debian/libwebkitgtk-3.0-common.install

debian/libwebkitgtk-3.0-dev.install

debian/libwebkitgtk-3.0-dev.links

files modified:
debian/changelog

debian/control

debian/copyright

debian/libwebkitgtk-1.0-0.install

debian/libwebkitgtk-1.0-common.install

debian/libwebkitgtk-dev.install

debian/libwebkitgtk-dev.links

debian/rules

Show diffs side-by-side

added added

removed removed

debian/changelog

webkit (1.3.10-0ubuntu4) natty; urgency=low

* debian/control:

- add a explict conflict against libwebkit-1.0-2. This helps

the apt resolver to cleanly upgrade and there is a implicit

conflict there already (because of the conflicting -common)

packages

-- Michael Vogt <michael.vogt@ubuntu.com> Mon, 17 Jan 2011 12:18:49 +0100

webkit (1.3.10-0ubuntu3) natty; urgency=low

* debian/libwebkitgtk-1.0-0.symbols:

webkit (1.3.10-1ubuntu1) natty; urgency=low

* Synchronize on Debian, remaining diff is:

* debian/libwebkitgtk-1.0-0.symbols, debian/libwebkitgtk-3.0-0.symbols:

- Use regexp to add symbols that only appear on the ARM build

-- Robert Ancell <robert.ancell@canonical.com> Thu, 13 Jan 2011 09:55:50 -0600

webkit (1.3.10-0ubuntu2) natty; urgency=low

* debian/libwebkitgtk-1.0-0.symbols:

- Use regexp to disable C++ private symbols

-- Robert Ancell <robert.ancell@canonical.com> Wed, 12 Jan 2011 15:03:55 -0600

webkit (1.3.10-0ubuntu1) natty; urgency=low

* New upstream release

* debian/libwebkitgtk-1.0-0.symbols:

- Updated

- Use unmangled names for C++ symbols

- Mark C++ symbols as optional (they should be private)

* debian/patches/01_missing_armv7_files.patch:

- Add files missing for ARMv7 build

-- Robert Ancell <robert.ancell@canonical.com> Wed, 12 Jan 2011 10:09:19 -0600

webkit (1.3.9-0ubuntu1) natty; urgency=low

* New upstream release

* debian/control:

- Add build-depends on libglib2.0-dev

- Bump build-depends on libgail-dev, libgirepository1.0-dev,

gobject-introspection

- Rename packages from libwebkit to libwebkitgtk

- Rename gir1.0 package to gir1.2

* debian/*.install:

- Update for new package/library names

* debian/libwebkitgtk-1.0-0.symbols:

- Updated

* debian/rules:

- Build with --with-gtk=2.0

- Update for new package names

* debian/watch:

- Add watch file

* debian/patches/04-spoof-user-agent-to-google.patch:

* debian/patches/ubuntu-gir-version.patch:

- Applied upstream

* debian/patches/02-pool-fixup-and-sparc-support.patch:

* debian/patches/05-fix-jit-on-kfreebsd-i386.patch:

- Disabled, the don't apply and we don't support these architectures

* debian/patches/cve-2010-3120.patch:

* debian/patches/cve-2010-2901.patch:

* debian/patches/cve-2010-2900.patch:

* debian/patches/cve-2010-2651.patch:

* debian/patches/cve-2010-2646.patch:

- Applied upstream

-- Robert Ancell <robert.ancell@canonical.com> Tue, 11 Jan 2011 03:56:19 +1100

webkit (1.2.5-2.1ubuntu1) UNRELEASED; urgency=low

* Merge with Debian unstable, remaining Ubuntu changes:

* debian/control:

- Don't build-depends on gir-repository-dev it's not required

- Use standards-version 3.9.1

- Add Vcs-Bzr link

* debian/patches/ubuntu-gir-version.patch:

- Use the current gobject introspection abi

-- Robert Ancell <robert.ancell@canonical.com> Wed, 22 Dec 2010 14:58:12 +1100

webkit (1.2.5-2.1) unstable; urgency=low

* Non-maintainer upload.

* Add patch 05-fix-jit-on-kfreebsd-i386.patch by Petr Salinger and

Michael Dorrington: Fixes Javascript JIT crashing on kfreebsd-i386

(closes: #598956).

-- gregor herrmann <gregoa@debian.org> Wed, 10 Nov 2010 23:28:55 +0100

webkit (1.2.5-2) unstable; urgency=high

* Unapply 02-pool-fixup-and-sparc-support.patch and

04-spoof-user-agent-to-google.patch in git. This prevents the

creation of an unwanted debian-changes patch.

-- Michael Gilbert <michael.s.gilbert@gmail.com> Mon, 18 Oct 2010 22:00:36 -0400

webkit (1.2.5-1) unstable; urgency=high

100

101

[ Gustavo Noronha Silva ]

102

103

* New upstream release

104

- fixes the following CVES:

105

106

CVE-2010-1780 CVE-2010-3113 CVE-2010-1814 CVE-2010-1812

107

CVE-2010-1815 CVE-2010-3115 CVE-2010-1807 CVE-2010-3114

108

CVE-2010-3116 CVE-2010-3257 CVE-2010-3259

109

110

[ Michael Gilbert ]

111

* fix cve-2010-2646: security origin bypass using IFRAME elements.

112

* fix cve-2010-2651: vulnerability in css style rendering.

113

* fix cve-2010-2900: vulnerability with large canvas elements when using the

114

SKIA library.

115

* fix cve-2010-2901: vulnerability in the rendering implementation.

116

* fix cve-2010-3120: vulnerability in geolocation feature.

117

118

-- Gustavo Noronha Silva <kov@debian.org> Sat, 16 Oct 2010 17:50:56 -0300

119

120

webkit (1.2.4-1) unstable; urgency=high

121

122

* New stable release

123

- fixes the following CVEs (thus urgency=high):

124

125

CVE-2010-1781 CVE-2010-1782 CVE-2010-1784 CVE-2010-1785

126

CVE-2010-1786 CVE-2010-1787 CVE-2010-1788 CVE-2010-1790

127

CVE-2010-1792 CVE-2010-1793 CVE-2010-2648

128

129

* debian/patches/04-spoof-user-agent-to-google.patch:

130

- updated from the latest patch proposed for inclusion upstream

131

- does not have the annoying g_message() (Closes: #592670)

132

133

-- Gustavo Noronha Silva <kov@debian.org> Fri, 03 Sep 2010 17:52:14 -0300

134

135

webkit (1.2.3-2) unstable; urgency=low

136

137

* debian/patches/04-spoof-user-agent-to-google.patch:

138

- spoof User Agent when talking to Google servers;

139

this should make Youtube HTML5 work again (Closes: #567311)

140

141

-- Gustavo Noronha Silva <kov@debian.org> Tue, 10 Aug 2010 20:04:20 -0300

142

143

webkit (1.2.3-1) unstable; urgency=low

144

145

* New upstream stable release

146

- fixes building with ICU 4.4.1 (Closes: #589046)

147

- all CVE patches included, so drop them

148

149

-- Gustavo Noronha Silva <kov@debian.org> Thu, 15 Jul 2010 18:33:04 -0300

150

151

webkit (1.2.2-1) unstable; urgency=low

152

153

[ Michael Gilbert ]

154

* Turn direct source changes into a patch.

155

* Fix cve-2010-1386: geolocation information disclosure.

156

* Fix cve-2010-1392: possible code execution in html button logic.

157

* Fix cve-2010-1405: possible code execution in vertical positioning logic.

158

* Fix cve-2010-1407: iframe information disclosure.

159

* Fix cve-2010-1416: svg cross-site information disclosure.

160

* Fix cve-2010-1417: possible code execution in the css implementation (this

161

is currently duplicated as cve-2010-1665 in mitre's cve database).

162

* Fix cve-2010-1418: remote web script and/or html injection.

163

* Fix cve-2010-1421: remote modification of clipboard contents.

164

* Fix cve-2010-1422: keyboard focus hijack (this is duplicated as

165

cve-2010-2295 in mitre's cve database).

166

* Fix cve-2010-1501: add check to prevent cross-site request forgery (this

167

may be duplicated as cve-2010-1767 in mitre's cve database).

168

* Fix cve-2010-1664: possible code execution due to improper html5 media

169

handling.

170

* Fix cve-2010-1758: possible code execution in xml dom processor.

171

* Fix cve-2010-1759: another possible code execution issue in the xml dom

172

processor (this is duplicated as cve-2010-2300 in mitre's database).

173

* Fix cve-2010-1760: user credential information disclosure.

174

* Fix cve-2010-1761: possible code execution in frameview logic.

175

* Fix cve-2010-1762: webscript and/or html injection using the textarea

176

element (this is duplicated as cve-2010-2301 in mitre's database).

177

* Fix cve-2010-1770: possible code execution due to improper handling of the

178

ibm1147 character set.

179

* Fix cve-2010-1771: possible code execution due to improper font handling

180

(this is duplicated as cve-2010-2302 in mitre's database).

181

* Fix cve-2010-1772: geolocation disconnectframe timer issue (this is

182

duplicated as cve-2010-2303 in mitre's database).

183

* Fix cve-2010-1773: integer overflow in alphabet conversion (this is

184

duplicated as cve-2010-2304 and cve-2010-2441 in mitre's database)

185

closes: #586547.

186

* Fix cve-2010-1774: integer overflow in table layout handling (this is

187

duplicated as cve-2010-2297 in mitre's database).

188

189

[ Gustavo Noronha Silva ]

190

* New upstream release

191

- adds a new symbol, fixed symbols file to include it

192

* debian/patches/01-fix-bashism-in-build.patch:

193

- removed, no longer needed

194

195

-- Gustavo Noronha Silva <kov@debian.org> Mon, 12 Jul 2010 15:23:17 -0300

196

197

webkit (1.2.1-2) unstable; urgency=high

198

199

* debian/patches/01-fix-bashism-in-build.diff:

200

- remove bashism from the code that handles Web Inspector files,

201

that end up not being installed. (Closes: #581893)

202

* Marking this release as urgency=high, given the 1.2.0 series was

203

already well tested, and testing has a quite buggy version for some

204

time now.

205

206

-- Gustavo Noronha Silva <kov@debian.org> Mon, 17 May 2010 11:33:48 -0300

207

208

webkit (1.2.1-1) unstable; urgency=low

209

210

[Michael Gilbert]

211

* Convert to source format version 3.0 (quilt) to make it easier to support

212

security backports in the future.

213

- Create patches for existing debian modifications (sparc-support.patch

214

and pool-fixup.patch)

215

* Use ${misc:Depends}.

216

* Bump standards to 3.8.4 (no changes required).

217

218

[ Gustavo Noronha Silva ]

219

* New upstream release

220

- fixes SPARC build (Closes: #579472)

221

222

-- Gustavo Noronha Silva <kov@debian.org> Thu, 13 May 2010 17:35:08 -0300

223

224

webkit (1.2.0-1) unstable; urgency=low

225

226

* New upstream release - this is the first release in the 1.2 stable

227

branch

228

229

-- Gustavo Noronha Silva <kov@debian.org> Wed, 07 Apr 2010 20:18:57 -0300

230

231

webkit (1.1.90-1) unstable; urgency=low

232

233

* New upstream release

234

- This marks the preparation for the 1.2 stable branch

235

* debian/copyright:

236

- updated with changes since 1.1.22

237

* debian/libwebkit-1.0-2.symbols:

238

- added new API introduced in 1.1.23

239

240

-- Gustavo Noronha Silva <kov@debian.org> Wed, 17 Mar 2010 15:05:11 -0300

241

242

webkit (1.1.22-1) unstable; urgency=low

243

244

* New upstream release

245

- Fixes crash with unknown content types in data:// URIs

246

(Closes: #563695)

247

- Sends Accept header for sub resources, which makes a few sites become

248

happy again (Closes: #563736)

249

* debian/copyright:

250

- updated with changes since 1.1.21

251

* debian/control:

252

- replace gobject-introspection-repository, to avoid failures on upgrade

253

(Closes: #563312)

254

255

-- Gustavo Noronha Silva <kov@debian.org> Tue, 16 Feb 2010 11:55:07 -0200

256

257

webkit (1.1.21-2) unstable; urgency=low

258

259

* debian/control:

260

- Build-Depend on soup 2.29.90; WebKitGTK+'s configure system checks for

261

this version to enable cookie policy-related features, and we want

262

those on for sure

263

* Import patch from upstream to fix crash when returning to a cached page

264

which has data: uris, and is in the page cache (Closes: #569950)

265

266

-- Gustavo Noronha Silva <kov@debian.org> Mon, 15 Feb 2010 11:49:00 -0200

267

268

webkit (1.1.21-1) unstable; urgency=low

269

270

* New upstream release

271

- imported a number of fixes to the scrolling code that made navigating

272

the history crashy with page cache enabled (Closes: #569072)

273

* debian/copyright:

274

- updated with changes since 1.1.20.

275

* debian/libwebkit-1.0-2.symbols:

276

- added a symbol that was added in 1.1.21.

277

278

-- Gustavo Noronha Silva <kov@debian.org> Wed, 10 Feb 2010 20:31:38 -0200

279

280

webkit (1.1.20-1) unstable; urgency=low

281

282

* New upstream release

283

* debian/copyright:

284

- Updated with changes since 1.1.19.

285

286

-- Gustavo Noronha Silva <kov@debian.org> Thu, 04 Feb 2010 19:30:57 -0200

287

288

webkit (1.1.19-1) unstable; urgency=low

289

290

* New upstream release

291

- Fixes crashes related to clearing the clipboard, which many users were

292

experiencing (Closes: #565166)

293

294

-- Gustavo Noronha Silva <kov@debian.org> Wed, 20 Jan 2010 20:09:57 -0200

295

296

webkit (1.1.18-2) unstable; urgency=low

297

298

* debian/control:

299

- build-depend on gobject-introspection >= 0.6.2, following what the

300

configure script does (Closes: #564453)

301

302

-- Gustavo Noronha Silva <kov@debian.org> Sat, 09 Jan 2010 20:14:23 -0200

303

304

webkit (1.1.18-1) unstable; urgency=low

305

306

* New upstream release

307

- adds basic Content-Encoding support, thanks to soup

308

(Closes: #529271)

309

- fixes over-advertising content types as supported by

310

the media player (Closes: #559420)

311

* debian/control:

312

- updated libsoup build requirement (>= 2.28.2)

313

* debian/libwebkit-1.0-2.symbols:

314

- updated with new symbols

315

* debian/copyright:

316

- updated information since 1.1.17

317

* Imported patch from https://bugs.webkit.org/show_bug.cgi?id=30623

318

- I am shipping this patch because I believe it is correct, it is the

319

way to go, it fixes a race, and it needs testing.

320

321

-- Gustavo Noronha Silva <kov@debian.org> Wed, 06 Jan 2010 21:25:06 -0200

322

323

webkit (1.1.17-2) unstable; urgency=low

324

325

* debian/control:

326

- bump Standards-Version to 3.8.3

* debian/control, debian/rules:

- build without geoclue, it's in universe

-- Sebastien Bacher <seb128@ubuntu.com> Thu, 20 Jan 2011 18:37:41 +0100

webkit (1.3.10-1) experimental; urgency=low

* New development release

* debian/control:

- Build-Depend on GTK+3 >= 2.99.1 to avoid problems with the multiple

breakages

* debian/rules:

- adapt for source layout changes

-- Gustavo Noronha Silva <kov@debian.org> Thu, 13 Jan 2011 10:37:55 -0200

webkit (1.3.9-1) experimental; urgency=low

* New development release

- fixes build with newest GTK+

* debian/control:

- build-depend on GTK+ >= 2.91.7 for the GTK+3-based version

- build-depend on gir1.2-{gtk-2.0,soup-2.4}

- rename introspection packages to gir1.2-*

- updated Build-Depends on gobject-introspection

- tighten dependency of -dev packages on library packages

- add missing ${misc:Depends}

- update Standards-Version to 3.9.1

* debian/rules:

- add dh_girepository calls to actually do something to ${gir:Depends}

- run dh_makeshlibs targetting the appropriate packages (library ones,

not dev)

- remove rpath from the installed binaries

-- Gustavo Noronha Silva <kov@debian.org> Mon, 27 Dec 2010 14:06:08 -0200

webkit (1.3.8-1) experimental; urgency=low

* New upstream development release

327

* debian/debian/gir1.0-webkit-1.0.install, debian/control,

328

debian/rules, debian/libwebkit-dev.install:

329

- add gir1.0-webkit-1.0 package, and enable introspection support

330

- make libwebkit-dev Replace gir-repository-dev

- rename packages to accomodate soname change

- add new packages for gtk3-based webkitgtk

* debian/control, debian/rules:

- enable building geolocation support

331

332

-- Gustavo Noronha Silva <kov@debian.org> Thu, 03 Dec 2009 12:16:27 -0200

-- Gustavo Noronha Silva <kov@debian.org> Wed, 11 Aug 2010 11:10:28 -0300

333

334

webkit (1.1.17-1) unstable; urgency=low

335

387

111

* debian/libwebkit-1.0-2.symbols:

388

112

- remove revisions from the symbol versions

389

113

390

-- Gustavo Noronha Silva <kov@debian.org> Thu, 24 Sep 2009 09:38:16 -0300

114

-- Gustavo Noronha Silva <kov@debian.org> Fri, 06 Aug 2010 11:19:52 -0300

391

115

392

116

webkit (1.1.15-1) experimental; urgency=low

393

117

Older »