← Back to branch summary

~ubuntu-branches/ubuntu/quantal/icu/quantal

~ubuntu-branches/ubuntu/quantal/icu/quantal

« back to all changes in this revision

Viewing changes to debian/control

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2009-03-25 08:37:53 UTC
Revision ID: package-import@ubuntu.com-20090325083753-21rrzn8g34tv7b0q

Tags: 3.8.1-3ubuntu1

https://launchpad.net/bugs/341834

* SECURITY UPDATE: Cross-site scripting attack via invalid character
  sequences (LP: #341834)
  - debian/patches/03-cve-2008-1036.patch: Improve parsing logic in
    source/common/{ucnv2022.c,ucnv_bld.*,ucnv.c,ucnvhz.c} to replace
    invalid character sequences. Also, add test case to
    source/test/{cintltst/nucnvtst.c,testdata/conversion.txt}.
  - CVE-2008-1036

files added:
debian/patches/03-cve-2008-1036.patch

files modified:
debian/changelog

debian/control

Show diffs side-by-side

added added

removed removed

1

1

Source: icu

2

2

Section: libs

3

3

Priority: optional

4

Maintainer: Jay Berkenbilt <qjb@debian.org>

4

Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss@lists.ubuntu.com>

5

XSBC-Original-Maintainer: Jay Berkenbilt <qjb@debian.org>

5

6

Standards-Version: 3.7.3

6

7

Build-Depends: cdbs, debhelper (>= 5), doxygen, gcc-multilib [amd64 kfreebsd-amd64 ppc64] | gcc-4.1 (<< 4.1.2) [amd64 kfreebsd-amd64 ppc64],

7

8

g++-multilib [amd64 kfreebsd-amd64 ppc64] | g++-4.1 (<< 4.1.2) [amd64 kfreebsd-amd64 ppc64],

Older »