~ubuntu-branches/ubuntu/quantal/libxfont/quantal-security

Viewing all changes in revision 28.

  • Committer: Bazaar Package Importer
  • Author(s): Cyril Brulebois, Julien Cristau, Cyril Brulebois
  • Date: 2011-08-11 11:17:16 UTC
  • mfrom: (1.1.14 upstream)
  • Revision ID: james.westby@ubuntu.com-20110811111716-zvgpyvmyn8in3sx6
Tags: 1:1.4.4-1
[ Julien Cristau ]
* Drop Pre-Depends on x11-common (only needed for upgrades from the
  monolith) and Replaces on xlibs-static-dev (hasn't existed in forever).

[ Cyril Brulebois ]
* New upstream release:
  - LZW decompress: fix for CVE-2011-2895. From the commit message:
    “Specially crafted LZW stream can crash an application using libXfont
     that is used to open untrusted font files.  With X server, this may
     allow privilege escalation when exploited.”
* Set urgency to “high” accordingly.
* Update debian/copyright from upstream COPYING.
* Bump xorg-sgml-doctools build-dep.
* Drop xorg.css from .install, no longer shipped upstream.

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: