[ubuntu/eoan-proposed] evince 3.32.0-1ubuntu1 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue May 14 18:34:15 UTC 2019
evince (3.32.0-1ubuntu1) eoan; urgency=medium
* SECURITY UPDATE: Uninitialized memory use
- debian/patches/CVE-2019-11459.patch: handle failure
from TIFFREADGBAImageOriented, returning NULL instead
of displaying uninitialized memory in backend/tiff/tiff-document.c.
- CVE-2019-11459
Date: Thu, 25 Apr 2019 11:46:31 -0300
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/evince/3.32.0-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Thu, 25 Apr 2019 11:46:31 -0300
Source: evince
Architecture: source
Version: 3.32.0-1ubuntu1
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas S. Barbosa <leo.barbosa at canonical.com>
Changes:
evince (3.32.0-1ubuntu1) eoan; urgency=medium
.
* SECURITY UPDATE: Uninitialized memory use
- debian/patches/CVE-2019-11459.patch: handle failure
from TIFFREADGBAImageOriented, returning NULL instead
of displaying uninitialized memory in backend/tiff/tiff-document.c.
- CVE-2019-11459
Checksums-Sha1:
2c5e4fc1651731179e525ddfe761ce26c908e714 3143 evince_3.32.0-1ubuntu1.dsc
8625e34df04c588370283ecaf4b316883caf5a5e 30760 evince_3.32.0-1ubuntu1.debian.tar.xz
c9ad28fcdd2c5e8d856f12b7e711f919abfe13ad 20008 evince_3.32.0-1ubuntu1_source.buildinfo
Checksums-Sha256:
cdb33f48f20ddf1979d92c17bf9efd33db4eb8103148196622ef698b3d4b28d4 3143 evince_3.32.0-1ubuntu1.dsc
f5b13c8e8e465618500d8ad633948578e014c364029fa41feeb982fef3b307d5 30760 evince_3.32.0-1ubuntu1.debian.tar.xz
17f3c41beac8b1f4594ffd118105ca0473a4b0daac59010be855087d39589d77 20008 evince_3.32.0-1ubuntu1_source.buildinfo
Files:
ce5c8bfab0ef6a7a6c5fd57a9dee5e8f 3143 gnome optional evince_3.32.0-1ubuntu1.dsc
ee3f979b2b148b21ec58a9535e496b3f 30760 gnome optional evince_3.32.0-1ubuntu1.debian.tar.xz
7cafeca35f9624bc56e23b93697690f7 20008 gnome optional evince_3.32.0-1ubuntu1_source.buildinfo
Original-Maintainer: Debian GNOME Maintainers <pkg-gnome-maintainers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----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=zXps
-----END PGP SIGNATURE-----
More information about the Eoan-changes
mailing list