[ubuntu/hardy-security] evince_2.22.2-0ubuntu2.1_lpia_translations.tar.gz, evince_2.22.2-0ubuntu2.1_hppa_translations.tar.gz, evince_2.22.2-0ubuntu2.1_amd64_translations.tar.gz, evince_2.22.2-0ubuntu2.1_sparc_translations.tar.gz (delayed), evince, evince_2.22.2-0ubuntu2.1_i386_translations.tar.gz, evince_2.22.2-0ubuntu2.1_ia64_translations.tar.gz, evince_2.22.2-0ubuntu2.1_powerpc_translations.tar.gz 2.22.2-0ubuntu2.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Jan 5 14:05:49 UTC 2011 

evince (2.22.2-0ubuntu2.1) hardy-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via multiple dvi backend
    overflows
    - debian/patches/71_CVE-2010-264x.patch: add bounds checking in
      backend/dvi/mdvi-lib/{afmparse,dviread,pk,tfmfile,vf}.c.
    - CVE-2010-2640
    - CVE-2010-2641
    - CVE-2010-2642
    - CVE-2010-2643

Date: Mon, 03 Jan 2011 13:20:49 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/evince/2.22.2-0ubuntu2.1
-------------- next part --------------
Format: 1.7
Date: Mon, 03 Jan 2011 13:20:49 -0500
Source: evince
Binary: evince evince-dbg evince-gtk evince-gtk-dbg
Architecture: source
Version: 2.22.2-0ubuntu2.1
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 evince     - Document (postscript, pdf) viewer
 evince-dbg - Document (postscript, pdf) viewer - debugging symbols
 evince-gtk - Document (postscript, pdf) viewer (gtk version)
 evince-gtk-dbg - Document (postscript, pdf) viewer (gtk version) - debugging symbo
Changes: 
 evince (2.22.2-0ubuntu2.1) hardy-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via multiple dvi backend
     overflows
     - debian/patches/71_CVE-2010-264x.patch: add bounds checking in
       backend/dvi/mdvi-lib/{afmparse,dviread,pk,tfmfile,vf}.c.
     - CVE-2010-2640
     - CVE-2010-2641
     - CVE-2010-2642
     - CVE-2010-2643
Files: 
 887337adb32c3f071cc0b8b64da98f44 2059 gnome optional evince_2.22.2-0ubuntu2.1.dsc
 10cb65378f99126c196557a3b553b25b 58656 gnome optional evince_2.22.2-0ubuntu2.1.diff.gz
Original-Maintainer: Marc 'HE' Brockschmidt <he at debian.org>

More information about the Hardy-changes mailing list