[ubuntu/karmic-security] dvipng, dvipng (delayed) 1.11-1ubuntu0.9.10.1 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Thu May 6 14:04:24 BST 2010
dvipng (1.11-1ubuntu0.9.10.1) karmic-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via SetVF memory corruption
(LP: #537638)
- debian/patches/security-CVE-2010-0829.patch: make sure glyph index
doesn't overflow in dvipng.h, draw.c, vf.c, set.c.
- CVE-2010-0829
Date: Thu, 29 Apr 2010 08:41:15 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/dvipng/1.11-1ubuntu0.9.10.1
-------------- next part --------------
Format: 1.8
Date: Thu, 29 Apr 2010 08:41:15 -0400
Source: dvipng
Binary: dvipng
Architecture: source
Version: 1.11-1ubuntu0.9.10.1
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
dvipng - convert DVI files to PNG graphics
Changes:
dvipng (1.11-1ubuntu0.9.10.1) karmic-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via SetVF memory corruption
(LP: #537638)
- debian/patches/security-CVE-2010-0829.patch: make sure glyph index
doesn't overflow in dvipng.h, draw.c, vf.c, set.c.
- CVE-2010-0829
Checksums-Sha1:
1515b25a125c19d19cb49d7c4b855e3633a6e54e 1359 dvipng_1.11-1ubuntu0.9.10.1.dsc
6d400969c173620a94c56ba8a2ad5cfa4a4f1010 5641 dvipng_1.11-1ubuntu0.9.10.1.diff.gz
Checksums-Sha256:
5dfa38099cc85411f7dbbc7107e950e16c56114e3601a53eadb3493b2e1804c8 1359 dvipng_1.11-1ubuntu0.9.10.1.dsc
eaf48f1802fb55d2624aaf8f8a1e6c1735a97e3b0dd897607595e161f42ab3fc 5641 dvipng_1.11-1ubuntu0.9.10.1.diff.gz
Files:
1023698785011a4d5ea940e4a88dbb50 1359 utils optional dvipng_1.11-1ubuntu0.9.10.1.dsc
3dafdf50218a6269ef6fddcc0a21e6f8 5641 utils optional dvipng_1.11-1ubuntu0.9.10.1.diff.gz
Launchpad-Bugs-Fixed: 537638
Original-Maintainer: Varun Hiremath <varun at debian.org>
More information about the Karmic-changes
mailing list