[ubuntu/karmic-security] evince_2.28.1-0ubuntu1.3_powerpc_translations.tar.gz, evince_2.28.1-0ubuntu1.3_amd64_translations.tar.gz, evince_2.28.1-0ubuntu1.3_sparc_translations.tar.gz, evince_2.28.1-0ubuntu1.3_ia64_translations.tar.gz, evince_2.28.1-0ubuntu1.3_static_translations.tar.gz, evince, evince_2.28.1-0ubuntu1.3_lpia_translations.tar.gz, evince_2.28.1-0ubuntu1.3_i386_translations.tar.gz, evince_2.28.1-0ubuntu1.3_static_translations.tar.gz (delayed), evince_2.28.1-0ubuntu1.3_armel_translations.tar.gz 2.28.1-0ubuntu1.3 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Jan 5 14:05:08 UTC 2011 

evince (2.28.1-0ubuntu1.3) karmic-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via multiple dvi backend
    overflows
    - debian/patches/91_CVE-2010-264x.patch: add bounds checking in
      backend/dvi/mdvi-lib/{afmparse,dviread,pk,tfmfile,vf}.c.
    - CVE-2010-2640
    - CVE-2010-2641
    - CVE-2010-2642
    - CVE-2010-2643

Date: Mon, 03 Jan 2011 13:19:09 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/karmic/+source/evince/2.28.1-0ubuntu1.3
-------------- next part --------------
Format: 1.8
Date: Mon, 03 Jan 2011 13:19:09 -0500
Source: evince
Binary: evince evince-dbg libevview-dev libevview1 libevdocument-dev libevdocument1
Architecture: source
Version: 2.28.1-0ubuntu1.3
Distribution: karmic-security
Urgency: low
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 evince     - Document (postscript, pdf) viewer
 evince-dbg - Document (postscript, pdf) viewer - debugging symbols
 libevdocument-dev - GNOME document viewer backend library - development headers
 libevdocument1 - GNOME document viewer backend library
 libevview-dev - GNOME document viewer view library - development headers
 libevview1 - GNOME document viewer view library
Changes: 
 evince (2.28.1-0ubuntu1.3) karmic-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via multiple dvi backend
     overflows
     - debian/patches/91_CVE-2010-264x.patch: add bounds checking in
       backend/dvi/mdvi-lib/{afmparse,dviread,pk,tfmfile,vf}.c.
     - CVE-2010-2640
     - CVE-2010-2641
     - CVE-2010-2642
     - CVE-2010-2643
Checksums-Sha1: 
 822ee7cb5067bc8628660ef7af103a9808bf1589 2541 evince_2.28.1-0ubuntu1.3.dsc
 bd7c818c197af0ba7cb7bca5a4364dbd34038bdb 33951 evince_2.28.1-0ubuntu1.3.diff.gz
Checksums-Sha256: 
 ded48c403601b5877ce077c904a830d43e12d6d4f715ac005be5804fe659b334 2541 evince_2.28.1-0ubuntu1.3.dsc
 eadcb1b2c13b1112d4c021732cdf677311385a186b4419d932451146d84a7b58 33951 evince_2.28.1-0ubuntu1.3.diff.gz
Files: 
 a38c6142b25cdce42b1c970f9957bb97 2541 gnome optional evince_2.28.1-0ubuntu1.3.dsc
 30aff6ff144366bd546d12c902e41ee3 33951 gnome optional evince_2.28.1-0ubuntu1.3.diff.gz
Original-Maintainer: Marc 'HE' Brockschmidt <he at debian.org>

More information about the Karmic-changes mailing list