[ubuntu/lucid-security] evince_2.30.3-0ubuntu1.2_powerpc_translations.tar.gz, evince_2.30.3-0ubuntu1.2_ia64_translations.tar.gz, evince_2.30.3-0ubuntu1.2_static_translations.tar.gz (delayed), evince, evince_2.30.3-0ubuntu1.2_armel_translations.tar.gz, evince_2.30.3-0ubuntu1.2_amd64_translations.tar.gz, evince_2.30.3-0ubuntu1.2_sparc_translations.tar.gz, evince_2.30.3-0ubuntu1.2_static_translations.tar.gz, evince_2.30.3-0ubuntu1.2_i386_translations.tar.gz 2.30.3-0ubuntu1.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Wed Jan 5 14:04:18 UTC 2011 

evince (2.30.3-0ubuntu1.2) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via multiple dvi backend
    overflows
    - debian/patches/02_CVE-2010-264x.patch: add bounds checking in
      backend/dvi/mdvi-lib/{afmparse,dviread,pk,tfmfile,vf}.c.
    - CVE-2010-2640
    - CVE-2010-2641
    - CVE-2010-2642
    - CVE-2010-2643

Date: Mon, 03 Jan 2011 13:13:51 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/evince/2.30.3-0ubuntu1.2
-------------- next part --------------
Format: 1.8
Date: Mon, 03 Jan 2011 13:13:51 -0500
Source: evince
Binary: evince evince-dbg libevview-dev libevview2 libevdocument-dev libevdocument2
Architecture: source
Version: 2.30.3-0ubuntu1.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Desktop Team <ubuntu-desktop at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 evince     - Document (postscript, pdf) viewer
 evince-dbg - Document (postscript, pdf) viewer - debugging symbols
 libevdocument-dev - GNOME document viewer backend library - development headers
 libevdocument2 - GNOME document viewer backend library
 libevview-dev - GNOME document viewer view library - development headers
 libevview2 - GNOME document viewer view library
Changes: 
 evince (2.30.3-0ubuntu1.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: arbitrary code execution via multiple dvi backend
     overflows
     - debian/patches/02_CVE-2010-264x.patch: add bounds checking in
       backend/dvi/mdvi-lib/{afmparse,dviread,pk,tfmfile,vf}.c.
     - CVE-2010-2640
     - CVE-2010-2641
     - CVE-2010-2642
     - CVE-2010-2643
Checksums-Sha1: 
 c3b8fb0b3801e9009d187b63e49a4409bb72b346 2573 evince_2.30.3-0ubuntu1.2.dsc
 38532cbe73e2c0c5df4b5172874ee4a7a6bc998f 36123 evince_2.30.3-0ubuntu1.2.diff.gz
Checksums-Sha256: 
 684ebf82b310e83a043f6e77291c3778b87abdd4f5ed8e2cf24728840504c3de 2573 evince_2.30.3-0ubuntu1.2.dsc
 b9addf763653fe4e6727c9169236ae497b6207a7584b5d98d60287a7d822d273 36123 evince_2.30.3-0ubuntu1.2.diff.gz
Files: 
 1355ee5f76f96a5a6656d1e5718218d3 2573 gnome optional evince_2.30.3-0ubuntu1.2.dsc
 eae9ac8c4495ec8bd31794a3c0841b4e 36123 gnome optional evince_2.30.3-0ubuntu1.2.diff.gz
Original-Maintainer: Marc 'HE' Brockschmidt <he at debian.org>

More information about the Lucid-changes mailing list