[Bug 174573] Please sync tk8.3 8.3.5-11 (main) from Debian unstable (main)
Kees Cook
kees at ubuntu.com
Fri Dec 7 01:42:00 GMT 2007
Public bug reported:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
affects ubuntu/tk8.3
status confirmed
subscribe ubuntu-archive
Please sync tk8.3 8.3.5-11 (main) from Debian unstable (main).
Explanation of the Ubuntu delta and why it can be dropped:
Ubuntu changes were incorporated upstream.
Changelog since current hardy version 8.3.5-6ubuntu3:
tk8.3 (8.3.5-11) unstable; urgency=low
* Removed TK_INC_DIR from tkConfig.sh and tcl.m4.
* Moved architecture independent files from /usr/lib/tk8.3 to
/usr/share/tcltk/tk8.3. To keep backward compatibility tkConfig.sh is
linked into /usr/lib/tk8.3 directory.
* Fixed bug with update-alternatives in prerm scripts.
* Removed conflicts with tk and providing tk-dev packages from
debian/control to prepare binary packages for default tk and tk-dev.
* Added Homepage field to debian/control.
* Added compat headers to tk-private directory.
* Fixed segfault in case if only scalable fonts are available and the best
scored font is infeasible.
* Rearranged conflicts of tk8.3-doc package because of planned adoption of
real tk-doc package.
-- Sergei Golovan <sgolovan at debian.org> Fri, 19 Oct 2007 16:07:59
+0400
tk8.3 (8.3.5-10) unstable; urgency=high
* Applied patch by Nico Golde which fixes security vulnerability
CVE-2007-5378 overflow triggered by crafted GIF file (closes: #446465).
-- Sergei Golovan <sgolovan at debian.org> Sat, 13 Oct 2007 16:38:49
+0400
tk8.3 (8.3.5-9) unstable; urgency=high
* Applied patch by Nico Golde which fixes security vulnerability
CVE-2007-5137 arbitrary code execution via multi-frame interlaced
GIF (closes: #445303).
-- Sergei Golovan <sgolovan at debian.org> Thu, 04 Oct 2007 23:10:10
+0400
tk8.3 (8.3.5-8) unstable; urgency=low
* Switched to quilt for patch management.
* Cleaned up patches in debian/patches directory.
* Fixed underquoted definitions in tcl.m4.
* Added TK_INCLUDE_SPEC to tkConfig.sh (backported from Tk 8.4).
* Added patch by Massimo Dal Zotto with workaround for scalable fonts
treated as fixed (closes: #156119).
* Added patch by Anton Kovalenko (slightly modified) for international
characters support in canvas postscript (closes: #148513).
* Added /usr/lib/tcl8.3 to a search path for tclConfig.sh and /usr/lib/tk8.3
to a search path for tkConfig.sh in tcl.m4.
* Removed 10 years old patch which increases PIL (Python imaging library)
bitmaps loading performance.
* Added get-orig-source target to debian/rules.
* Added uscan control file debian/watch.
-- Sergei Golovan <sgolovan at debian.org> Fri, 28 Sep 2007 13:40:04
+0400
tk8.3 (8.3.5-7) unstable; urgency=low
* New maintainer Tcl/Tk Debian Packagers
<pkg-tcltk-devel at lists.alioth.debian.org>.
* Added Sergei Golovan to uploaders list.
* Removed build-essential packages from tk8.3-dev dependencies.
* Fixed dependencies on X libraries to reflect their changes since sarge.
* Removed conflicts to tk-dev package and made tk8.3-dev providing tk-dev.
* Fixed section numbers and references in manual pages.
* Fixed incorrect TK_XINCLUDES variable in tkConfig.sh (closes: #357808).
* Bumped debhelper compatibility level to 5.
* Bumped standards version to 3.7.2.
* Replaced deprecated ${Source-Version} substitution variable by
${binary:Version}.
* Moved menu item from obsolete Apps to Applications section.
-- Sergei Golovan <sgolovan at debian.org> Sat, 15 Sep 2007 10:27:03
+0400
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHWKTgH/9LqRcGPm0RAjhbAJ443bJwu9g7TWSeUGcYZ2vJqvcqCQCaAgdw
fS9MP/Ukfb4pQ+mNbO9oUKI=
=/FM6
-----END PGP SIGNATURE-----
** Affects: tk8.3 (Ubuntu)
Importance: Undecided
Status: Confirmed
--
Please sync tk8.3 8.3.5-11 (main) from Debian unstable (main)
https://bugs.launchpad.net/bugs/174573
You received this bug notification because you are a member of Ubuntu
Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list