[Bug 703475] [NEW] Sync calibre 0.7.38+dfsg-2 (universe) from Debian unstable (main)
Launchpad Bug Tracker
703475 at bugs.launchpad.net
Sun Jan 16 05:54:21 UTC 2011
You have been subscribed to a public bug by Micah Gersten (micahg):
Please sync calibre 0.7.38+dfsg-2 (universe) from Debian unstable (main)
Changelog entries since current natty version 0.7.32+dfsg-1build1:
calibre (0.7.38+dfsg-2) unstable; urgency=low
* debian/copyright: Update according to current upstream COPYING. In
particular, the pdfreflow extension is now distributed under GPL-2+. This
permits linking against poppler (which is GPL 2 only).
(Closes: #609581)
* Add kfreebsd.patch: Fix building under GNU/kFreeBSD, thanks Petr Salinger!
(Closes: #609557)
-- Martin Pitt <mpitt at debian.org> Wed, 12 Jan 2011 22:25:48 -0600
calibre (0.7.38+dfsg-1) unstable; urgency=low
* New upstream release:
- Fix path traversal vulnerability in the content server (not enabled by
default). See http://bugs.calibre-ebook.com/ticket/7980,
http://www.waraxe.us/advisory-77.html. First half of #608822
* debian/control: Add new build dependency libicu-dev.
* Add 00upstream_content_server_xss.patch: Fix XSS vulnerability in the
content server, the other half of above issue. (Closes: #608822) Patch
cherrypicked from upstream bzr (r7531)
-- Martin Pitt <mpitt at debian.org> Mon, 10 Jan 2011 09:18:13 -0600
** Affects: calibre (Ubuntu)
Importance: Wishlist
Status: Confirmed
--
Sync calibre 0.7.38+dfsg-2 (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/703475
You received this bug notification because you are a member of Ubuntu Package Archive Administrators, which is a direct subscriber.
More information about the ubuntu-archive
mailing list