rev 16515 - trunk/packages/kde3libs/debian
Ana Beatriz Guerrero López
ana at alioth.debian.org
Fri Jan 1 22:12:00 UTC 2010
Author: ana
Date: 2010-01-01 22:11:59 +0000 (Fri, 01 Jan 2010)
New Revision: 16515
Modified:
trunk/packages/kde3libs/debian/changelog
Log:
release
Modified: trunk/packages/kde3libs/debian/changelog
===================================================================
--- trunk/packages/kde3libs/debian/changelog 2010-01-01 17:27:38 UTC (rev 16514)
+++ trunk/packages/kde3libs/debian/changelog 2010-01-01 22:11:59 UTC (rev 16515)
@@ -2,25 +2,25 @@
+++ Changes by Scott Kitterman (patches from Kubuntu):
- * SECURITY UPDATE: fix buffer overflow when converting string to float
+ * SECURITY UPDATE: fix buffer overflow when converting string to float.
- debian/patches/CVE-2009-0689.diff: adjust Kmax to handle large field
numbers in kjs/dtoa.cpp (Closes: #559265)
- CVE-2009-0689
- * SECURITY UPDATE: uncontrolled XMLHTTPRequest vulnerability
+ * SECURITY UPDATE: uncontrolled XMLHTTPRequest vulnerability.
- Ark and KMail performs insufficient validation which leads to
specially crafted archive files, using unknown MIME types, to be
rendered using a KHTML instance, this can trigger uncontrolled
- XMLHTTPRequests to remote sites
+ XMLHTTPRequests to remote sites.
- Add debian/patches/security_05_XMLHttpRequest_vulnerability.diff,
- restricts xmlhttprequest to http protocols only
+ restricts xmlhttprequest to http protocols only.
- http://www.kde.org/info/security/advisory-20091027-1.txt
- oCert: #2009-015 http://www.ocert.org/advisories/ocert-2009-015.html
- CVE n/a
- * Fix FTBFS with gcc 4.4
+ * Fix FTBFS with gcc 4.4.
- Add debian/patches/gcc4.4_ftbfs.diff (Closes: #556564)
- * Update Vcs* in debian/control for new location
+ * Update Vcs* in debian/control for new location.
- -- Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org> Thu, 31 Dec 2009 14:24:21 -0500
+ -- Debian Qt/KDE Maintainers <debian-qt-kde at lists.debian.org> Fri, 01 Jan 2010 23:08:28 +0100
kdelibs (4:3.5.10.dfsg.1-2.1) unstable; urgency=high
More information about the pkg-kde-commits
mailing list