lp:ubuntu/dapper-updates/evolution
- Get this branch:
- bzr branch lp:ubuntu/dapper-updates/evolution
Branch merges
Branch information
Recent revisions
- 27. By Jamie Strandboge
-
* SECURITY UPDATE: buffer overflow via timezone data in crafted ical
attachments
* debian/patches/ 99_01_CVE- 2008-1108. patch: adjust
calendar/gui/e-itip- control. c to use a GString rather than a fixed-size
buffer to build the HTML string to avoid the possibility of an overflow.
* SECURITY UPDATE: heap-based overflow via crafted ical attachments with
long DESCRIPTION
* debian/patches/ 99_02_CVE- 2008-1109. patch: adjust calendar/ gui/itip- utils.c
to not use a fixed-size buffer for parsing external data. Simplify the
logic to just split and rejoin the string with a different line separator.
* SECURITY UPDATE: remotely triggered denial of service
* debian/patches/ 99_03_bug535459 .patch: add sanity checks and don't use
component when checks fail in plugins/itip-formatter. c, gui/itip-utils.h,
gui/itip-utils.c, gui/e-itip-control. c
* References
CVE-2008-1108
CVE-2008-1109
http://bugzilla. gnome.org/ show_bug. cgi?id= 535459 - 26. By Kees Cook
-
* SECURITY UPDATE: code execution via format string in encrypted emails.
* Add 99_00_encryption_format_ string_ fix.patch: upstream fixes from
Srinivasa Ragavan.
* References
CVE-2008-0072 - 25. By Kees Cook
-
* SECURITY UPDATE: format string overflow via share memo categories.
* debian/patches/ 93_fix_ memo_format_ string. patch: protect category list.
* References
CVE-2007-1002 - 24. By Sebastien Bacher
-
* debian/
patches/ 20_correct_ gettext_ domain. patch:
- patch by Gary Coady <email address hidden>
- use correct gettext domain, fix some strings not translated to the UI
(Ubuntu: #44081) - 23. By Sebastien Bacher
-
* debian/
patches/ 11_window_ settings_ stored. patch:
- patch from CVS, fix the windows settings storage (Ubuntu: #34502)
* debian/patches/ 17_fix_ alarm_delay_ for_calendar. patch:
- patch update by Geoff Jacobsen <email address hidden>
- fix duplicate menu entry (Ubuntu: #42858) - 22. By Sebastien Bacher
-
* debian/
patches/ 17_fix_ alarm_delay_ for_calendar. patch:
- fix alarm being set to "-1" (Ubuntu: #33416)
* debian/patches/ 18_fix_ label_typo. patch:
- fix type to the "To Do" label (Ubuntu: #36744)
* debian/patches/ 19_fix_ account_ conditional. patch:
- fix account conditional (Ubuntu: #26854) - 21. By Daniel Holbach
-
* debian/
patches/ 12_fix_ icon_metaphors_ bug_339626. patch:
- use patch from http://bugzilla. gnome.org/ show_bug. cgi?id= 339626 to fix
Malone: #31034. - 20. By Sebastien Bacher
-
* debian/
patches/ 16_new_ address_ book_fix. patch:
- fix the new adressbooks validation (Ubuntu: #39086) - 19. By Sebastien Bacher
-
* debian/
patches/ 06_fix_ inline_ pgp_breaking_ charset. patch:
- patch from upstream, fix the inline pgp code breaking the charset
parameter (Ubuntu: #339052)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/lucid/evolution