Ubuntu
lcms package

Change log for lcms package in Ubuntu

145 of 45 results FirstPreviousNextLast
Published in trusty-updates
Published in trusty-security 
lcms (1.19.dfsg-1.2ubuntu5.1) trusty-security; urgency=medium

  * SECURITY UPDATE: Stack-based buffer overflow
    - fix in samples/icctrans.c, tifficc/tiffdiff.c.
    - CVE-2013-4276
  * SECURITY UPDATE: Integer overflow
    - fix in src/cmscgats.c.
    - CVE-2018-16435

 -- <email address hidden> (Leonidas S. Barbosa)  Wed, 19 Sep 2018 09:14:06 -0300
Published in precise-updates
Published in precise-security 
lcms (1.19.dfsg-1ubuntu3.1) precise-security; urgency=medium

  * SECURITY UPDATE: Stack-based buffer overflow
    - fix in samples/icctrans.c, tifficc/tiffdiff.c.
    - CVE-2013-4276
  * SECURITY UPDATE: Integer overflow
    - fix in src/cmscgats.c.
    - CVE-2018-16435

 -- <email address hidden> (Leonidas S. Barbosa)  Wed, 19 Sep 2018 09:03:02 -0300
Deleted in vivid-release (Reason: (From Debian) ROM; dead upstream, request of security tea...)
Obsolete in utopic-release
Published in trusty-release
Deleted in trusty-proposed (Reason: moved to release) 
lcms (1.19.dfsg-1.2ubuntu5) trusty; urgency=medium

  * Link samples/icctrans directly with -lm, since it uses floor() directly.
 -- Colin Watson <email address hidden>   Mon, 06 Jan 2014 14:38:07 +0000
Superseded in trusty-proposed 
lcms (1.19.dfsg-1.2ubuntu4) trusty; urgency=medium

  * Use dh-autoreconf to update libtool macros for new ports.  Drop manual
    config.{guess,sub} updates.
 -- Colin Watson <email address hidden>   Mon, 06 Jan 2014 13:54:13 +0000
Superseded in trusty-release
Superseded in trusty-release
Obsolete in saucy-release
Deleted in saucy-proposed (Reason: moved to release) 
lcms (1.19.dfsg-1.2ubuntu3) saucy; urgency=low

  * Update config.{guess,sub} for Aarch64.
 -- Matthias Klose <email address hidden>   Tue, 30 Jul 2013 13:43:15 +0200
Superseded in saucy-release
Obsolete in raring-release
Deleted in raring-proposed (Reason: moved to release) 
lcms (1.19.dfsg-1.2ubuntu2) raring; urgency=low

  * Really apply the control change this time
 -- Sebastien Bacher <email address hidden>   Tue, 06 Nov 2012 11:50:49 +0100
Superseded in raring-proposed 
lcms (1.19.dfsg-1.2ubuntu1) raring; urgency=low

  * Resynchronize on Debian, remaining changes
  * debian/control:
    - Build depend on versionless libtiff-dev instead of libtiff4-dev
  * src/cmslut.c: added NULL pointer check to prevent Ghostscript from
      crashing on Apple-generated EPS files. (lp #787067)
Superseded in raring-release
Obsolete in quantal-release 
lcms (1.19.dfsg-1.1ubuntu2) quantal; urgency=low

  * debian/control:
    - Build depend on versionless libtiff-dev instead of libtiff4-dev
 -- Michael Terry <email address hidden>   Tue, 17 Jul 2012 13:24:07 -0400
Superseded in quantal-release 
lcms (1.19.dfsg-1.1ubuntu1) quantal; urgency=low

  * Resynchronise with Debian.  Remaining changes:
    - src/cmslut.c: Added NULL pointer check to prevent Ghostscript from
      crashing on Apple-generated EPS files.
Superseded in quantal-release
Published in precise-release 
lcms (1.19.dfsg-1ubuntu3) precise; urgency=low

  * Rebuild for libjpeg8.
 -- Colin Watson <email address hidden>   Tue, 18 Oct 2011 17:20:18 +0100
Superseded in precise-release
Obsolete in oneiric-release 
lcms (1.19.dfsg-1ubuntu2) oneiric; urgency=low

  * src/cmslut.c: Added NULL pointer check to prevent Ghostscript from crashing
    on Apple-generated EPS files (LP: #787067).
 -- Till Kamppeter <email address hidden>   Thu,  6 Oct 2011 11:25:00 +0200
Superseded in oneiric-release 
lcms (1.19.dfsg-1ubuntu1) oneiric; urgency=low

  * Build for multiarch.  LP: #825931.
 -- Steve Langasek <email address hidden>   Sat, 13 Aug 2011 15:22:00 -0700
Superseded in oneiric-release 
lcms (1.19.dfsg-1) unstable; urgency=low

  * Upstream legacy update to 1.19 (Closes: #593314).
  * debian/rules:
    - Updated the binary package descriptions (Closes: #608007).
    - Switched rules from py_support to py_support2.
    - Removed patching rules.
  * debian/control:
    - Change build-depends on libjpeg62-dev to libjpeg-dev (Closes: #634136).
    - Removed deprecated python-support package from build depends.;
    - Updated standards version to 3.9.2.
    - Removed a depends on dpatch.
 -- Micah Gersten <email address hidden>   Wed,  27 Jul 2011 14:20:42 +0000

Available diffs

Obsolete in hardy-updates
Obsolete in hardy-security 
lcms (1.16-7ubuntu1.3) hardy-security; urgency=low

  * debian/patches/CVE-2009-0793.dpatch: SECURITY UPDATE: (LP: #700198)
    - Fix DoS via a crafted image that triggers execution of incorrect
      code for "transformations of monochrome profiles."
    - CVE-2009-0073
 -- Artur Rona <email address hidden>   Sat, 08 Jan 2011 04:50:57 +0100
Obsolete in karmic-updates
Obsolete in karmic-security 
lcms (1.18.dfsg-1ubuntu1.1) karmic-security; urgency=low

  * debian/patches/CVE-2009-0793.dpatch: SECURITY UPDATE: (LP: #700198)
    - Fix DoS via a crafted image that triggers execution of incorrect
      code for "transformations of monochrome profiles."
    - CVE-2009-0073
 -- Artur Rona <email address hidden>   Sat, 08 Jan 2011 04:42:32 +0100
Obsolete in lucid-updates
Obsolete in lucid-security 
lcms (1.18.dfsg-1ubuntu2.10.04.1) lucid-security; urgency=low

  * debian/patches/CVE-2009-0793.dpatch: SECURITY UPDATE: (LP: #700198)
    - Fix DoS via a crafted image that triggers execution of incorrect
      code for "transformations of monochrome profiles."
    - CVE-2009-0073
 -- Artur Rona <email address hidden>   Sat, 08 Jan 2011 04:39:19 +0100
Obsolete in maverick-updates
Obsolete in maverick-security 
lcms (1.18.dfsg-1ubuntu2.10.10.1) maverick-security; urgency=low

  * debian/patches/CVE-2009-0793.dpatch: SECURITY UPDATE: (LP: #700198)
    - Fix DoS via a crafted image that triggers execution of incorrect
      code for "transformations of monochrome profiles."
    - CVE-2009-0073
 -- Artur Rona <email address hidden>   Sat, 08 Jan 2011 04:23:13 +0100
Superseded in oneiric-release
Obsolete in natty-release 
lcms (1.18.dfsg-1.2ubuntu1) natty; urgency=low

  * Merge from debian unstable.  Remaining changes: (LP: #694364)
    - debian/control: Mention Little CMS in binary package names
      for searchability. (Closes: #608007)
    - debian/rules: Adjust for Python 2.6 transition.
  * This upload fixes security issue. (LP: #700198)
    - CVE-2009-0793
Superseded in natty-release 
lcms (1.18.dfsg-1ubuntu5) natty; urgency=low

  * Rebuild with python 2.7 as the python default.
 -- Matthias Klose <email address hidden>   Wed, 08 Dec 2010 15:05:20 +0000
Superseded in natty-release 
lcms (1.18.dfsg-1ubuntu4) natty; urgency=low

  * Rebuild to add support for python 2.7.
 -- Matthias Klose <email address hidden>   Fri, 03 Dec 2010 00:02:44 +0000
Superseded in natty-release 
lcms (1.18.dfsg-1ubuntu3) natty; urgency=low

  * Mention Little CMS in binary package names for searchability
 -- Jonathan Riddell <email address hidden>   Sun, 07 Nov 2010 15:11:50 +0000
Superseded in natty-release
Obsolete in maverick-release
Obsolete in lucid-release 
lcms (1.18.dfsg-1ubuntu2) lucid; urgency=low

  * rebuild rest of main for armel armv7/thumb2 optimization;
    UbuntuSpec:mobile-lucid-arm-gcc-v7-thumb2
 -- Alexander Sack <email address hidden>   Sat, 06 Mar 2010 13:30:15 +0100
Superseded in lucid-release
Obsolete in karmic-release 
lcms (1.18.dfsg-1ubuntu1) karmic; urgency=low

  * Merge from debian unstable (LP: #388987), remaining changes:
    - Adjust debian/rules to account for either site-packages or dist-packages
      for Python 2.6 transition
Superseded in karmic-release
Obsolete in jaunty-release 
lcms (1.18.dfsg-0ubuntu1) jaunty; urgency=low

  * New upstream release
  * Remove 11_security_CVE-2009-0581_0723_0733.dpatch, security
    issues fixed upstream

 -- Jonathan Riddell <email address hidden>   Fri, 03 Apr 2009 13:55:00 +0100
Superseded in jaunty-release 
lcms (1.17.dfsg-1ubuntu2) jaunty; urgency=low

  * SECURITY UPDATE: Denial of service via large memory leak
    - debian/patches/11_security_CVE-2009-0581_0723_0733.dpatch: properly
      free memory in src/cmsio1.c.
    - CVE-2009-0581
  * SECURITY UPDATE: Arbitrary code execution due to integer overflows
    - debian/patches/11_security_CVE-2009-0581_0723_0733.dpatch: add new
      calloc function in include/lcms.h and fix overflows in src/cmsgamma.c,
      src/cmsio0.c, src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0723
  * SECURITY UPDATE: Arbitrary code execution due to buffer overflow
    - debian/patches/11_security_CVE-2009-0581_0723_0733.dpatch: add
      _cmsValidateLUT() and use in src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0733

 -- Marc Deslauriers <email address hidden>   Fri, 20 Mar 2009 15:04:07 -0400
Obsolete in intrepid-updates
Obsolete in intrepid-security 
lcms (1.16-10ubuntu0.2) intrepid-security; urgency=low

  * SECURITY UPDATE: Denial of service via large memory leak
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: properly
      free memory in src/cmsio1.c.
    - CVE-2009-0581
  * SECURITY UPDATE: Arbitrary code execution due to integer overflows
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: add new
      calloc function in include/lcms.h and fix overflows in src/cmsgamma.c,
      src/cmsio0.c, src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0723
  * SECURITY UPDATE: Arbitrary code execution due to buffer overflow
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: add
      _cmsValidateLUT() and use in src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0733

 -- Marc Deslauriers <email address hidden>   Fri, 20 Mar 2009 19:21:35 -0400
Superseded in hardy-updates
Superseded in hardy-security 
lcms (1.16-7ubuntu1.2) hardy-security; urgency=low

  * SECURITY UPDATE: Denial of service via large memory leak
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: properly
      free memory in src/cmsio1.c.
    - CVE-2009-0581
  * SECURITY UPDATE: Arbitrary code execution due to integer overflows
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: add new
      calloc function in include/lcms.h and fix overflows in src/cmsgamma.c,
      src/cmsio0.c, src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0723
  * SECURITY UPDATE: Arbitrary code execution due to buffer overflow
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: add
      _cmsValidateLUT() and use in src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0733

 -- Marc Deslauriers <email address hidden>   Fri, 20 Mar 2009 19:49:19 -0400
Obsolete in gutsy-updates
Obsolete in gutsy-security 
lcms (1.16-5ubuntu3.2) gutsy-security; urgency=low

  * SECURITY UPDATE: Denial of service via large memory leak
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: properly
      free memory in src/cmsio1.c.
    - CVE-2009-0581
  * SECURITY UPDATE: Arbitrary code execution due to integer overflows
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: add new
      calloc function in include/lcms.h and fix overflows in src/cmsgamma.c,
      src/cmsio0.c, src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0723
  * SECURITY UPDATE: Arbitrary code execution due to buffer overflow
    - debian/patches/91_security_CVE-2009-0581_0723_0733.dpatch: add
      _cmsValidateLUT() and use in src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0733

 -- Marc Deslauriers <email address hidden>   Fri, 20 Mar 2009 19:51:19 -0400
Obsolete in dapper-updates
Obsolete in dapper-security 
lcms (1.13-1ubuntu0.2) dapper-security; urgency=low

  * SECURITY UPDATE: Denial of service via large memory leak
    - properly free memory in src/cmsio1.c.
    - CVE-2009-0581
  * SECURITY UPDATE: Arbitrary code execution due to integer overflows
    - add new alloc functions in include/lcms.h and fix overflows in
      src/cmsgamma.c, src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0723
  * SECURITY UPDATE: Arbitrary code execution due to buffer overflow
    - add validateNewLUT() and use in src/cmsio1.c and src/cmslut.c.
    - CVE-2009-0733

 -- Marc Deslauriers <email address hidden>   Sat, 21 Mar 2009 18:43:48 -0400
Superseded in jaunty-release 
lcms (1.17.dfsg-1ubuntu1) jaunty; urgency=low

  * Adjust debian/rules to account for either site-packages or dist-packages
    for Python 2.6 transition

 -- Scott Kitterman <email address hidden>   Sun, 08 Mar 2009 12:08:08 -0400

Available diffs

Superseded in intrepid-updates
Superseded in intrepid-security 
lcms (1.16-10ubuntu0.1) intrepid-security; urgency=low

  * SECURITY UPDATE: heap overflow via gamma entries.
    - 90_fix-CVE-2008-5317.dpatch: upstream fixes thanks to
      Devin Carraway.

 -- Kees Cook <email address hidden>   Wed, 10 Dec 2008 14:08:49 -0800
Superseded in hardy-updates
Superseded in hardy-security 
lcms (1.16-7ubuntu1.1) hardy-security; urgency=low

  * SECURITY UPDATE: heap overflow via gamma entries.
    - 90_fix-CVE-2008-5317.dpatch: upstream fixes thanks to
      Devin Carraway.

 -- Kees Cook <email address hidden>   Wed, 10 Dec 2008 14:15:10 -0800
Superseded in gutsy-updates
Superseded in gutsy-security 
lcms (1.16-5ubuntu3.1) gutsy-security; urgency=low

  * SECURITY UPDATE: heap overflow via gamma entries.
    - 90_fix-CVE-2008-5317.dpatch: upstream fixes thanks to
      Devin Carraway.

 -- Kees Cook <email address hidden>   Wed, 10 Dec 2008 14:17:37 -0800
Superseded in jaunty-release 
lcms (1.17.dfsg-1) unstable; urgency=low

  * Removed Adobe sRGB profiles from the testdbed and python/testbed
    directories (Closes: #491995).

Available diffs

Superseded in dapper-updates
Superseded in dapper-security 
lcms (1.13-1ubuntu0.1) dapper-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via malicious ICC tags.
    - src/{cmsio1,cmsgamma}.c: backported upstream fixes, thanks to
      Stanislav Brabec.
    - CVE-2007-2741

 -- Kees Cook <email address hidden>   Mon, 13 Oct 2008 18:20:30 -0700

Available diffs

Superseded in jaunty-release
Obsolete in intrepid-release 
lcms (1.16-10) unstable; urgency=high

  * debian/tmp/usr/lib/*.so usr/lib/ got lost from liblcms1-dev.install at
    some point of making 1.16-9. Add it back (Closes: #477035).

Available diffs

Superseded in intrepid-release
Obsolete in hardy-release 
lcms (1.16-7ubuntu1) hardy; urgency=low

  * Merge with Debian, remaining changes:
   - Fix libdir in /usr/lib/_lcms.la (another default python version).
   - Set Ubuntu maintainer address.
   - Fix compile, s/2.4/2.5/ for new python version
Superseded in hardy-release
Obsolete in gutsy-release 
lcms (1.16-5ubuntu3) gutsy; urgency=low

  [ Stefan Skotte ]
  * Fix compile, s/2.4/2.5/ for new python version

 -- Jonathan Riddell <email address hidden>   Wed, 08 Aug 2007 16:01:07 +0100
Superseded in gutsy-release 
lcms (1.16-5ubuntu2) gutsy; urgency=low

  * Regenerate swig files. LP: #127962.

 -- Matthias Klose <email address hidden>   Wed, 08 Aug 2007 07:02:01 +0000
Superseded in gutsy-release 
lcms (1.16-5ubuntu1) gutsy; urgency=low

  * Fix libdir in /usr/lib/_lcms.la (another default python version).
  * Set Ubuntu maintainer address.

 -- Matthias Klose <email address hidden>   Tue, 07 Aug 2007 16:40:53 +0000
Superseded in gutsy-release 
lcms (1.16-5) unstable; urgency=low

  * Upload into unstable since it's through the NEW queue.
  * debian/control: Added XS-Vcs-Svn and XS-Vcs-Browser headers.
Superseded in gutsy-release 
lcms (1.16-3) unstable; urgency=low

  * Revert liblcms1-dev file location from /usr/include/liblcms1 to
    /usr/include before people start complaining about FTBFS bugs in other
    packages. Temporarily remove python-liblcms to avoid NEW queue.
Superseded in gutsy-release
Obsolete in feisty-release
Obsolete in edgy-release 
lcms (1.15-1) unstable; urgency=low

  * New upstream release

 -- Ubuntu Archive Auto-Sync <email address hidden>   Thu,  15 Jun 2006 14:30:25 +0100
Superseded in edgy-release
Obsolete in dapper-release
Superseded in dapper-release
Obsolete in breezy-release
Obsolete in hoary-release 
lcms (1.13-1) unstable; urgency=low


  * New upstream release. (Closes: #270842, #232666, #263411)
  * Created Manpages for utilities in the liblcms-utils. (Closes: #244999)

 -- Shiju p. Nair <email address hidden>  Thu, 30 Sep 2004 09:34:23 +0300
Obsolete in warty-release 
lcms (1.12-2ubuntu1) warty; urgency=low


  * debian/control:
    - Build-Depends on libtiff4-dev.

 -- Sebastien Bacher <email address hidden>  Wed, 11 Aug 2004 12:42:53 +0200
145 of 45 results FirstPreviousNextLast