-
gimp (2.2.13-1ubuntu3.3) edgy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via DICOM, PNM, PSD, RAS, XBM
and XWD images.
* Add debian/patches/08_integer-overflows.patch: upstream fixes applied,
taken from Debian Etch 2.2.13-1etch4 updates.
* References
CVE-2006-4519
-- Kees Cook <email address hidden> Mon, 30 Jul 2007 18:09:40 -0700
-
gimp (2.2.13-1ubuntu3.2) edgy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via heap-based integer overflow.
* debian/patches/07_psd-integer-overflow.patch: upstream fixes.
* References
http://svn.gnome.org/viewcvs/gimp/branches/gimp-2-2/plug-ins/common/psd.c?r1=19314&r2=22798
CVE-2007-2949
-- Kees Cook <email address hidden> Wed, 04 Jul 2007 06:05:05 -0700
-
gimp (2.2.13-1ubuntu3.1) edgy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via RAS stack overflow.
* debian/patches/06_sunras_CVE-2007-2356.patch: upstream fixes via Debian.
* References
CVE-2007-2356
-- Kees Cook <email address hidden> Wed, 30 May 2007 13:56:42 -0700
-
gimp (2.2.13-1ubuntu3) edgy-updates; urgency=low
* Upload to edgy-updates, the gettext domain patch has been approved
by Simon Law
-- Sebastien Bacher <email address hidden> Wed, 29 Nov 2006 15:50:43 +0100
-
gimp (2.2.13-1ubuntu2) edgy-proposed; urgency=low
* debian/rules:
- fix Makefile to use for the gettext domain (Ubuntu: #67547)
-- Sebastien Bacher <email address hidden> Mon, 23 Oct 2006 10:42:27 +0200
-
gimp (2.2.13-1ubuntu1) edgy; urgency=low
* Sync with Debian
* New upstream version, UVF exception granted by Colin Watson
* debian/patches/10_dont_show_wizard.patch:
- don't use the setup wizard on first run
* debian/rules:
- add gettext domain to the .desktop
- run "intltool-update -p" for the different po directories of the package
-- Sebastien Bacher <email address hidden> Mon, 28 Aug 2006 16:54:33 +0200
-
gimp (2.2.11-3.1ubuntu1) edgy; urgency=low
* Resynchronized with Debian, only Ubuntu changes are:
- debian/patches/10_dont_show_wizard.patch: don't show setup wizard.
- debian/rules:
- added gettext Domain to .desktop file.
- run "intltool-update -p" for the different po directories of the
package.
gimp (2.2.11-3.1) unstable; urgency=low
* Non-maintainer upload.
* Apply fix from #377049 to fix buffer overflow, CVE-2006-3404.
(closes: #377049)
gimp (2.2.11-3) unstable; urgency=low
* Revert MMX/SSE fix, it didn't make a difference. Instead,
apply patch from CVS HEAD to disable MMX/SSE-accelerated burn function,
and replace it with generic C function.
Really closes: #374271
* Fix incorrect watch file
gimp (2.2.11-2) unstable; urgency=low
* Switch build system to cdbs + simple-patchsys
* Remove build-depends on gcc-3.4 (Closes: #371864)
* Update gimp-python package description
* Put gimp.desktop, gimp.keys, and gimp.applications in gimp package instead
of gimp-data, and make gimp-data Recommends: gimp (Closes: #363469)
* Add more Wilber samples to /usr/share/doc
* Re-add patch from Red Hat to fix MMX/SSE compile error
(Closes: #374271)
-- Daniel Holbach <email address hidden> Mon, 10 Jul 2006 13:32:45 +0200
-
gimp (2.2.11-1ubuntu3) dapper; urgency=low
* user-install-dialog is not run (patch taken from breezy)
-- Michael Vogt <email address hidden> Mon, 22 May 2006 20:54:58 +0200
