Format: 1.8 Date: Tue, 13 Jul 2010 01:44:03 +0200 Source: webkit Binary: libwebkit-1.0-2 libwebkit-dev libwebkit-1.0-common libwebkit-1.0-2-dbg gir1.0-webkit-1.0 Architecture: lpia Version: 1.2.2-1~kkwkt1 Distribution: karmic Urgency: low Maintainer: Ubuntu/lpia Build Daemon Changed-By: Stéphane Marguet Description: gir1.0-webkit-1.0 - GObject introspection data for the WebKit library libwebkit-1.0-2 - Web content engine library for Gtk+ libwebkit-1.0-2-dbg - Web content engine library for Gtk+ - Debugging symbols libwebkit-1.0-common - Web content engine library for Gtk+ - data files libwebkit-dev - Web content engine library for Gtk+ - Development files Closes: 586547 Changes: webkit (1.2.2-1~kkwkt1) karmic; urgency=low . [ Michael Gilbert ] * Turn direct source changes into a patch. * Fix cve-2010-1386: geolocation information disclosure. * Fix cve-2010-1392: possible code execution in html button logic. * Fix cve-2010-1405: possible code execution in vertical positioning logic. * Fix cve-2010-1407: iframe information disclosure. * Fix cve-2010-1416: svg cross-site information disclosure. * Fix cve-2010-1417: possible code execution in the css implementation (this is currently duplicated as cve-2010-1665 in mitre's cve database). * Fix cve-2010-1418: remote web script and/or html injection. * Fix cve-2010-1421: remote modification of clipboard contents. * Fix cve-2010-1422: keyboard focus hijack (this is duplicated as cve-2010-2295 in mitre's cve database). * Fix cve-2010-1501: add check to prevent cross-site request forgery (this may be duplicated as cve-2010-1767 in mitre's cve database). * Fix cve-2010-1664: possible code execution due to improper html5 media handling. * Fix cve-2010-1758: possible code execution in xml dom processor. * Fix cve-2010-1759: another possible code execution issue in the xml dom processor (this is duplicated as cve-2010-2300 in mitre's database). * Fix cve-2010-1760: user credential information disclosure. * Fix cve-2010-1761: possible code execution in frameview logic. * Fix cve-2010-1762: webscript and/or html injection using the textarea element (this is duplicated as cve-2010-2301 in mitre's database). * Fix cve-2010-1770: possible code execution due to improper handling of the ibm1147 character set. * Fix cve-2010-1771: possible code execution due to improper font handling (this is duplicated as cve-2010-2302 in mitre's database). * Fix cve-2010-1772: geolocation disconnectframe timer issue (this is duplicated as cve-2010-2303 in mitre's database). * Fix cve-2010-1773: integer overflow in alphabet conversion (this is duplicated as cve-2010-2304 and cve-2010-2441 in mitre's database) closes: #586547. * Fix cve-2010-1774: integer overflow in table layout handling (this is duplicated as cve-2010-2297 in mitre's database). . [ Gustavo Noronha Silva ] * New upstream release - adds a new symbol, fixed symbols file to include it * debian/patches/01-fix-bashism-in-build.patch: - removed, no longer needed Checksums-Sha1: eb3f93b45e5bc9deff17985baf699ca9dc869203 5090246 libwebkit-1.0-2_1.2.2-1~kkwkt1_lpia.deb 3ebf3d34eb90f867f8a6283c4efd469fa3da1caa 128294 libwebkit-dev_1.2.2-1~kkwkt1_lpia.deb d097d96cdf96cc0f9bb8f29537d7392d32d21315 138496362 libwebkit-1.0-2-dbg_1.2.2-1~kkwkt1_lpia.deb a70bbce7027fc826dcfa3546b6a0b5568cde3fdd 30088 gir1.0-webkit-1.0_1.2.2-1~kkwkt1_lpia.deb Checksums-Sha256: 2f1f3e6b88fc5f9576b0671a4ee8fef8b707d9ffd69321aca0a3223484c1c938 5090246 libwebkit-1.0-2_1.2.2-1~kkwkt1_lpia.deb 79ad658ff7e0ad43f123bdc0b107146d3ffd10308c13493de0eff3ddfb856e0f 128294 libwebkit-dev_1.2.2-1~kkwkt1_lpia.deb 608fe19c245503f59c0b185da644463727b7bb7315bd9441f78f00f0fdc55ca7 138496362 libwebkit-1.0-2-dbg_1.2.2-1~kkwkt1_lpia.deb f96bd9bdb14e59b1b1d3e5f134c31387a0eae3118273fcde66339e4b2a721d7b 30088 gir1.0-webkit-1.0_1.2.2-1~kkwkt1_lpia.deb Files: 4747e0cccafb4f5a3e838e01a881880c 5090246 libs optional libwebkit-1.0-2_1.2.2-1~kkwkt1_lpia.deb 3f8c351979d25864c40f1d1d571ca7b7 128294 libdevel extra libwebkit-dev_1.2.2-1~kkwkt1_lpia.deb 6da1f1580e53767c4779dc435dd9fcbe 138496362 debug extra libwebkit-1.0-2-dbg_1.2.2-1~kkwkt1_lpia.deb f4d9072268276876170af594902d4c38 30088 libs optional gir1.0-webkit-1.0_1.2.2-1~kkwkt1_lpia.deb