-
gimp (2.6.12-1ubuntu1.4) precise-security; urgency=medium
* SECURITY UPDATE: issue in XCF channel properties
- debian/patches/CVE-2016-4994.patch: properly clear pointer in
app/xcf/xcf-load.c.
- CVE-2016-4994
-- Marc Deslauriers <email address hidden> Thu, 30 Jun 2016 12:46:16 -0400
-
gimp (2.6.12-1ubuntu1.3) precise-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via
huge color maps in xwd plugin
- debian/patches/CVE-2013-1913.patch: limit number of color map entries
in plug-ins/common/file-xwd.c.
- CVE-2013-1913
* SECURITY UPDATE: denial of service and possible code execution via
large number of color map entries in xwd plugin
- debian/patches/CVE-2013-1978.patch: validate number of color map
entries in plug-ins/common/file-xwd.c
- CVE-2013-1978
-- Marc Deslauriers <email address hidden> Fri, 06 Dec 2013 13:32:56 -0500
-
gimp (2.6.12-1ubuntu1.2) precise-security; urgency=low
* SECURITY UPDATE: code execution via malformed xwd files
- debian/patches/CVE-2012-5576.patch: validate sizes in
plug-ins/common/file-xwd.c.
- CVE-2012-5576
-- Marc Deslauriers <email address hidden> Thu, 06 Dec 2012 13:32:41 -0500
-
gimp (2.6.12-1ubuntu1.1) precise-security; urgency=low
* SECURITY UPDATE: denial of service via malformed .fit file header
- debian/patches/CVE-2012-3236.patch: check for valid XTENSION header
in plug-ins/file-fits/fits-io.c.
- CVE-2012-3236
* SECURITY UPDATE: denial of service and possible code execution via
crafted KiSS palette file
- debian/patches/CVE-2012-3403.patch: validate return codes and header
data in plug-ins/common/file-cel.c.
- CVE-2012-3403
* SECURITY UPDATE: denial of service and possible code execution via
crafted GIF image file
- debian/patches/CVE-2012-3481.patch: validate sizes, and prevent
overflows in plug-ins/common/file-gif-load.c.
- CVE-2012-3481
-- Marc Deslauriers <email address hidden> Wed, 05 Sep 2012 13:39:58 -0400
-
gimp (2.6.12-1ubuntu1) precise; urgency=low
* Merge from Debian unstable (LP: #925674). Remaining Changes:
- debian/patches/02_help-message.patch,
debian/patches/03_gimp.desktop.in.in.patch:
+ Update some strings for Ubuntu
- debian/patches/ghost-cursor.patch: fix Wacom tablet cursor events
- debian/control:
+ Update description
- debian/rules:
+ Set gettext domain and update translation templates
* Drop poppler patch as it's been applied upstream
- drop debian/patches/poppler0.18.patch
- update debian/patches/series
* fix LP: #680521 - Embed page setup dialog functionality in the print dialog
- add debian/patches/embed-page-setup-dialog.patch
- update debian/patches/series
gimp (2.6.12-1) unstable; urgency=low
* Imported Upstream version 2.6.12
* Add ${misc:Depends} variables to packages that were missing it
* Call default versioned python binary instead of just /usr/bin/python
gimp (2.6.11-8) unstable; urgency=low
* Really add the patch this time (Closes: #651387)
gimp (2.6.11-7) unstable; urgency=low
* poppler0.18.patch: Port file-pdf plugin to poppler 0.18 API. Patch taken
from Fedora via Ubuntu.
(Closes: #651387)
gimp (2.6.11-6) unstable; urgency=low
* libpng_compile.patch:
- Apply patch from upstream to fix compilation with libpng 1.5
(Closes: #649972)
-- Micah Gersten <email address hidden> Wed, 22 Feb 2012 23:47:53 -0600
-
gimp (2.6.11-5ubuntu3) precise; urgency=low
* debian/patches/ghost-cursor.patch:
- Backport patch from git trunk to fix Wacom tablet cursor events
by ignoring the history buffer by default. LP: #863154
-- Michael Terry <email address hidden> Thu, 19 Jan 2012 09:05:32 -0500
-
gimp (2.6.11-5ubuntu2) precise; urgency=low
* Add poppler0.18.patch: Port file-pdf plugin to poppler 0.18 API. Patch
taken from Fedora.
-- Martin Pitt <email address hidden> Tue, 06 Dec 2011 10:59:39 +0100
-
gimp (2.6.11-5ubuntu1) precise; urgency=low
* Merge from debian testing. Remaining changes:
- debian/patches/02_help-message.patch,
debian/patches/03_gimp.desktop.in.in.patch:
+ Update some strings for Ubuntu
- debian/control:
+ Update description
- debian/rules:
+ Set gettext domain and update translation templates
gimp (2.6.11-5) unstable; urgency=high
* pyslice.patch: upstream patch to fix slice filter crashing (Closes: #644025)
* Apply fix for GIF buffer overflow (CVE-2011-2896) (Closes: #643753)
gimp (2.6.11-4) unstable; urgency=low
* string-format.patch: fix from upstream for build failures with
-Werror=format-security, which is now the default with dpkg 1.16.1 and
cdbs
(Closes: #643388)
* Improve gimp package description (Closes: #588898)
* Move ghostscript to Recommends since it doesn't have many dependencies
* Update README.MIDI for gimp 2.6 (it's about time).
* Switch to using dh_python2 (Closes: #641579)
* fix_ftbfs4hurd.patch: fix compilation on GNU/Hurd until the real fix is in
place for gimp 2.8
(Closes: #601906)
* Change build-dependency from libwebkit-dev to libwebkitgtk-dev
(Closes: #635409)
* Use [linux-any] instead of hardcoded list of non-Linux architectures
(Closes: #634662)
* Bump standards-version and debhelper version
* Add xsltproc to build-depends so the menus will build again
gimp (2.6.11-3) unstable; urgency=low
* Fix buffer overflow in PSP reading code (CVE-2011-1782) (Closes: #629830)
-- Marc Deslauriers <email address hidden> Sat, 29 Oct 2011 14:05:47 -0400
-
gimp (2.6.11-2ubuntu4) oneiric; urgency=low
* SECURITY UPDATE: possible arbitrary code execution via malformed GIF
- debian/patches/09_CVE-2011-2896.patch: properly calculate lengths in
plug-ins/common/file-gif-load.c.
- CVE-2011-2896
-- Marc Deslauriers <email address hidden> Wed, 21 Sep 2011 09:59:51 -0400