-
icu (57.1-4ubuntu0.2) yakkety-security; urgency=medium
* SECURITY UPDATE: out-of-bounds write in common/utext.cpp
(LP: #1684298)
- debian/patches/CVE-2017-786x.patch: properly handle chunk size in
source/common/utext.cpp, added test to
source/test/intltest/utxttest.cpp, source/test/intltest/utxttest.h.
- CVE-2017-7867
- CVE-2017-7868
-- Marc Deslauriers <email address hidden> Tue, 02 May 2017 08:32:50 -0400
-
icu (57.1-4ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: stack-based buffer overflow via long locale string
- debian/patches/CVE-2016-7415.patch: use patch from 57.1-5.
- CVE-2016-7415
-- Marc Deslauriers <email address hidden> Fri, 10 Mar 2017 11:38:08 -0500
-
icu (57.1-4) unstable; urgency=high
* Backport upstream fix for CVE-2016-0494: integer signedness issue in
IndicRearrangementProcessor.
* Backport upstream fix for CVE-2016-6293: the uloc_acceptLanguageFromHTTP
function does not ensure that there is a '\0' character at the end of a
certain temporary array.
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 07 Sep 2016 22:17:44 +0000
-
icu (57.1-3) unstable; urgency=low
* Update libicu-dev dependency of libstdc++-dev (closes: #833938).
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 10 Aug 2016 16:57:09 +0000
-
icu (57.1-2) unstable; urgency=medium
[ Helmut Grohne <email address hidden> ]
* Implement cross build support again for debhelper packaging
(closes: #833416).
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 04 Aug 2016 04:57:45 +0000
-
icu (57.1-1.1) unstable; urgency=medium
* Non-maintainer upload.
* Upload to unstable.
* Update Standars-Version to 3.9.8.
-- Matthias Klose <email address hidden> Wed, 03 Aug 2016 20:49:39 +0200
-
icu (57.1-1) experimental; urgency=low
* New major upstream release (closes: #804026).
* Update package names due to soname bump.
* Add icu-devtools debug package.
* Drop CVE-2015-2632.patch as this release contains it.
* Update patches.
* Keep rebuildable.
* Update Standars-Version to 3.9.7 .
[ Helmut Grohne <email address hidden> ]
* Move icu-config to a M-A:no package (closes: #776821).
+ Move icu-config from icu-devtools to libicu-dev.
+ Declare relevant Breaks and Replaces.
+ Remove Multi-Arch:same from libicu-dev.
[ Guido Günther <email address hidden> ]
* Add build and smoke autopkgtest (closes: #813338).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 27 Mar 2016 10:46:16 +0000
-
icu (55.1-7) unstable; urgency=high
* Fix CVE-2015-2632 vulnerability.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 03 Jan 2016 16:44:55 +0100