projects / qt4-x11.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: b4e5560 7231023)
qt4-x11 (4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u2) jessie-security; urgency=medium
authorMike Gabriel <sunweaver@debian.org>
Tue, 7 May 2019 07:14:21 +0000 (08:14 +0100)
committerMike Gabriel <sunweaver@debian.org>
Tue, 7 May 2019 07:14:21 +0000 (08:14 +0100)
commit7eca24e3c638dc468d4918e6274226c575ddca0f
treece979f473742ae30a7e9691d168914aab42173betree | snapshot
parentb4e55608ecab20acc7f5c73004a20ed0e7771ff6commit | diff
parent7231023d21adfc0fc829332b6bf61cb96d436f77commit | diff
qt4-x11 (4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u2) jessie-security; urgency=medium

  * Non-maintainer upload by the LTS team.
  * CVE-2018-15518: Fix a double-free or corruption during parsing
    of a specially crafted illegal XML document.
  * CVE-2018-19870: A malformed GIF image might have caused a NULL
    pointer dereference in QGifHandler resulting in a segmentation fault.
  * CVE-2018-19873: QBmpHandler had a buffer overflow via BMP data.
  * CVE-2018-19871: TGA handler: check for out of range image size
    Make the decoder fail early to avoid spending time and memory on
    attempting to decode a corrupt image file.
  * CVE-2018-19869:  Fix crash when parsing malformed url reference, The
    parsing did not check for end of input.

[dgit import unpatched qt4-x11 4:4.8.6+git64-g5dc8b2b+dfsg-3+deb8u2]
195 files changed:
debian/README.source | | blob
debian/TODO.Debian | | blob
debian/changelog | | blob
debian/collection/qtdemo.qhc | | blob
debian/compat | | blob
debian/control | | blob
debian/copyright | | blob
debian/desktop/assistant-qt4.desktop | | blob
debian/desktop/assistant.png | | blob
debian/desktop/designer-qt4.desktop | | blob
debian/desktop/designer.png | | blob
debian/desktop/linguist-qt4.desktop | | blob
debian/desktop/linguist.png | | blob
debian/desktop/qtconfig-qt4.desktop | | blob
debian/desktop/qtconfig.png | | blob
debian/libqt4-declarative-folderlistmodel.install | | blob
debian/libqt4-declarative-gestures.install | | blob
debian/libqt4-declarative-particles.install | | blob
debian/libqt4-declarative-shaders.install | | blob
debian/libqt4-declarative.install | | blob
debian/libqt4-declarative.lintian-overrides | | blob
debian/libqt4-declarative.symbols | | blob
debian/libqt4-designer.install | | blob
debian/libqt4-designer.lintian-overrides | | blob
debian/libqt4-designer.symbols | | blob
debian/libqt4-dev-bin.install | | blob
debian/libqt4-dev-bin.links.in | | blob
debian/libqt4-dev-bin.manpages | | blob
debian/libqt4-dev-bin.preinst | | blob
debian/libqt4-dev.dirs | | blob
debian/libqt4-dev.install | | blob
debian/libqt4-dev.links | | blob
debian/libqt4-dev.lintian-overrides | | blob
debian/libqt4-help.install | | blob
debian/libqt4-help.lintian-overrides | | blob
debian/libqt4-help.symbols | | blob
debian/libqt4-network.install | | blob
debian/libqt4-network.lintian-overrides | | blob
debian/libqt4-network.symbols | | blob
debian/libqt4-opengl-dev.install | | blob
debian/libqt4-opengl.install | | blob
debian/libqt4-opengl.lintian-overrides | | blob
debian/libqt4-opengl.symbols | | blob
debian/libqt4-phonon.install | | blob
debian/libqt4-phonon.lintian-overrides | | blob
debian/libqt4-private-dev.install | | blob
debian/libqt4-qt3support.install | | blob
debian/libqt4-qt3support.lintian-overrides | | blob
debian/libqt4-qt3support.symbols | | blob
debian/libqt4-script.install | | blob
debian/libqt4-script.lintian-overrides | | blob
debian/libqt4-script.symbols | | blob
debian/libqt4-scripttools.install | | blob
debian/libqt4-scripttools.lintian-overrides | | blob
debian/libqt4-scripttools.symbols | | blob
debian/libqt4-sql-ibase.install | | blob
debian/libqt4-sql-mysql.install | | blob
debian/libqt4-sql-odbc.install | | blob
debian/libqt4-sql-psql.install | | blob
debian/libqt4-sql-sqlite.install | | blob
debian/libqt4-sql-sqlite2.install | | blob
debian/libqt4-sql-tds.install | | blob
debian/libqt4-sql.install | | blob
debian/libqt4-sql.lintian-overrides | | blob
debian/libqt4-sql.symbols | | blob
debian/libqt4-svg.install | | blob
debian/libqt4-svg.lintian-overrides | | blob
debian/libqt4-svg.symbols | | blob
debian/libqt4-test.install | | blob
debian/libqt4-test.lintian-overrides | | blob
debian/libqt4-test.symbols | | blob
debian/libqt4-webkit-dbg.lintian-overrides | | blob
debian/libqt4-xml.install | | blob
debian/libqt4-xml.lintian-overrides | | blob
debian/libqt4-xml.symbols | | blob
debian/libqt4-xmlpatterns.install | | blob
debian/libqt4-xmlpatterns.lintian-overrides | | blob
debian/libqt4-xmlpatterns.symbols | | blob
debian/libqtcore4.install | | blob
debian/libqtcore4.symbols | | blob
debian/libqtdbus4.install | | blob
debian/libqtdbus4.lintian-overrides | | blob
debian/libqtdbus4.symbols | | blob
debian/libqtgui4.install | | blob
debian/libqtgui4.symbols | | blob
debian/manpages/assistant-qt4.1 | | blob
debian/manpages/designer-qt4.1 | | blob
debian/manpages/linguist-qt4.1 | | blob
debian/manpages/lrelease-qt4.1 | | blob
debian/manpages/lupdate-qt4.1 | | blob
debian/manpages/moc-qt4.1 | | blob
debian/manpages/qdbus.1 | | blob
debian/manpages/qmake-qt4.1 | | blob
debian/manpages/qtconfig-qt4.1 | | blob
debian/patches/0195-compositing-properties.diff | | blob
debian/patches/0225-invalidate-tabbar-geometry-on-refresh.patch | | blob
debian/patches/02_syncqt_sane_timestamp_for_nonexisting_headers.diff | | blob
debian/patches/07_trust_dpkg-arch_over_uname-m.diff | | blob
debian/patches/08_configure_quilt_compat.diff | | blob
debian/patches/10_config_tests_fixes.diff | | blob
debian/patches/11_build_translations.diff | | blob
debian/patches/12_add_nostrip_for_debug_packages.diff | | blob
debian/patches/13_fix_prl_files_dont_link_entire_world.diff.disabled | | blob
debian/patches/15_fix_qmake_makefile_generation.diff | | blob
debian/patches/16_hide_std_symbols_on_qtwebkit.diff | | blob
debian/patches/18_enable_qt3support_qtwebkit_debug_info.diff | | blob
debian/patches/20_install_qvfb.diff | | blob
debian/patches/23_permit_plugins_built_with_future_qt.diff | | blob
debian/patches/30_webkit_unaligned_access.diff | | blob
debian/patches/40_alpha_ice.diff | | blob
debian/patches/41_disable_opengl_visibility.diff | | blob
debian/patches/50_kfreebsd_Q_OS.diff | | blob
debian/patches/51_kfreebsd_strnstr_build_fix.diff | | blob
debian/patches/70_hppa_ldcw_fix.diff | | blob
debian/patches/71_hppa_unaligned_access_fix_458133.diff | | blob
debian/patches/80_hurd_max_path.diff | | blob
debian/patches/92_armel_gcc43_valist_compat.diff | | blob
debian/patches/94_armv6_uname_entry.diff | | blob
debian/patches/96_webkit_no_gc_sections.diff | | blob
debian/patches/99_hppa_bug561203_decrease_failure_rate.diff | | blob
debian/patches/Add_support_for_QT_USE_DRAG_DISTANCE_env_var.patch | | blob
debian/patches/QTBUG-21900_Buttons_in_Qt_applications_not_clickable_when_run_under_gnome-shell.patch | | blob
debian/patches/QTBUG-25324_assistant_segfault_on_start_with_gcc_4.7.patch | | blob
debian/patches/aarch64_arm64_fix_arch_detection.patch | | blob
debian/patches/aarch64_arm64_mkspecs.patch | | blob
debian/patches/aarch64_arm64_qatomic_support.patch | | blob
debian/patches/add_missing_method_for_QBasicAtomicPointer_on_s390.patch | | blob
debian/patches/buildable_appchooser_states_demos.patch | | blob
debian/patches/cve-2015-0295.diff | | blob
debian/patches/cve_2018-15518.patch | | blob
debian/patches/cve_2018-19869.patch | | blob
debian/patches/cve_2018-19870.patch | | blob
debian/patches/cve_2018-19871.patch | | blob
debian/patches/cve_2018-19873.patch | | blob
debian/patches/dont_crash_on_broken_gif_images.patch | | blob
debian/patches/fix_libmng_test.patch | | blob
debian/patches/fixes_crash_in_bmp_and_ico_image_decoder.patch | | blob
debian/patches/fixes_crash_in_gif_image_decoder.patch | | blob
debian/patches/kfreebsd_monotonic_clock.diff | | blob
debian/patches/no_libicu_message.diff | | blob
debian/patches/parisc-atomic.patch | | blob
debian/patches/powerpc_designer_gstabs.diff | | blob
debian/patches/powerpcspe.diff | | blob
debian/patches/ppc64el_configure_support.patch | | blob
debian/patches/qt-everywhere-opensource-src-4.8.5-QTBUG-22829.patch | | blob
debian/patches/qt-multiarch-plugin-path-compat.diff | | blob
debian/patches/qtdebug_syslog.patch | | blob
debian/patches/qtdoc-build-offline-docs.patch | | blob
debian/patches/remove_addsense.patch | | blob
debian/patches/s390x_jscore.diff | | blob
debian/patches/series | | blob
debian/patches/sh.diff | | blob
debian/patches/xmlpatterns_stack_overflow_fix.diff | | blob
debian/qdbus.install | | blob
debian/qdbus.manpages | | blob
debian/qt4-default.install | | blob
debian/qt4-demos.install | | blob
debian/qt4-demos.lintian-overrides | | blob
debian/qt4-designer.install | | blob
debian/qt4-designer.links.in | | blob
debian/qt4-designer.manpages | | blob
debian/qt4-designer.menu | | blob
debian/qt4-designer.preinst | | blob
debian/qt4-dev-tools.install | | blob
debian/qt4-dev-tools.links.in | | blob
debian/qt4-dev-tools.manpages | | blob
debian/qt4-dev-tools.menu | | blob
debian/qt4-dev-tools.preinst | | blob
debian/qt4-doc-html.doc-base | | blob
debian/qt4-doc-html.install | | blob
debian/qt4-doc-html.links | | blob
debian/qt4-doc.install | | blob
debian/qt4-linguist-tools.install | | blob
debian/qt4-linguist-tools.links.in | | blob
debian/qt4-linguist-tools.manpages | | blob
debian/qt4-linguist-tools.preinst | | blob
debian/qt4-qmake.install | | blob
debian/qt4-qmake.links.in | | blob
debian/qt4-qmake.manpages | | blob
debian/qt4-qmake.preinst | | blob
debian/qt4-qmlviewer.install | | blob
debian/qt4-qtconfig.install | | blob
debian/qt4-qtconfig.links.in | | blob
debian/qt4-qtconfig.manpages | | blob
debian/qt4-qtconfig.menu | | blob
debian/qt4-qtconfig.preinst | | blob
debian/qtcore4-l10n.install | | blob
debian/quiltrc | | blob
debian/readdir-hppa-test.c | | blob
debian/rules | | blob
debian/source/format | | blob
debian/source/include-binaries | | blob
debian/source/lintian-overrides | | blob
debian/upstreamignore | | blob
debian/watch | | blob
Unnamed repository; edit this file 'description' to name the repository.