From: Raspbian automatic forward porter <root@raspbian.org>
Date: Wed, 30 Apr 2025 06:06:53 +0000 (+0100)
Subject: Merge version 4:7.4.7-1+rpi1+deb12u5 and 4:7.4.7-1+deb12u8 to produce 4:7.4.7-1+rpi1... 
X-Git-Tag: raspbian/4%7.4.7-1+rpi1+deb12u8
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=4660a0df62bd087827546d9bf07fd908c99053cb;p=libreoffice.git

Merge version 4:7.4.7-1+rpi1+deb12u5 and 4:7.4.7-1+deb12u8 to produce 4:7.4.7-1+rpi1+deb12u8
---

70aa451889be917a7761177407340775f669a7b8
diff --cc debian/changelog
index 2ac4ce3009c,baec5225f96..91756f0bc15
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,15 -1,27 +1,40 @@@
- libreoffice (4:7.4.7-1+rpi1+deb12u5) bookworm-staging; urgency=medium
++libreoffice (4:7.4.7-1+rpi1+deb12u8) bookworm-staging; urgency=medium
 +
 +  [changes brought forward from 1:6.0.2-1+rpi2 by Peter Michael Green <plugwash@raspbian.org> at Fri, 27 Apr 2018 02:14:18 +0000]
 +  * Disable testsuite.
 +
 +  [changes introduced in 1:5.4.0-1+rpi1 by Peter Michael Green]
 +  * Disable pdfium, it fails to build for armv6
 +
 +  [changes introduced in 1:7.2.4-3+rpi1 by Peter Michael Green]
 +  * Use clang 11, newer versions cause armv7 contamination issues.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Wed, 18 Sep 2024 09:40:02 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Wed, 30 Apr 2025 06:06:51 +0000
++
+ libreoffice (4:7.4.7-1+deb12u8) bookworm-security; urgency=medium
+ 
+   * debian/patches/Improve-adbe.pkcs7.sha1-signature-verification.diff:
+     as name says (CVE-2025-2866)
+ 
+  -- Rene Engelhard <rene@debian.org>  Tue, 18 Mar 2025 18:53:50 +0100
+ 
+ libreoffice (4:7.4.7-1+deb12u7) bookworm-security; urgency=medium
+ 
+   * debian/patches/Filter-out-more-unwanted-command-URIs.diff: as name says;
+     fix for CVE-2025-1080 ("Macro URL arbitrary script execution via protocol
+     chaining" , similar as CVE-2022-3140)
+ 
+  -- Rene Engelhard <rene@debian.org>  Thu, 06 Feb 2025 18:18:37 +0100
+ 
+ libreoffice (4:7.4.7-1+deb12u6) bookworm-security; urgency=medium
+ 
+   * debian/patches/be-coservative-about-allowed-font-names.diff: as name says
+     (CVE-2024-12425)
+   * debian/patches/consider-VndSunStarExpand-an-exotic-protocol.diff
+     debian/patches/look-at-embedded-protocols-too.diff: add patches for
+     CVE-2024-12426 from upstream "co-22-05" branch
+ 
+  -- Rene Engelhard <rene@debian.org>  Sat, 18 Jan 2025 13:30:17 +0100
  
  libreoffice (4:7.4.7-1+deb12u5) bookworm-security; urgency=medium