Change logs for openexr source package in Hardy

openexr (1.2.2-4.4ubuntu1.1) hardy-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    multiple integer overflows
    - debian/patches/02-security-CVE-2009-1720.patch: make sure we don't
      overflow INT_MAX in IlmImf/{ImfPizCompressor,ImfPreviewImage,
      ImfPxr24Compressor,ImfRleCompressor,ImfZipCompressor}.cpp.
    - CVE-2009-1720
  * SECURITY UPDATE: denial of service and possible code execution via
    uninitialized pointer free in Imf::hufUncompress
    - debian/patches/03-security-CVE-2009-1721.patch: introduce
      hufClearDecTable function and use it to clear out hdec, add error
      checking to IlmImf/ImfHuf.cpp.
    - CVE-2009-1721
  * SECURITY UPDATE: denial of service and possible code execution via
    buffer overflow in the compression implementation
    - debian/patches/04-security-CVE-2009-1722.patch: validate maximum
      image and tile sizes in IlmImf/ImfHeader.cpp, IlmImf/ImfHeader.h,
      IlmImf/ImfPizCompressor.cpp.
    - CVE-2009-1722

 -- Marc Deslauriers <email address hidden>   Thu, 10 Sep 2009 08:24:15 -0400

openexr (1.2.2-4.4ubuntu1) hardy; urgency=low

  * Merge with Debian; remaining changes:
    - Fix build failure with g++-4.3.
    - Adjust preferred libgl-dev/libglu-dev alternatives for Ubuntu.
  * Link using -Bsymbolic-functions.

openexr (1.2.2-4.4) unstable; urgency=low

  * Non-maintainer upload.
  * Rename libopenexr2c2a to libopenexr2ldbl for the long double transition.
    (Closes: #430286)

 -- Matthias Klose <email address hidden>   Fri, 07 Dec 2007 20:59:05 +0000

openexr (1.2.2-4.3ubuntu2) gutsy; urgency=low

  * Fix build failure with g++-4.3.

 -- Matthias Klose <email address hidden>   Mon, 10 Sep 2007 13:09:28 +0000