-
poppler (0.12.0-0ubuntu2.3) karmic-security; urgency=low
* SECURITY UPDATE: possible arbitrary code execution via malformed PDF
- debian/patches/13_security_CVE-2010-3702.patch: properly initialize
parser in poppler/Gfx.cc.
- CVE-2010-3702
* SECURITY UPDATE: possible arbitrary code execution via malformed PDF
- debian/patches/14_security_CVE-2010-3703.patch: Properly initialize
stack in poppler/Function.cc.
- CVE-2010-3703
* SECURITY UPDATE: possible arbitrary code execution via malformed PDF
- debian/patches/15_security_CVE-2010-3704.patch: make sure code isn't
< 0 in fofi/FoFiType1.cc.
- CVE-2010-3704
-- Marc Deslauriers <email address hidden> Wed, 13 Oct 2010 16:02:02 -0400
-
poppler (0.12.0-0ubuntu2.2) karmic-proposed; urgency=low
* debian/patches/10_fix-a4-page-shift-on-brother-ps-printers.patch:
Fixed page shifts when printing on A4 paper with Brother PostScript
printers, by applying the changes suggested in Poppler upstream bug
18711, comment #30 (LP: #293832).
-- Till Kamppeter <email address hidden> Mon, 8 Mar 2010 17:11:23 +0100
-
poppler (0.12.0-0ubuntu2.1) karmic-security; urgency=low
* SECURITY UPDATE: denial of service or arbitrary code execution via
overflow in rowSize computation
- debian/patches/11_security_CVE-2009-360x.patch: make sure width value
is sane in splash/SplashBitmap.cc.
- CVE-2009-3603
* SECURITY UPDATE: denial of service or arbitrary code execution via
overflow in pixel buffer size calculation
- debian/patches/11_security_CVE-2009-360x.patch: make sure yp value
is sane in splash/Splash.cc, splash/SplashErrorCodes.h.
- CVE-2009-3604
* SECURITY UPDATE: denial of service or arbitrary code execution via
overflow in object stream handling
- debian/patches/11_security_CVE-2009-360x.patch: limit number of
nObjects in poppler/XRef.cc.
- CVE-2009-3608
* SECURITY UPDATE: denial of service or arbitrary code execution via
integer overflow in ImageStream::ImageStream
- debian/patches/11_security_CVE-2009-360x.patch: check size of width
and nComps in poppler/Stream.cc.
- CVE-2009-3609
* SECURITY UPDATE: denial of service or arbitrary code execution via
overflow in create_surface_from_thumbnail_data
- debian/patches/12_security_CVE-2009-3607.patch: eliminate g_malloc in
glib/poppler-page.cc.
- CVE-2009-3607
-- Marc Deslauriers <email address hidden> Fri, 23 Oct 2009 08:10:54 -0400
-
poppler (0.12.0-0ubuntu2) karmic; urgency=low
* No change rebuild to fix misbuilt binaries on armel.
-- Loic Minier <email address hidden> Wed, 21 Oct 2009 14:50:40 +0200
-
poppler (0.12.0-0ubuntu1) karmic; urgency=low
* New upstream version:
core:
- Fix printf format security warnings
- Improve rendering of radial shadings. Bug #20238
- Better fallback when there's a font type mismatch. Bug #17252
- Do not crash on attachments without data stream. Bug #10386
- Fix infinite loop in JBIG2Decoder. Bug #23025
build system:
- Minimizes pkg-config dependencies for Qt frontends
- Add automake 1.11 support
- Use the newest automake found and not the oldest
- Support AM_SILENT_RULES when using automake 1.11
utils:
- Add common options to pdftoabw
-- Sebastien Bacher <email address hidden> Wed, 09 Sep 2009 22:59:03 +0200
-
poppler (0.11.3-0ubuntu1) karmic; urgency=low
* New upstream version:
core:
- Optimization in the Cairo renderer for some fonts
- Do not apply masks when fill color space mode is csPattern in the Cairo renderer. Bug #22216
- Check for overflow when parsing integers. Bug #23078
- Do not save the font file twice for FreeType fonts in the Cairo renderer. Bug #20491
- Use current fill_opacity when drawing images in the Cairo renderer
- Fix alpha rendering in some files in the Splash renderer. Bug #22143, #22152
- Implement tiling patterns in the Cairo renderer
- When converting a cm matrix to PS write 4 significant digits for numbers < 1 not 4 decimals. Bug #23332
- Fix changing of locale, now poppler no longer changes LC_NUMERIC to "C"
- Return PDF version as two integers instead of as a double
Qt4:
- Addition of the Color Management API
- Small fix to documentation
- Fix backwards text search
utils:
- Add the -png flag to pdftoppm to output to PNG
-- Sebastien Bacher <email address hidden> Mon, 31 Aug 2009 14:19:45 +0200
-
poppler (0.11.2-0ubuntu2) karmic; urgency=low
* Reapply some revision dropped in the previous upload
-- Sebastien Bacher <email address hidden> Mon, 10 Aug 2009 16:21:34 +0200
-
poppler (0.11.2-0ubuntu1) karmic; urgency=low
* New upstream version:
core:
- Make DecryptStream return sane values for getPos(). Bug #19706
- Fix bug when printing pdf with multiple page sizes in duplex mode
- Initilize AnnotColot properly when the Array is not correct
- Fix crash on some files with forms. Bug #22485
- Fix crash in files with invalid embedded files. Bug #22551
- Improve FileSpec attribute parsing
- Cairo output device improvements. Bugs #10942, #18017, #14160
- Implement blend modes in cairo backend
- Handle fontType1COT fonts in CairoFontEngine
- Fix generation of PS for some files. Bug #18908
- Don't use byte_lookup table when color space doesn't support getLine methods. Bug #11027
- Fix rendering of PDF files with malformed patterns. Bug #22835
- Add the possibility of disabling font substitution in pdftops. Bug #23030
- Fix some radio buttons not being detected as such
glib:
- Improvements to the demo
Qt4:
- Improvements to the demo
build system:
- Use gtkbuilder rather than libglade for some tests
utils:
- Fix bug with noCrop parameter in pdftops
* debian/control:
- require new gtk for gtkbuilder and not libglade
-- Sebastien Bacher <email address hidden> Wed, 05 Aug 2009 17:59:57 +0100
-
poppler (0.11.0-0ubuntu4) karmic; urgency=low
* debian/patches/10_pdftops-multiple-page-size-support.patch: Made new
page-size-conserving PostScript output mode working together with Duples,
(LP: #382379).
-- Till Kamppeter <email address hidden> Mon, 22 Jun 2009 16:43:49 +0200
-
poppler (0.11.0-0ubuntu3) karmic; urgency=low
* debian/patches/15_poppler-ps-output-broken-binary-encoding-fix.patch:
Fixed bug in copying ASCII85-encoded binary data from the PDF input
file which produced broken PostScript (LP: #335397).
* debian/patches/10_pdftops-multiple-page-size-support.patch: Added new
output mode to the PostScript output device, so that the original page
sizes of PDF documents with multiple page sizes stay conserved
(LP: #382379).
-- Till Kamppeter <email address hidden> Thu, 4 Jun 2009 18:24:49 +0200
-
poppler (0.11.0-0ubuntu2) karmic; urgency=low
* debian/libpoppler-dev.install: Added missing header files to
libpoppler-dev package. (LP: #380187)
-- Till Kamppeter <email address hidden> Mon, 25 May 2009 09:49:49 +0200
-
poppler (0.11.0-0ubuntu1) karmic; urgency=low
* New upstream version:
core:
- Add initial support for color management
- Remove case-insensitive matching of filenames in PDFDoc constructor
- Fix extraction of some ActualText content
- More work on Annotations support
- Improve font rendering in Cairo output device
- Fix bug in cairo backend with nested masks
- Fix cairo luminosity smask rendering
- Add optionally text support to Cairo output device
- Add the possibility of setting the datadir on runtime
- Return an error code instead of a boolean when saving
- Make the font scanner more versatile
- Small opimization in documents that use PostScriptFunction transforms
- Minor optimization to Stream handling
- Fix some compile warnings
glib:
- Optional content support
- More work on Annotations support
- Improvements to the demo
- Documentation improvements
- Fix build when compiling with GTK_DISABLE_SINGLE_INCLUDES
Qt4:
- Support URI actions for Table Of Contents items
- Documentation improvements
- Improvements to the demo
- Add a FontIterator for iterating through the fonts of the document
utils:
- Allow the use of cropbox in pdftoppm
- Make pdftohtml output png images when the image stream is not a jpeg
- Make pdftotext accept cropping options like pdftoppm
- Support rendering non-square pixels in pdftoppm
build system:
- Require Cairo 1.8.4 for the Cairo output device
- Require CMake 2.6 when using the CMake build system
- Optionally require libpng for pdftohtml
- Optionally require libcms for color management
* debian/control:
- build-depends on libpng12-dev, liblcms1-dev and update cairo requirement
* debian/control, debian/rules:
- update for the new soname version
-- Sebastien Bacher <email address hidden> Wed, 13 May 2009 14:29:27 +0200
-
poppler (0.10.6-1ubuntu1) karmic; urgency=low
* Sync on Debian
* debian/control, debian/rules:
- don't use openjpeg it's in universe
-- Sebastien Bacher <email address hidden> Wed, 29 Apr 2009 15:41:23 +0200
-
poppler (0.10.5-1ubuntu2) jaunty; urgency=low
* SECURITY UPDATE: denial of service and possible code execution from
multiple integer overflows, buffer overflows, and other issues with
JBIG2 decoding. (LP: #361875)
- debian/patches/11_security_jbig2.patch: prevent integer overflow in
poppler/CairoOutputDev.cc and splash/SplashBitmap.cc, add overflow
checking, improve error handling, and fix other issues in
poppler/JBIG2Stream.*.
- CVE-2009-0146
- CVE-2009-0147
- CVE-2009-0166
- CVE-2009-0799
- CVE-2009-0800
- CVE-2009-1179
- CVE-2009-1180
- CVE-2009-1181
- CVE-2009-1182
- CVE-2009-1183
- CVE-2009-1187
- CVE-2009-1188
-- Marc Deslauriers <email address hidden> Thu, 16 Apr 2009 22:40:29 -0400
