-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Mon, 7 Apr 2008 09:18:05 +0000 Source: libcairo Binary: libcairo-directfb2-udeb libcairo-directfb2-dev libcairo-directfb2 libcairo2-doc libcairo2 libcairo2-dev Architecture: source amd64 all Version: 1.2.4-4.1+etch1 Distribution: stable-security Urgency: high Maintainer: Dave Beckett <dajobe@debian.org> Changed-By: Devin Carraway <devin@debian.org> Description: libcairo-directfb2 - The Cairo 2D vector graphics library DirectFB build libcairo-directfb2-dev - Development files for Cairo graphics library DirectFB build libcairo-directfb2-udeb - The Cairo 2D vector graphics library DirectFB build (udeb) libcairo2 - The Cairo 2D vector graphics library libcairo2-dev - Development files for the Cairo 2D graphics library libcairo2-doc - Documentation for the Cairo Multi-platform 2D graphics library Changes: libcairo (1.2.4-4.1+etch1) stable-security; urgency=high . * Non-maintainer upload by the Security Team. * Backport two upstream security fixes for CVE-2007-5503, and a fix to a regression caused by one of them: - backported-malloc_int_overflow.patch: Fix widespread integer-overflow vulnerabilities in malloc() calls - backported-realloc_int_overflow.patch: likewise, but for realloc() calls - backported-zerosurface.patch: _get_bitmap_surface(): return a zero-sized surface when requested, rather than failing an alloc - upstream-malloc_divbyzero.patch: prevent divide-by-zero in alloc wrappers Files: 4bd02b09d90fb7dc966f9ad9e4653d74 894 libs optional libcairo_1.2.4-4.1+etch1.dsc 1222b2bfdf113e2c92f66b3389659f2d 2882781 libs optional libcairo_1.2.4.orig.tar.gz df191c1acebf8b74f4dc9e9684694827 29508 libs optional libcairo_1.2.4-4.1+etch1.diff.gz a05953964b5cf00d1821f9ca7eb48a50 471076 libdevel optional libcairo2-dev_1.2.4-4.1+etch1_amd64.deb 686f9dbff74537e61ed8ab677706ad3f 395362 libs optional libcairo2_1.2.4-4.1+etch1_amd64.deb 1265f2438a59a670a2002a1fe37ad83f 299594 libs optional libcairo2-doc_1.2.4-4.1+etch1_all.deb 8912904d7aa4d7bfda3443bde0dedd85 183728 debian-installer optional libcairo-directfb2-udeb_1.2.4-4.1+etch1_amd64.udeb 474cc11a61af2ff477ca1443f5601324 382068 libs optional libcairo-directfb2_1.2.4-4.1+etch1_amd64.deb 26fd8f9e706dd0f446eada08da6aa4e3 452564 libdevel optional libcairo-directfb2-dev_1.2.4-4.1+etch1_amd64.deb Package-Type: udeb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFH+zGjU5XKDemr/NIRApYtAJ437lDDGJ3O9BS6/MQAceJxzJ4DNwCfTCiw vgXycJsQVzW3E7NfxvrRGcQ= =dQxl -----END PGP SIGNATURE----- Accepted: libcairo-directfb2-dev_1.2.4-4.1+etch1_amd64.deb to pool/main/libc/libcairo/libcairo-directfb2-dev_1.2.4-4.1+etch1_amd64.deb libcairo-directfb2-udeb_1.2.4-4.1+etch1_amd64.udeb to pool/main/libc/libcairo/libcairo-directfb2-udeb_1.2.4-4.1+etch1_amd64.udeb libcairo-directfb2_1.2.4-4.1+etch1_amd64.deb to pool/main/libc/libcairo/libcairo-directfb2_1.2.4-4.1+etch1_amd64.deb libcairo2-dev_1.2.4-4.1+etch1_amd64.deb to pool/main/libc/libcairo/libcairo2-dev_1.2.4-4.1+etch1_amd64.deb libcairo2-doc_1.2.4-4.1+etch1_all.deb to pool/main/libc/libcairo/libcairo2-doc_1.2.4-4.1+etch1_all.deb libcairo2_1.2.4-4.1+etch1_amd64.deb to pool/main/libc/libcairo/libcairo2_1.2.4-4.1+etch1_amd64.deb libcairo_1.2.4-4.1+etch1.diff.gz to pool/main/libc/libcairo/libcairo_1.2.4-4.1+etch1.diff.gz libcairo_1.2.4-4.1+etch1.dsc to pool/main/libc/libcairo/libcairo_1.2.4-4.1+etch1.dsc
