------------------------------------------------------------ revno: 1866 [merge] committer: Rene Engelhard <r...@debian.org> branch nick: unstable timestamp: Fri 2010-02-12 12:44:46 +0100 message: merge 1:3.1.1-15+squeeze1 modified: changelog
=== modified file 'changelog' --- a/changelog 2010-02-12 00:54:24 +0000 +++ b/changelog 2010-02-12 11:44:46 +0000 @@ -20,6 +20,21 @@ -- Rene Engelhard <r...@debian.org> Thu, 11 Feb 2010 18:38:30 +0100 +openoffice.org (1:3.1.1-15+squeeze1) testing-security; urgency=high + + * ooo-build/patches/dev300/cws-impress178-xpm-and-gif-fix.diff: fix + "OpenOffice.org XPM Import Integer Overflow" (CVE-2009-2949) and + "OpenOffice.org GIF Import Heap Overflow" (CVE-2009-2950) + * ooo-build/patches/dev300/cws-hb32showstoppers3.diff: fix + "OOO sprmTDefTable issue" (CVE-2009-3301) and + "OOO sprmTSetBrc issue" (CVE-2009-3302) + * ooo-build/patches/dev300/libxmlsec-CVE-2009-0217.diff: fix + CVE-2009-0217 in the internal libxmlsec copy (just the nss part) + + * debian/changelog: mention vba macros fix in 1:3.1.1-11s changelog + + -- Rene Engelhard <r...@debian.org> Thu, 11 Feb 2010 13:59:54 +0100 + openoffice.org (1:3.1.1-15) unstable; urgency=medium * ooo-build: @@ -112,6 +127,7 @@ * ooo-build: - update (89b6191f14b42664b9c46395722ccecd562418c4) + - fixes vba macros not honouring security settings (CVE-2010-0136) - debian-opt.diff: build with -O2 instead of -Os. Fixes FTBFS on ppc * debian/control.in: