Public bug reported:
Please sync calibre 0.7.38+dfsg-2 (universe) from Debian unstable (main)
Changelog entries since current natty version 0.7.32+dfsg-1build1:
calibre (0.7.38+dfsg-2) unstable; urgency=low
* debian/copyright: Update according to current upstream COPYING. In
particular, the pdfreflow extension is now distributed under GPL-2+. This
permits linking against poppler (which is GPL 2 only).
(Closes: #609581)
* Add kfreebsd.patch: Fix building under GNU/kFreeBSD, thanks Petr Salinger!
(Closes: #609557)
-- Martin Pitt <[email protected]> Wed, 12 Jan 2011 22:25:48 -0600
calibre (0.7.38+dfsg-1) unstable; urgency=low
* New upstream release:
- Fix path traversal vulnerability in the content server (not enabled by
default). See http://bugs.calibre-ebook.com/ticket/7980,
http://www.waraxe.us/advisory-77.html. First half of #608822
* debian/control: Add new build dependency libicu-dev.
* Add 00upstream_content_server_xss.patch: Fix XSS vulnerability in the
content server, the other half of above issue. (Closes: #608822) Patch
cherrypicked from upstream bzr (r7531)
-- Martin Pitt <[email protected]> Mon, 10 Jan 2011 09:18:13 -0600
** Affects: calibre (Ubuntu)
Importance: Wishlist
Status: Confirmed
** Changed in: calibre (Ubuntu)
Importance: Undecided => Wishlist
** Changed in: calibre (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/703475
Title:
Sync calibre 0.7.38+dfsg-2 (universe) from Debian unstable (main)
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
