Paketçi: Eren Türkay (turkay.eren [at] gmail.com)
Sorumlusu olduğu paketler:
Paket güncellemeleri:
| enchant (1) First release. |
| aspell (4) Version bump and add patch to prevent aspell crash when met a 0-byte file. |
| tellico (5) Version bump |
| tellico (4) Version bump |
| tellico (3) Update |
| tellico (2) Update |
| tellico (1) First release. |
| ghostscript (30) - Add patch to fix memory corruption vulnerability. (CVE-2010-1628, #13137) |
| poppler-bindings (6) Add patch to fix CVE-2008-2950, uninitialized memory access. |
| poppler (24) Add patch to fix CVE-2008-2950, uninitialized memory access. |
| poppler (13) Create poppler-glib and poppler-qt packages |
| docbook-sgml4_5 (1) First release. |
| docbook-xml4_1 (1) First release. |
| docbook-sgml4_2 (1) First release. |
| docbook-xml4_2 (1) First release. |
| docbook-sgml4_4 (1) First release. |
| docbook-xsl (1) First release. |
| docbook-xml4_3 (1) First release. |
| docbook-xml4_1_2 (1) First release. |
| docbook-xml4_4 (1) First release. |
| xmlto (1) First release. |
| build-docbook-catalog (2) Add default /etc/xml/{docbook, catalog} which contains only header files. If there is no header, build-docbook-catalog fails. |
| build-docbook-catalog (1) First release. |
| docbook-xml4_5 (1) First release. |
| openjade (2) Fix actions.py and add sgml catalog |
| dvipng (4) Version bump to fix multiple array index errors in set.c (CVE-2010-0829, #13392) |
| lyx (15) Fully remove *.pyc and *.pyo, fix #6465 |
| texlive-core (5) Fix buffer overflow flaw by processing virtual font files. (CVE-2010-0824, #13395) |
| texlive-core (4) Fix integer overflows in dospecial.c (CVE-2010-{0739,1440}, #12781) |
| streamripper (4) Stable update to fix http://secunia.com/advisories/26406/ |
| mpd (3) Remove unnecessary code from service.py. We should not delete mpd.db upon starting service. |
| mpd (2) Version bump. |
| mpd (1) First release. |
| vorbis-tools (6) Fix buffer overflow in speex decoder as introduced in CVE-2008-1686. |
| mpg123 (8) New stable release |
| vlc (18) Fix WAV Processing Integer Overflow, CVE-2008-2430. |
| vlc (17) Version bump to fix GnuTLS, Libxml2 vulnerabilities. CVE-2008-1948, CVE-2008-1949, CVE-2008-1950, CVE-2007-6284 |
| vlc (15) Re fix buffer overflow in speex decoder, CVE-2008-1686. New version of VLC didn't include this patch. |
| vlc (12) Fix CVE-2008-1489 |
| vlc (11) Add patch to fix array indexing vulnerability while streaming RTSP, https://trac.videolan.org/vlc/ticket/1531 |
| vlc (10) Add patch to fix subtitle buffer overflow, https://trac.videolan.org/vlc/ticket/1526 |
| sdl-sound (6) Fix buffer overflow in speex decoder as introduced in CVE-2008-1686. |
| taglib (9) Version bump to 1.6.1 * Better detection of the audio codec of .oga files in FileRef. * Fixed saving of Vorbis comments to Ogg FLAC files. TagLib tried to include the Vorbis framing bit, which is only correct for Ogg Vorbis. * Public symbols now have explicitly set visibility to "default" on GCC. * Added missing exports for static ID3v1 functions. * Fixed a typo in taglib_c.pc * Fixed a failing test on ppc64. * Support for binary 'covr' atom in MP4 files. TagLib 1.6 treated them as text atoms, which corrupted them in some cases. * Fixed ID3v1-style genre to string conversion in MP4 files. |
| libmodplug (1) First release. |
| libvorbis (8) Fix CVE-2008-{1419, 1420, 1423} |
| xine-lib (45) Version bump. Includes bug-fixes and fix for CVE-2008-1686. |
| xine-lib (43) Fix array indexing vulnerability while parsing RTSP streams. http://secunia.com/secunia_research/2008-10/advisory/ |
| xine-lib (26) Enable modplug support. Fix #4945 |
| gd (7) Add patch to fix buffer overflow in _gdGetColors function, CVE-2009-3546 |
| DevIL (10) Add patch to fix dicom buffer overflow (CVE-2009-3994) |
| gst-plugins-good (8) Fix buffer overflow in speex decoder as introduced in CVE-2008-1686. |
| exiv2 (9) Fix floating point exception while converting nikon lens information for pretty printing. http://secunia.com/advisories/30519/ |
| speex (6) Fix speex header buffer overflow (CVE-2008-1686). |
| imlib2 (9) Add patch to fix CVE-2008-2426, http://secunia.com/advisories/30401/ |
| imagemagick (20) Version bump. |
| gimp (46) Add patch to fix integer overflow in PSD plugin, psd-load.c. (CVE-2009-3909, #11572) |
| gimp (45) * Add patch to fix integer overflow in bmp-read.c. (CVE-2009-1570, #11539) * Do not build help-browser which requires webkit |
| gimp (31) Version bump |
| blender (10) Fix CVE-2008-1103, insecure temporary file creation. |
| blender (9) Fix CVE-2008-1102. http://secunia.com/advisories/29818/ |
| lilypond (5) Correctly remove *.pyc files from package. |
| dvdauthor (4) Version bump |
| dvdauthor (3) Add missing dependency |
| dvdauthor (2) Dependency and path fix |
| dvdauthor (1) First Release |
| xorg-video-geode (4) Bump to new stable release |
| stellarium (7) Add missing sdl-mixer dependency and fix wrapper script. |
| stellarium (6) Add wrapper script to avoid initialization problems with tr_TR locale. |
| plotutils (3) Correctly disable static libraries, don't install libxmi library |
| bluez (24) Version bump |
| bluez (20) Version bump. |
| bluez (19) Version bump, it's a bit stable now. |
| bluez (18) Version bump |
| alsa-utils (29) Add alsa-info.sh script which gathers information about ALSA and pastes it to pastebin. |
| fuse (21) * Version bump to fix privilege escalation via symlink attack. (CVE-2009-3797, #12148) |
| gmailfs (5) Depend on libgmail (0.1.8) |
| gmailfs (4) Depend on new libgmail (0.1.6.2). Gmailfs can't mount filesystem with previous release of libgmail. |
| gparted (9) Fix device reload crash. |
| libgmail (5) Version bump |
| libgmail (4) Version bump |
| libfprint (3) Version bump |
| gnokii (7) Version bump. |
| gnokii (6) Version bump. |
| gnokii (4) Version bump. Bugfix release. |
| gnokii (3) Version bump. |
| gnokii (2) Add xgnokii desktop icon file. Fix bug #5609 |
| gnokii (1) First release. |
| libopensync-plugin-syncml (2) Disable HTTP support to avoid libsoup API breakage. |
| kvm (38) Fix CVE-2008-2004 in Qemu. |
| qemu (17) * Fix buffer overflow in usb-linux.c (CVE-2010-0297, #12221) * Fix VNC multiple use-after-frees and buffer overflows (CVE-2009-3616, #12222) |
| qemu (11) Fix CVE-2008-2004. |
| hal (49) Add memstick support patch. |
| cups (65) Add patch to fix lppasswd privilege escalation. (CVE-2010-0393, #12438) |
| emacs (18) Fix *.flc file autoloading and executing. CVE-2008-2142. |
| vim (30) Correctly detect failing diff. Symlink /bin/ex to /usr/bin/vim, gdb looks at /bin/ex. |
| curl (18) Add patch to fix vulnerability that is caused by excessive callback length. (#12439) |
| ncompress (7) Add patch to fix CVE-2010-0001, #13494 |
| openssl (29) - Fix double-free corruption in s3_clnt.c. (CVE-2010-2939, #13982) |
| openssl (28) - Fix invalid asn1 module definition for cms (CVE-2010-0742) |
| openssl (27) * Add patch to fix CVE-2010-0740, denial of service bug (#12513) |
| openssl (26) * Add patch to fix CVE-2009-4355, denial of service bug via vectors that trigger incorrect calls to the CRYPTO_free_all_ex_data function (#12014) |
| openssl (25) * Add patch to completely disable renegotiation. (CVE-2009-3555, #11515). See: http://extendedsubset.com/?p=8 * NOTE: This fixes 90% of the cases. If renegotiation is needed, we can not do anything about it. Now, TLS extension is being developed to solve the issue but it needs time. When extension is completed, we will keep us updated as well.. * NOTE #2: With this commit, apache will also be fixed. There is no need to patch mod_ssl. The patch to mod_ssl is needed with old version of openssl which does not reject renegotiating. |
| openssl (14) Version bump to fix CVE-2008-{0891, 1672}. http://www.openssl.org/news/secadv_20080528.txt |
| libxml2 (7) Version bump to fix UTF-8 decoding problem, CVE-2007-6284 |
| libxml2 (6) Version bump |
| glibc (44) Fix integer overflow in formatting functions, strfmon() integer overflow (CVE-2008-1391) (#11610) |
| gzip (11) * Add patches to fix CVE-2009-2624 and CVE-2010-0001, #12084 |
| libssh2 (3) Version bump |
| perl (29) - Update Safe.pm module to 2.27 which fixes CVE-2010-1974, #13080 |
| perl (20) Fix File::Path::Rmtree behaviour. Rmtree sets symlink target to 777. |
| openssh (21) Fix CVE-2008-1483. See: http://secunia.com/advisories/29522/ |
| cpio (9) Add patch to fix buffer overflow in rpatelib. (CVE-2010-0624, #12435) |
| audit (8) Version bump. This release fixes CVE-2008-1628 |
| PolicyKit (13) Fix CVE-2008-1658, https://bugs.freedesktop.org/show_bug.cgi?id=15295 |
| sqlite (21) * Add SQLITE_SECURE_DELETE compile-time option. Even if the data is deleted with sqlite query, the traces of the deleted data still remains in the file but cannot be seen with sqlite query. However, it can be seen by opening the file with a text editor. SQLITE_SECURE_DELETE overwrites written data with zeros. #12137 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=566326 |
| libxslt (8) Version bump, fixes CVE-2008-1767 |
| libxslt (6) Version bump |
| glib2 (26) Version bump. |
| glib2 (25) Version bump. |
| glib2 (24) Fix race in class initialization. |
| glib2 (23) Add glib2-gio-hide-inaccessible-mounts.patch. See: http://bugzilla.gnome.org/show_bug.cgi?id=526320 |
| glib2 (22) Version bump. |
| glib2 (21) Version bump. |
| glib2 (20) Version bump. |
| glib2 (18) Version bump. |
| glib2 (17) Version bump. |
| glib2 (15) Bugfix release |
| glib2 (14) Update to stable branch |
| tar (18) Add patch to fix heap based buffer overflow in rpatelib. (CVE-2010-0624, #12435) |
| tar (16) Version bump. Remove upstreamed upstreamed patches (gcc-4.3.patch, bug-6593.patch) |
| tar (13) Add manpages for tar and rmt |
| python (57) - Fix audioop: incorrect integer overflow checks (CVE-2010-{1634,2089}), #13265 - Fix untrusted python modules search path (CVE-2008-5983), #13336 |
| python (35) Fix buffer-overflow in PyString_FromStringAndSize() caused by signed integers. This also fixes security flaw in zlib module. See: http://bugs.python.org/issue2587 |
| dbus-glib (4) * Handle unknown object properties without asserting (freedesktop.org bug #16079) * Handle GetAll() property names correctly (freedesktop.org bug #16114) * Fix memory leak on dbus_g_return_error. * Pick some fixes from upstream. |
| libpcre (13) Add patch to fix CVE-2008-2371 |
| libpng (21) - Version bump to fix CVE-2010-0205, #12384 - Update aPNG patch according to 1.2.43 |
| libpng (15) Fix CVE-2008-1382 with backported patch from 1.2.27beta0. |
| intltool (8) Version bump |
| intltool (7) Version bump |
| intltool (6) Version bump to fix a lot of bugs |
| nasm (6) Version bump to fix ppscan off-by-one vulnerability. |
| nasm (5) Stable update |
| simgear (7) Add patch to fix CVE-2009-2625, expat issue. Simgear uses expat internally. |
| torcs (6) Add patch to fix CVE-2009-2625, expat issue. Torcs uses expat internally. #11022 |
| aria2 (28) * New stable release * Updated Polish, Catalan, French, Italian, Russian and Japanese translations. Thanks to all translators. * Fixed the bug that DHTAbstractNodeLookupTask never finishes if error occurred in DHTMessageDispatcherImpl::sendMessage(). * Fixed the bug that in Windows environment new blank line is inserted when console readout is updated. * Fixed the bug that when downloading more than one torrent with multiple ports in --listen-port, listening port is not reported properly to tracker for 2nd or later torrents. * Fixed typos in documentation. * Fixed the bug that Netrc::parse() cannot recognize comment line. * Fixed Metalink piping no longer works. * Fixed "--ftp-passwd" option ignored when user name embedded in URI. |
| aria2 (7) Stable update |
| youtube-dl (11) Version bump |
| flashplugin (25) Update to 10.0.45.2 to fix multiple vulnerabilities (CVE-2010-018{6,7}) #12309 |
| libnl (2) Version bump. |
| neon (4) Version bump, bugfix release. Also needed by BMPx media player. |
| librsync (2) Add patch for properly handling files larger than 4 GB. |
| libtasn1 (1) First release. |
| libwww (6) Add patch to fix CVE-2009-{2625,3560} expat issue. Libwww uses expat internally. #11023 |
| farsight2 (8) Stable bump |
| firefox (66) Add google linux search plugin |
| net-snmp (6) Add patch to fix CVE-2008-{0960, 2292} |
| wireshark (36) Version bump to fix multiple vulnerabilities (CVE-2010-{2284,2287}, #13922) |
| wireshark (35) Version bump to fix a number of security vulnerabilities. (#13474) - The SMB dissector could dereference a NULL pointer. - The ASN.1 BER dissector could overrun the stack. - The SMB PIPE dissector could dereference a NULL pointer on some platforms - The SigComp Universal Decompressor Virtual Machine could go into an infinite loop - The SigComp Universal Decompressor Virtual Machine could overrun a buffer |
| wireshark (34) Version bump to fix DOCSIS dissector crash. (CVE-2010-1455, #12879) |
| wireshark (33) - Version bump to fix buffer overflows in LWRES dissector (#12168) |
| wireshark (32) Version bump to fix 2 security vulnerabilies. (#11827) - SMB2 dissector crash (CVE-2009-4377) - Buffer overflow in SNA file parser (CVE-2009-4376) |
| aircrack-ng (9) Version bump. |
| aircrack-ng (8) Version bump. |
| aircrack-ng (7) Version bump. |
| aircrack-ng (6) Version bump. Bugfix release. |
| aircrack-ng (5) Version bump. |
| aircrack-ng (2) Version bump |
| aircrack-ng (1) First release. |
| spamassassin (21) - Fix FH_DATE_PAST_20XX so dates in 2010 aren't considered "grossly in the future - Fix actions.py to install config and data files correctly. |
| bogofilter (16) - Add patch to fix memory corruption in base64 decoding code (#13690) |
| konversation (15) Add media support for MPD. |
| konversation (10) Fix (C) line in the ctcp-version patch |
| konversation (9) Add pardus release into ctcp version request |
| pidgin (40) * Version bump to fix denial of service via X-Status message (CVE-2010-2528, #13948) |
| pidgin (39) * Version bump to fix msn emotion remote crash (CVE-2010-1634, #12942) * Lots of bug fixes. See http://developer.pidgin.im/wiki/ChangeLog for more detail. |
| pidgin (38) * Version bump to fix multiple vulnerabilities (CVE-2010-{0277,0420,0423}, #12323) |
| pidgin (37) * Version bump * Set default browser to "xdg-open" so that URLs can be opened with system-wide selected browser automatically. |
| pidgin (36) * Version bump, it includes various bug fixes * Add patch to fix local file disclosure vulnerability in slp. (CVE-2010-0013, #11942) * Add farsight2 build dependency. It is needed in build-time, too |
| pidgin (20) Version bump to fix CVE-2008-2927 |
| psi (3) Add patch for determining Pardus release. It is used as client name. |
| amsn (18) Version bump. |
| amsn (17) Fix login error due to the change in MSN protocol. |
| amsn (16) Add patch to use firefox for default browser and to set file-manager opener as xdg-open. |
| kvirc (13) Add patch to fix remote ctcp command execution. (CVE-2010-2785, #13901) |
| ntp (13) Add patch to fix mode7 package denial of service (CVE-2009-2563) |
| mit-kerberos (16) Add patch to fix kadmind crash due to referencing freed memory. (CVE-2010-0629, #12564) |
| apache (36) - Version bump to fix multiple issues. (CVE-2010-{0408,0425,0434}, #12387) |
| apache (25) Fix memory leak in SSL connections with zlib compression (CVE-2008-1678). https://issues.apache.org/bugzilla/show_bug.cgi?id=44975 |
| bind (25) Version bump to fix bogus NXDOMAIN response caused by NSEC/NSEC3 validation code. CVE-2010-0097, #12105 |
| bind (16) Take in CVE-2008-0122.patch |
| dhcp (22) Version bump to fix denial of service via zero-length client id. (CVE-2010-2156, #13516) |
| postgresql (26) - Update to fix multiple vulnerabilities. (CVE-2010-{1169,1170,1447,1975}, #13129) |
| postgresql (25) - Fix buffer overflow in substring(), (CVE-2010-0442, #12165) |
| mysql (48) - Update to new release to fix multiple vulnerabilities (CVE-2010-{1621,1626}), #12991) - Add patch for CVE-2008-7247 - Enable SSL support using OpenSSL |
| mysql (45) Version bump to fix multiple vulnerabilities (CVE-2009-{7242, 4019, 4028, 4030}, #11696) |
| mysql (34) Fix table privilege check bypass, CVE-2008-2079. See: http://secunia.com/advisories/30134/ |
| memcached (9) Version bump to fix denial of service via long line. (CVE-2010-1152, #12672) |
| memcached (2) Version bump. |
| vsftpd (12) Anon users can upload/download a file, can't create directory. Jail local users |
| samba (53) - Add patch to fix memory corruption vulnerability. (CVE-2010-2063, #13477) |
| samba (52) - Fix null pointer dereference which causes smbd to crash (CVE-2010-1642), #13175 - Do not crash whith cups printers when no [printers] share is defined |
| samba (51) - Add upstream patch to disable wide links when unix extensions are used. Anyone who has a writable smb share can browse files outside that share by using symlinks when wide links and unix extensions are used together. #12228 |
| samba (50) - mount.cifs: Add patch to restrict fstab corruption when special characters are used in directory names (a similar issue with CVE-2005-3531, #12143) - mount.cifs: Add patch to fix privilege escalation via symlink attack (CVE-2009-3297, #12143) |
| samba (33) Add patch to fix CVE-2008-1105 |
| kshutdown (8) Translate missing strings, fix #6268. |
| kaptan (21) Don't include *.pyc files in package. |
| service-manager (18) Add patch to enable double clicking on services. |
| icon-naming-utils (4) Change summary and download URL. |
| icon-naming-utils (3) Version bump |
| icon-naming-utils (2) Version bump |
| icon-naming-utils (1) First release. |
| shared-mime-info (6) Version bump. |
| notification-daemon (4) Add gtk2 and remove libnotify dependency |
| qt (72) * Webkit: Add patch to fix multiple security flaws while handling FTP directory listing (CVE-2009-3384, #11545) * Webkit: Add patch to fix MITM Cross-Origin Resource Sharing vulnerability (CVE-2009-2816, #11546) |
| newt (2) Version bump. |
| gtkhtml3 (6) Version bump. |
| gtkhtml3 (5) Version bump. Bugfix release and translation update |
| gtkhtml3 (4) Version bump. Bugfix release and translation update |
| gtkhtml3 (3) Version bump |
| gtkhtml3 (2) Version bump. Minor fixes, translations etc. |
| gtkhtml3 (1) First release. |
| QtCurve-Gtk2 (2) Version bump |
| QtCurve-Gtk2 (1) First release |
| gtkspell (1) First release. |
| cairomm (4) Stable update |
| libwnck (8) Version bump. |
| libwnck (7) Stable bump. |
| libwnck (6) Stable bump. |
| atk (10) Version bump |
| atk (8) Version bump |
| gtkmm (8) Version bump, bugfix release. |
| gtkmm (7) Version bump, bugfix release. |
| gtkmm (6) Version bump, bugfix release. |
| gtkmm (5) Version bump. |
| gtkmm (4) Version bump. |
| libglade (2) Version bump, clean actions.py and add COMAR script for updating xml schemas after installation. |
| gtksourceview (6) Version bump. |
| gtksourceview (5) Version bump. |
| gtksourceview (4) Version bump. |
| gtksourceview (3) Version bump. |
| pango (34) Fix memory corruption. (CVE-2010-0421, #12381) |
| pango (23) Version bump. |
| pango (22) Version bump. |
| pango (21) Version bump. |
| pango (20) Version bump, bugfix release. |
| pango (19) Version bump, bugfix release. |
| pango (18) Version bump, bugfix release. |
| pango (17) Update to stable branch. |
| pango (11) Stable update |
| gtk2 (35) Version bump. |
| gtk2 (34) Correctly fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=449379) |
| gtk2 (33) Version bump. |
| gtk2 (32) Add patch to fix wrong handling of printer hostname in printer dialog (https://bugzilla.redhat.com/show_bug.cgi?id=248245) |
| gtk2 (29) Version bump, bugfix release of 2.12 |
| gtk2 (27) Version bump. |
| gtk2 (26) Version bump. |
| gtk2 (25) Version bump. |
| gtk2 (23) Add patch for fixing crash when mousing over tooltips Gnome bug #460194 |
| gtk2 (22) Version bump to 2.12 branch. |
| gtk2 (21) Depend on new glib2, it should be compiled with it. |
| gtk2 (20) Add package handler for updating hicolor icon theme cache automatically. |
| gtk2 (18) Version bump. |
| gtk-engines (12) Version bump. |
| gtk-engines (11) Version bump. |
| gtk-engines (10) Stable update |
| gtk-engines (7) Stable update |
| gnome-doc-utils (7) Remove docbook-xml4_4 from runtime dependencies. It's only needed when building the package. |
| gnome-doc-utils (6) Version bump. |
| gnome-doc-utils (5) Version bump. |
| gnome-doc-utils (4) Version bump |
| gnome-doc-utils (3) Version bump |
| gnome-doc-utils (2) Version bump |
| gnome-doc-utils (1) First release |
| libgnomecanvasmm (1) First release. |
| gconf (6) Version bump. |
| gconf (5) Version bump. |
| gconf (4) Add PackageHandler class which has been splitted from libgnome package. It should stay here. |
| gconf (3) Micro release |
| gconf (2) Version bump |
| gconf (1) First release. |
| gnome-mime-data (2) Version bump. |
| gnome-mime-data (1) First release. |
| orbit2 (7) Version bump |
| orbit2 (6) Version bump |
| orbit2 (5) Version bump |
| orbit2 (4) Disable evil static libs, change packager |
| gnome-vfs (7) Add patches for setting firefox as default browser, ignoring /tmp as mountpoint and reducing warnings when can't connect to dbus. |
| gnome-vfs (6) Version bump. |
| gnome-vfs (5) Version bump. |
| gnome-vfs (4) Version bump. |
| gnome-vfs (3) Version bump. |
| gnome-vfs (2) Version bump |
| gnome-vfs (1) First release. |
| gnome-common (3) Version bump. |
| gnome-keyring (10) Version bump. |
| gnome-keyring (9) Version bump. |
| gnome-keyring (8) Version bump. |
| gnome-keyring (7) Version bump. |
| gnome-keyring (6) Version bump. |
| gnome-keyring (5) Version bump. |
| gnome-keyring (4) Version bump. |
| gnome-keyring (3) Version bump. |
| gnome-keyring (2) Version bump |
| gnome-keyring (1) First release. |
| gconfmm (3) Increased the version to match Gnome release. |
| gconfmm (2) Increased the version to match Gnome release. |
| yelp (1) First release. |
| glibmm (13) Version bump. Bugfix release. |
| glibmm (12) Version bump. Bugfix release. |
| glibmm (11) Version bump. Bugfix release. |
| glibmm (10) Version bump. |
| glibmm (9) Version bump. |
| glibmm (8) Version bump, bugfix release. |
| glibmm (7) Version bump, bugfix release. |
| glibmm (6) Version bump to stable. |
| glibmm (5) Version bump. |
| libgnome (7) Version bump |
| libgnome (6) Version bump |
| libgnome (5) Version bump |
| libgnome (4) Split package handlers (gconf, scrollkeeper), libgnome should not support all pakhandlers itself. Package handlers should be supported by related packages. |
| libgnome (3) Add PackageHandler for installing/uninstalling Gconf schemas, updating ScrollKeeper database and IconCache. |
| libgnome (2) Version bump |
| libgnome (1) First release. |
| libgnomecanvas (2) Version bump. |
| libgnomecanvas (1) First release. |
| libbonobo (6) Avoid sandbox violation, properly install the package. |
| libbonobo (5) Version bump |
| libbonobo (4) Version bump |
| libbonobo (3) Version bump |
| libbonobo (2) Version bump |
| libbonobo (1) First release. |
| librsvg (10) Version bump. |
| librsvg (7) Version bump. |
| librsvg (6) Version bump. |
| librsvg (5) Stable update. |
| libbonoboui (4) Version bump |
| libbonoboui (3) Version bump |
| libbonoboui (2) Version bump |
| libbonoboui (1) First release. |
| libgnomeui (6) Version bump |
| libgnomeui (5) Version bump |
| libgnomeui (4) Version bump |
| libgnomeui (3) Minor fix |
| libgnomeui (2) Version bump |
| libgnomeui (1) First release. |
| gnome-icon-theme (3) Version bump. |
| gnome-icon-theme (2) Version bump. |
| gnome-icon-theme (1) First release. |
| hicolor-icon-theme (1) First release. |
| clamav (36) Add patches to fix CVE-2010-{0098,1311}, bug #12637 |
| clamav (27) Version bump to fix various bugs and CVE-2008-3215 which was fixed incompletely. Disable dazuko support as dazuko can't be used with newer kernels. |
| clamav (25) Fix invalid memory access in petite. |
| clamav (24) Stable update to fix CVE-2008-(0314,1100,1833,1835,1836,1837 and 1387) |
| zsh (14) Version bump |
| sudo (26) - Version bump to fix privilege escalation. (CVE-2010-1163, #12829) |
| sudo (25) Add patch to fix privilege escalation bug in sudoedit. (CVE-2010-0426, #12352) |
| dstat (6) Version bump to fix CVE-2009-3894, #11909 |
| phpmyadmin (24) Version bump to fix several XSS vulnerabilities. (CVE-2010-3056, #14089) |
| phpmyadmin (21) Version bump to fix CVE-2009-{3696,3697} |
| phpmyadmin (13) Version bump. |
| phpmyadmin (12) Version bump to fix XSS on admin page. |
| phpmyadmin (10) Version bump |
| phpmyadmin (8) Stable update to fix serious security vulnerabilities. |
| systemtap (9) * Version bump to fix remote code execution via stap-server (CVE-2009-4273, #12074) |
| php (79) - Version bump to fix multiple vulnerabilities. (#13890) |
| php (78) - Add patch to fix unsafe unserialize() remote code execution (CVE-2010-2225, #13644) - Enable OpenSSL support - Add autoconf-2.65 patch to fix configure error when using diversion |
| php (76) * Version bump to fix 3 security vulnerabilities (#12363) - Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen) - Fixed a possible open_basedir/safe_mode bypass in session extension identified by Grzegorz Stachowiak. (Ilia) - Improved LCG entropy. (Rasmus, Samy Kamkar) |
| php (75) Version bump to fix 2 security vulnerabilities. (#11742) - Protection for $_SESSION from interrupt corruption and improved "session.save_path" check (CVE-2009-4143) - Insufficient input string validation of htmlspecialchars() (CVE-2009-4142) |
| php (74) Fix 3 important security vulnerabilities: - It's possible to cause DOS with requests containing 160.000+ file uploads, limit max_uploads to 20. (#11580) - Safe_mode bypass in tempnam() (CVE-2009-3557) - Open_basedir bypass in posix_mkfifo() (CVE-2009-2558) |
| php (73) Add patch to fix buffer overflow in _gdGetColors function, CVE-2009-3546 |
| php (63) Enable cgi/fastcgi support. |
| php (62) Edit libxml2 dependency. PHP should depend on the latest one. |
| php (61) Version bump and enable ctypes module. This release includes 5 security fixes: http://www.php.net/ChangeLog-5.php |
| php (27) Add postgresql-lib dependency |
| Smarty (4) Version bump. |
| mono (31) - Version bump to fix possible XSS vulnerability caused by incorrect default property of EnableViewStateMac (CVE-2010-1459), #13263 |
| ruby (24) Add patch to fix WEBrick XSS vulnerability (CVE-2010-0541, #13577) |
| ruby (22) Version bump to fix Webrick control characters vulnerability. (CVE-2009-4492, #12138) |
| ruby (19) Fix short name constans bug that breaks metasploit. LP bug #282302 |
| perl-Crypt-SSLeay (1) First release. |
| perl-Config-Tiny (1) First release. |
| perl-Config-Tiny (1) First release. |
| perl-libwww (13) Version bump to fix unexpected download filename vulnerability (CVE-2010-2253, 13441) |
| perl-XML-Simple (1) First release. |
| perl-ExtUtils-Depends (1) First release. |
| perl-ExtUtils-PkgConfig (1) First release. |
| perl-MIME-Base64 (3) Remove empty /usr/lib/perl5/5.10.1/i686-linux-thread-multi directory that conflicts with subversion |
| sun-java (24) * Make binaries in jdk/bin executable |
| sun-java (22) * Fix directory permission issue. The permission of /opt/sun-jre was 0777 due to the error in postInstall script. See #12209 for further information |
| pygobject (7) Version bump, bugfix release. |
| pygobject (6) Version bump, bugfix release. |
| pygobject (5) Version bump to stable. |
| 4suite (4) Add patch to fix CVE-2009-{2625,3560} expat issue. 4suite uses expat internally. #11019 |
| pyorbit (3) Version bump and remove *.pyo files in python dir. |
| pyorbit (2) Version bump. |
| xmpppy (1) First release. |
| PyXML (4) * Add patch to fix expat denial of service vulnerability (CVE-2009-2625), #11477 * Remove python dependency as it's in system.base |
| pygtk (5) Version bump to stable |
| Django (19) Fix denial of service vulnerability caused by regular expression module. |
| Django (13) Properly add Csrf protection middleware into default project settings.py. Csrf middleware should come before SessionMiddleware. |
| Django (12) Escape request.path before use as form's submission action in admin login page. http://www.djangoproject.com/weblog/2008/may/14/security/ |
| Django (11) Enable csrf protecting middleware by default, when user creates a project, csrf middleware will be automatically added. |
| Django (10) Fix possible ddos attack caused by i18n caching system. |
| Django (9) A patch for making django be aware of LOGIN_URL and LOGIN_REDIRECT_URL in settings.py |
| numpy (8) Version bump |
| gnome-python (7) Version bump and remove compiled python files.. |
| gnome-python (6) Version bump. |
| gnome-python (5) Version bump. |
| mysql-python (6) Fix format mismatch that can cause problems with 64-bit big-endian systems. |
| python-pygtksourceview (3) Version bump to new stable release. |
| python-pygtksourceview (2) Version bump. |
| python-pygtksourceview (1) First release. |
| pydns (1) First release. |
| libsoup (5) Version bump. |
| libsoup (4) Version bump. |
| libsoup (3) Version bump. |
| libsoup (2) Version bump, minor fixes |
| libsoup (1) First release. |
| xapian-core (3) Version bump. |
| json-glib (1) First release. |
| libconfuse (1) First release. |
| libnotify (4) Add missing notification-daemon dependency |
| libnice (7) Stable bump |
| libxklavier (3) Version bump. |
| libmcs (6) Version bump |
| loudmouth (4) Version bump. |
| loudmouth (3) Version bump. |
| loudmouth (2) Version bump. |
| loudmouth (1) First release. |
| ETL (2) Version bump. |
| subversion (52) Remove empty /usr/lib/perl5/5.10.1/i686-linux-thread-multi directory that conflicts with other perl modules |
| autogen (2) Version bump. |
| autogen (1) First release. |