Change log for icu package in Ubuntu
| 1 → 75 of 161 results | First • Previous • Next • Last |
| Published in oracular-release |
| Published in noble-release |
| Deleted in noble-proposed (Reason: Moved to noble) |
icu (74.2-1ubuntu3) noble; urgency=medium * Replace obsolete python3-distutils dependency by just python3 -- Benjamin Drung <email address hidden> Mon, 08 Apr 2024 20:46:39 +0200
Available diffs
- diff from 74.2-1ubuntu1 to 74.2-1ubuntu3 (703 bytes)
- diff from 74.2-1ubuntu2 to 74.2-1ubuntu3 (589 bytes)
| Superseded in noble-proposed |
icu (74.2-1ubuntu2) noble; urgency=high * No change rebuild for 64-bit time_t and frame pointers. -- Julian Andres Klode <email address hidden> Mon, 08 Apr 2024 17:59:20 +0200
Available diffs
- diff from 74.2-1ubuntu1 to 74.2-1ubuntu2 (568 bytes)
icu (74.2-1ubuntu1) noble; urgency=medium * Merge with Debian; remaining changes:
Available diffs
- diff from 72.1-4ubuntu1 to 74.2-1ubuntu1 (2.1 MiB)
icu (72.1-4ubuntu1) noble; urgency=medium
* Merge with Debian unstable. Remaining changes:
- d/p/test-canonical-ids.patch: update TestCanonicalIDs to match latest
tzdata, including the de-aliasing due to pre-1970 data (LP #2016021)
- d/p/disable-precision-fpmath-tests-on-i386.patch: add a patch to disable
precision checking tests on i386 where an imprecise FPU hardware is used
* Drop changes:
- d/p/0001-ICU-22327-Update-tzdata-to-2023a.patch: already covered by
d/p/test-canonical-ids.patch, not previously applied and not needed
- d/p/tzdata-pre-1970-split.patch: not previously applied, covered by
d/p/test-canonical-ids.patch and no longer needed
- d/p/ICU-22198.patch: removed refresh changes, the refreshed patch
is the same as the original one
Available diffs
- diff from 72.1-3ubuntu3 to 72.1-4ubuntu1 (2.6 KiB)
| Superseded in noble-release |
| Published in mantic-release |
| Deleted in mantic-proposed (Reason: Moved to mantic) |
icu (72.1-3ubuntu3) mantic; urgency=medium
* d/p/disable-precision-fpmath-tests-on-i386.patch: add a patch to disable
precision checking tests on i386 where an imprecise FPU hardware is used
-- Zixing Liu <email address hidden> Thu, 14 Sep 2023 15:01:17 -0600
Available diffs
- diff from 72.1-3ubuntu2 to 72.1-3ubuntu3 (1.9 KiB)
| Superseded in mantic-release |
| Published in lunar-release |
| Deleted in lunar-proposed (Reason: Moved to lunar) |
icu (72.1-3ubuntu2) lunar; urgency=medium
* d/p/test-canonical-ids.patch: update TestCanonicalIDs to match latest
tzdata, including the de-aliasing due to pre-1970 data (LP: #2016021)
-- Simon Chopin <email address hidden> Wed, 12 Apr 2023 17:02:53 +0200
Available diffs
- diff from 72.1-3ubuntu1 to 72.1-3ubuntu2 (1.5 KiB)
icu (72.1-3ubuntu1) lunar; urgency=low
* Merge from Debian unstable. Remaining changes:
- test-canonical-ids.patch: Update TestCanonicalIDs values to match
new tzdata logic.
-- William 'jawn-smith' Wilson <email address hidden> Thu, 02 Feb 2023 15:25:16 -0500
Available diffs
- diff from 71.1-3ubuntu1 to 72.1-3ubuntu1 (1.2 MiB)
| Superseded in lunar-release |
| Obsolete in kinetic-release |
| Deleted in kinetic-proposed (Reason: Moved to kinetic) |
icu (71.1-3ubuntu1) kinetic; urgency=medium
* Update TestCanonicalIDs values to match the new tzdata logic.
This patch can be dropped when version icu v72 is synced to Ubuntu
-- William 'jawn-smith' Wilson <email address hidden> Wed, 28 Sep 2022 09:40:16 -0500
Available diffs
| Published in jammy-proposed |
icu (70.1-2ubuntu1) jammy; urgency=medium * Update timezone canonical IDs to resolve FTBFS (LP: #1976258) -- William 'jawn-smith' Wilson <email address hidden> Wed, 08 Jun 2022 15:15:31 -0500
Available diffs
icu (71.1-3) unstable; urgency=high * Backport fix for ICU-22005: fix int32 overflow in FormattedStringBuilder. -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 10 May 2022 18:51:00 +0200
Available diffs
- diff from 71.1-2 to 71.1-3 (2.9 KiB)
icu (71.1-2) unstable; urgency=medium
* Upload to Sid.
* Backport upstream fixes:
- ICU-21984 fix DateIntervalFormat.normalizeHourMetacharacters() ,
- ICU-21994 fix heap-buffer-overflow.
-- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 22 Apr 2022 20:12:11 +0200
Available diffs
- diff from 70.1-2 to 71.1-2 (151.4 KiB)
icu (66.1-2ubuntu2.1) focal-security; urgency=medium
* SECURITY UPDATE: Double Free
- debian/patches/CVE-2021-30535-prereq.patch: Fix invalid free when
using long locale name in Locale functions in
source/common/locid.cpp.
- debian/patches/CVE-2021-30535.patch: Fix edge cases with baseName
in setKeywordValue function in source/common/locid.cpp to
prevent double free and protect from heap corruption.
- CVE-2021-30535
* Fix failing tests causing build-time failures: (LP: #1951432)
- debian/patches/tzdata-2020f-tztest.patch: Add Time Zones data
related to tzdata version 2020f in TestCanonicalID function in
source/test/intltest/tztest.cpp to prevent tests from failing.
- debian/patches/tzdata-2021b-tests.patch: Fix TestCalendar function
in source/test/cintltst/ccaltst.c and TestGenericAPI in
source/test/intltest/tztest.cpp to accept tz.version with longer
string size to prevent tests from failing.
- debian/patches/skip-tztests.patch: Skip specific Time Zones tests in
TestAliasedNames and TestCanonicalID functions in
source/test/intltest/tztest.cpp. They don't match with data from
updated tzdata and needed to be skiped to prevent tests from failing.
* Fix autopkg tests:
- debian/tests/control: add libicu-dev and pkg-config dependencies in
smoke test, and build-essential dependency in build-test.
- debian/tests/smoke: change smoke test tool from icu-config (deprecated)
to pkg-config.
- debian/tests/ustring.cpp: add 'using namespace icu'.
-- Rodrigo Figueiredo Zaiden <email address hidden> Tue, 23 Nov 2021 11:50:52 -0300
Available diffs
icu (67.1-6ubuntu2.1) hirsute-security; urgency=medium
* SECURITY UPDATE: Double Free
- debian/patches/CVE-2021-30535-prereq.patch: Fix invalid free when
using long locale name in Locale functions in
source/common/locid.cpp.
- debian/patches/CVE-2021-30535.patch: Fix edge cases with baseName
in setKeywordValue function in source/common/locid.cpp to
prevent double free and protect from heap corruption.
- CVE-2021-30535
* fix failing tests causing build-time failure: (LP: #1951432)
- debian/patches/tzdata-2021b-tests.patch: Fix TestCalendar function
in source/test/cintltst/ccaltst.c and TestGenericAPI in
source/test/intltest/tztest.cpp to accept tz.version with longer
string size to prevent tests from failing.
- debian/patches/skip-tztests.patch: Skip specific Time Zones tests in
TestAliasedNames and TestCanonicalID functions in
source/test/intltest/tztest.cpp. They don't match with data from
updated tzdata and needed to be skiped to prevent tests from failing.
-- Rodrigo Figueiredo Zaiden <email address hidden> Thu, 18 Nov 2021 13:51:35 -0300
Available diffs
| Superseded in kinetic-release |
| Published in jammy-release |
| Deleted in jammy-proposed (Reason: Moved to jammy) |
icu (70.1-2) experimental; urgency=medium * Backport fix for ucptrietest golden diff. -- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 04 Nov 2021 07:01:38 +0100
Available diffs
icu (60.2-3ubuntu3.2) bionic-security; urgency=medium
* SECURITY UPDATE: Use After Free
- debian/patches/CVE-2020-21913.patch: Use LocalMemory for cmd to
prevent use after free in pkg_generateLibraryFile function in
source/tools/pkgdata/pkgdata.cpp.
- CVE-2020-21913
-- Rodrigo Figueiredo Zaiden <email address hidden> Tue, 19 Oct 2021 16:44:28 -0300
Available diffs
| Superseded in jammy-release |
| Obsolete in impish-release |
| Deleted in impish-proposed (Reason: Moved to impish) |
icu (67.1-7ubuntu1) impish; urgency=high * Merge from Debian unstable (LP: #1939728). Remaining changes: - update-tz-tests.patch. This fixes a test failure caused by Ubuntu's tzdata bundling icu-data, while Debian's does not
Available diffs
- diff from 67.1-6ubuntu2 to 67.1-7ubuntu1 (1.2 KiB)
| Superseded in impish-release |
| Obsolete in hirsute-release |
| Deleted in hirsute-proposed (Reason: Moved to hirsute) |
icu (67.1-6ubuntu2) hirsute; urgency=medium * No-change rebuild. -- Matthias Klose <email address hidden> Mon, 22 Mar 2021 22:31:21 +0100
Available diffs
- diff from 67.1-6ubuntu1 to 67.1-6ubuntu2 (306 bytes)
icu (67.1-6ubuntu1) hirsute; urgency=medium
* Adding some missing Australian CanonicalID links to the
tztest. This fixes a FTBFS triggered by TestCanonicalID
-- William 'jawn-smith' Wilson <email address hidden> Fri, 29 Jan 2021 15:39:01 -0600
Available diffs
icu (67.1-6) unstable; urgency=medium * Add pkg-config build dependency to build-test of autopkg tests. -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 13 Jan 2021 06:45:13 +0100
Available diffs
- diff from 67.1-5 to 67.1-6 (574 bytes)
icu (67.1-5) unstable; urgency=medium * Fix autopkg tests (closes: #973279, #976641). -- Laszlo Boszormenyi (GCS) <email address hidden> Mon, 07 Dec 2020 15:57:21 +0100
Available diffs
- diff from 67.1-4 to 67.1-5 (2.1 KiB)
| Superseded in hirsute-release |
| Obsolete in groovy-release |
| Deleted in groovy-proposed (Reason: moved to Release) |
icu (67.1-4) unstable; urgency=medium
* Backport upstream fix for missing empty string checks in
addLikelySubtags() and minimizeSubtags() (closes: #968609).
* Update watch file.
-- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 18 Aug 2020 17:39:36 +0200
Available diffs
icu (67.1-3ubuntu1) groovy; urgency=medium
* Merge from Debian, remaining changes:
- Build with -O2 on ppc64el again.
Available diffs
- diff from 66.1-2ubuntu3 to 67.1-3ubuntu1 (264.1 KiB)
icu (66.1-2ubuntu3) groovy; urgency=medium * Enable CET support. -- Dimitri John Ledkov <email address hidden> Thu, 25 Jun 2020 13:32:11 +0100
Available diffs
- diff from 66.1-2ubuntu2 to 66.1-2ubuntu3 (1.1 KiB)
| Superseded in groovy-release |
| Published in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
icu (66.1-2ubuntu2) focal; urgency=medium * Build with -O2 on ppc64el again. -- Matthias Klose <email address hidden> Tue, 17 Mar 2020 09:44:39 +0100
Available diffs
- diff from 65.1-1ubuntu2 to 66.1-2ubuntu2 (570.6 KiB)
- diff from 66.1-2ubuntu1 to 66.1-2ubuntu2 (510 bytes)
| Superseded in focal-proposed |
icu (66.1-2ubuntu1) focal; urgency=medium * Build with U_TIMEZONE_FILES_DIR defined to update tzdata post-release.
Available diffs
icu (63.2-2ubuntu0.1) eoan-security; urgency=medium
* SECURITY UPDATE: Integer Overflow
- debian/patches/CVE-2020-10531.patch: adds a int32_t overflow
check when calculate a newLen in doReplace function in
source/common/unistr.cpp and adding test to
source/test/intltest/ustrtest.*.
- CVE-2020-10531
-- <email address hidden> (Leonidas S. Barbosa) Mon, 16 Mar 2020 16:35:57 -0300
Available diffs
icu (60.2-3ubuntu3.1) bionic-security; urgency=medium
* SECURITY UPDATE: Integer Overflow
- debian/patches/CVE-2020-10531.patch: adds a int32_t overflow
check when calculate a newLen in doReplace function in
source/common/unistr.cpp and adding test to
source/test/intltest/ustrtest.*.
- CVE-2020-10531
-- <email address hidden> (Leonidas S. Barbosa) Mon, 16 Mar 2020 15:45:22 -0300
Available diffs
icu (55.1-7ubuntu0.5) xenial-security; urgency=medium
* SECURITY UPDATE: Integer Overflow
- debian/patches/CVE-2020-10531.patch: adds a int32_t overflow
check when calculate a newLen in doReplace function in
source/common/unistr.cpp.
- CVE-2020-10531
-- <email address hidden> (Leonidas S. Barbosa) Mon, 16 Mar 2020 15:23:15 -0300
Available diffs
icu (4.8.1.1-3ubuntu0.10) precise-security; urgency=medium
* SECURITY UPDATE: Integer Overflow
- debian/patches/CVE-2020-10531.patch: adds a int32_t overflow
check when calculate a newLen in doReplace function in
source/common/unistr.cpp.
- CVE-2020-10531
-- <email address hidden> (Leonidas S. Barbosa) Mon, 16 Mar 2020 14:05:37 -0300
Available diffs
| Superseded in focal-proposed |
icu (66.1~rc-1~ubuntu1) focal; urgency=medium * Upload to focal.
Available diffs
- diff from 65.1-1ubuntu2 to 66.1~rc-1~ubuntu1 (569.4 KiB)
icu (65.1-1ubuntu2) focal; urgency=medium * Remove the ppc64el work-around, no changes left. -- Matthias Klose <email address hidden> Sat, 22 Feb 2020 08:59:05 +0100
Available diffs
- diff from 63.2-2 (in Debian) to 65.1-1ubuntu2 (1.3 MiB)
- diff from 65.1-1ubuntu1 to 65.1-1ubuntu2 (499 bytes)
| Superseded in focal-proposed |
icu (65.1-1ubuntu1) focal; urgency=medium * Build using -O2 on ppc64el. -- Matthias Klose <email address hidden> Mon, 10 Feb 2020 20:36:28 +0100
Available diffs
- diff from 65.1-1 (in Debian) to 65.1-1ubuntu1 (498 bytes)
icu (65.1-1) experimental; urgency=medium * New major upstream release. -- Laszlo Boszormenyi (GCS) <email address hidden> Fri, 04 Oct 2019 00:19:19 +0000
| Superseded in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to release) |
icu (63.2-2) unstable; urgency=medium
* Revert ICU-20250 (ICU 63 UnicodeSet startup performance regression) to
fix ABI break (closes: #929474).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 08 Jun 2019 21:46:51 +0000
Available diffs
- diff from 63.2-1 to 63.2-2 (13.2 KiB)
icu (63.2-1) experimental; urgency=medium
* New upstream release with Japanese new era "Reiwa" support
(closes: #927933).
* Drop backported ICU-20246 and ICU-20208 fixes as no longer needed.
* Break Chromium versions that not built with this ICU release.
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 27 Apr 2019 06:44:54 +0000
Available diffs
- diff from 63.1-6 to 63.2-1 (23.9 KiB)
| Superseded in eoan-release |
| Obsolete in disco-release |
| Deleted in disco-proposed (Reason: moved to release) |
icu (63.1-6) unstable; urgency=medium * Build without icu-config (closes: #898820). * Update Standards-Version to 4.3.0 . -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 23 Jan 2019 16:51:20 +0000
Available diffs
- diff from 63.1-5 to 63.1-6 (1.1 KiB)
icu (63.1-5) unstable; urgency=medium * Build without Paragraph Layout API. * Remove libiculx63 package, no longer needed (closes: #898571). -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 02 Dec 2018 10:31:22 +0000
Available diffs
- diff from 63.1-4 to 63.1-5 (1.1 KiB)
icu (63.1-4) unstable; urgency=medium * Build with Paragraph Layout API. -- Laszlo Boszormenyi (GCS) <email address hidden> Tue, 13 Nov 2018 05:48:13 +0000
Available diffs
- diff from 60.2-6ubuntu1 (in Ubuntu) to 63.1-4 (1.9 MiB)
- diff from 63.1-3 to 63.1-4 (1.1 KiB)
icu (63.1-3) unstable; urgency=high
* Backport fix for ICU-20246: fixing another integer overflow in number
parsing - fixes CVE-2018-18928 .
* Backport fix for ICU-20208: uspoof.cpp function checkImpl() should be
static, regenerate urename.h .
* Build without Paragraph Layout API.
* Upload to Sid.
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 07 Nov 2018 18:15:15 +0000
| Superseded in disco-release |
| Obsolete in cosmic-release |
| Deleted in cosmic-proposed (Reason: moved to release) |
icu (60.2-6ubuntu1) cosmic; urgency=medium
* Merge with Debian; remaining changes:
- Add Breaks for openttd.
- Split Layout Engine shared library into a separate package, due to
heavy dependencies, and breaking circular dependency.
Available diffs
- diff from 60.2-3ubuntu3 to 60.2-6ubuntu1 (1.7 KiB)
icu (52.1-3ubuntu0.8) trusty-security; urgency=medium
* SECURITY UPDATE: integer overflow in Persian Cal
- debian/patches/CVE-2017-15422.patch: use int64_t math for one
operation to avoid overflow, add tests in source/i18n/gregoimp.cpp,
source/i18n/gregoimp.h, source/i18n/persncal.cpp,
source/test/intltest/calregts.cpp, source/test/intltest/calregts.h.
- CVE-2017-15422
-- Marc Deslauriers <email address hidden> Tue, 27 Mar 2018 11:22:56 -0400
Available diffs
icu (57.1-6ubuntu0.3) artful-security; urgency=medium
* SECURITY UPDATE: integer overflow in Persian Cal
- debian/patches/CVE-2017-15422.patch: use int64_t math for one
operation to avoid overflow, add tests in source/i18n/gregoimp.cpp,
source/i18n/gregoimp.h, source/i18n/persncal.cpp,
source/test/intltest/calregts.cpp, source/test/intltest/calregts.h.
- CVE-2017-15422
-- Marc Deslauriers <email address hidden> Tue, 27 Mar 2018 10:38:48 -0400
Available diffs
icu (55.1-7ubuntu0.4) xenial-security; urgency=medium
* SECURITY UPDATE: integer overflow in Persian Cal
- debian/patches/CVE-2017-15422.patch: use int64_t math for one
operation to avoid overflow, add tests in source/i18n/gregoimp.cpp,
source/i18n/gregoimp.h, source/i18n/persncal.cpp,
source/test/intltest/calregts.cpp, source/test/intltest/calregts.h.
- CVE-2017-15422
-- Marc Deslauriers <email address hidden> Tue, 27 Mar 2018 11:09:09 -0400
Available diffs
| Superseded in cosmic-release |
| Published in bionic-release |
| Deleted in bionic-proposed (Reason: moved to release) |
icu (60.2-3ubuntu3) bionic; urgency=medium * Correct Breaks for openttd. -- Dimitri John Ledkov <email address hidden> Thu, 22 Mar 2018 19:42:43 +0000
Available diffs
- diff from 60.2-3ubuntu1 to 60.2-3ubuntu3 (1.2 KiB)
- diff from 60.2-3ubuntu2 to 60.2-3ubuntu3 (584 bytes)
| Superseded in bionic-proposed |
icu (60.2-3ubuntu2) bionic; urgency=medium
* Split Layout Engine shared library into a separate package, due to
heavy dependencies, and breaking circular dependency.
-- Dimitri John Ledkov <email address hidden> Wed, 21 Mar 2018 13:25:27 +0000
Available diffs
- diff from 60.2-3ubuntu1 to 60.2-3ubuntu2 (1.2 KiB)
icu (60.2-3ubuntu1) bionic; urgency=medium
* Merge with Debian; remaining changes:
- libicu-dev: Ship the icu-config binary again and remove M-A: same.
Available diffs
- diff from 60.2-1ubuntu1 to 60.2-3ubuntu1 (4.3 KiB)
icu (60.2-1ubuntu1) bionic; urgency=medium
* Merge with Debian; remaining changes:
- libicu-dev: Ship the icu-config binary again and remove M-A: same.
Available diffs
- diff from 60.1-1ubuntu2 to 60.2-1ubuntu1 (20.2 KiB)
icu (60.1-1ubuntu2) bionic; urgency=medium
* Revert the upstream fix for #13104, requiring C++11 for some header files.
The archive still has packages not ready for C++11, e.g. firebird3.0.
-- Matthias Klose <email address hidden> Wed, 08 Nov 2017 11:34:56 +0100
Available diffs
- diff from 59.1-3ubuntu1 to 60.1-1ubuntu2 (1.0 MiB)
- diff from 60.1-1ubuntu1 to 60.1-1ubuntu2 (3.2 KiB)
| Superseded in bionic-proposed |
icu (60.1-1ubuntu1) bionic; urgency=medium
* Merge with Debian; remaining changes:
- libicu-dev: Ship the icu-config binary again and remove M-A: same.
Available diffs
- diff from 59.1-3ubuntu1 to 60.1-1ubuntu1 (1.0 MiB)
icu (59.1-3ubuntu1) bionic; urgency=medium * libicu-dev: Ship the icu-config binary again and remove M-A: same. -- Matthias Klose <email address hidden> Thu, 26 Oct 2017 09:46:04 +0200
Available diffs
- diff from 57.1-6 (in Debian) to 59.1-3ubuntu1 (2.0 MiB)
- diff from 59.1-3 (in Debian) to 59.1-3ubuntu1 (575 bytes)
icu (57.1-6ubuntu0.2) artful-security; urgency=medium
* SECURITY UPDATE: double free
- debian/patches/CVE-2017-14952.patch: fixes double free in
createMetaZoneMappings() source/i18n/zonemeta.cpp.
- CVE-2017-14952
* Disable self-test failure on x86 arch due to French locale
-- <email address hidden> (Leonidas S. Barbosa) Mon, 23 Oct 2017 11:38:17 -0300
Available diffs
- diff from 57.1-6ubuntu0.1 to 57.1-6ubuntu0.2 (693 bytes)
icu (59.1-3) experimental; urgency=medium
* Refresh packaging:
- drop outdated -dbg packages,
- drop outdated NEWS file,
- build with all hardening.
* Fix spelling errors in upstream binaries and manpages.
[ Matthias Klose <email address hidden> ]
* Fix build with glibc-2.26 (closes: #879233).
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 19 Oct 2017 21:50:55 +0000
Available diffs
icu (55.1-7ubuntu0.3) xenial-security; urgency=medium
* SECURITY UPDATE: double free
- debian/patches/CVE-2017-14952.patch: fixes double free in
createMetaZoneMappings() source/i18n/zonemeta.cpp.
- CVE-2017-14952
-- <email address hidden> (Leonidas S. Barbosa) Tue, 17 Oct 2017 09:14:31 -0300
Available diffs
icu (52.1-3ubuntu0.7) trusty-security; urgency=medium
* SECURITY UPDATE: double free
- debian/patches/CVE-2017-14952.patch: fixes double free in
createMetaZoneMappings() source/i18n/zonemeta.cpp.
- CVE-2017-14952
-- <email address hidden> (Leonidas S. Barbosa) Tue, 17 Oct 2017 09:13:32 -0300
Available diffs
icu (57.1-5ubuntu0.2) zesty-security; urgency=medium
* SECURITY UPDATE: double free
- debian/patches/CVE-2017-14952.patch: fixes double free in
createMetaZoneMappings() source/i18n/zonemeta.cpp.
- CVE-2017-14952
-- <email address hidden> (Leonidas S. Barbosa) Tue, 17 Oct 2017 09:15:41 -0300
Available diffs
icu (52.1-3ubuntu0.6) trusty-security; urgency=medium
* SECURITY UPDATE: out-of-bounds write in common/utext.cpp
(LP: #1684298)
- debian/patches/CVE-2017-786x.patch: properly handle chunk size in
source/common/utext.cpp, added test to
source/test/intltest/utxttest.cpp, source/test/intltest/utxttest.h.
- CVE-2017-7867
- CVE-2017-7868
-- Marc Deslauriers <email address hidden> Tue, 02 May 2017 09:43:38 -0400
Available diffs
icu (57.1-5ubuntu0.1) zesty-security; urgency=medium
* SECURITY UPDATE: out-of-bounds write in common/utext.cpp
(LP: #1684298)
- debian/patches/CVE-2017-786x.patch: properly handle chunk size in
source/common/utext.cpp, added test to
source/test/intltest/utxttest.cpp, source/test/intltest/utxttest.h.
- CVE-2017-7867
- CVE-2017-7868
-- Marc Deslauriers <email address hidden> Tue, 02 May 2017 08:14:14 -0400
Available diffs
icu (57.1-4ubuntu0.2) yakkety-security; urgency=medium
* SECURITY UPDATE: out-of-bounds write in common/utext.cpp
(LP: #1684298)
- debian/patches/CVE-2017-786x.patch: properly handle chunk size in
source/common/utext.cpp, added test to
source/test/intltest/utxttest.cpp, source/test/intltest/utxttest.h.
- CVE-2017-7867
- CVE-2017-7868
-- Marc Deslauriers <email address hidden> Tue, 02 May 2017 08:32:50 -0400
Available diffs
icu (55.1-7ubuntu0.2) xenial-security; urgency=medium
* SECURITY UPDATE: out-of-bounds write in common/utext.cpp
(LP: #1684298)
- debian/patches/CVE-2017-786x.patch: properly handle chunk size in
source/common/utext.cpp, added test to
source/test/intltest/utxttest.cpp, source/test/intltest/utxttest.h.
- CVE-2017-7867
- CVE-2017-7868
-- Marc Deslauriers <email address hidden> Tue, 02 May 2017 08:35:09 -0400
Available diffs
| Superseded in bionic-release |
| Obsolete in artful-release |
| Deleted in artful-proposed (Reason: moved to release) |
icu (57.1-6) unstable; urgency=high
* Backport upstream security fix for CVE-2017-7867 and CVE-2017-7868,
heap-buffer-overflow in utf8TextAccess (closes: #860314).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 16 Apr 2017 08:50:52 +0000
Available diffs
- diff from 57.1-5 to 57.1-6 (2.9 KiB)
icu (52.1-3ubuntu0.5) trusty-security; urgency=medium
* SECURITY UPDATE: Multiple security issues. Synchronize security fixes
with Debian's 52.1-8+deb8u4 release. Thanks to Laszlo Boszormenyi for
the work this update is based on.
- debian/patches/CVE-2014-9911.patch
- debian/patches/CVE-2015-4844.patch
- debian/patches/CVE-2016-0494.patch
- debian/patches/CVE-2016-6293.patch
- debian/patches/CVE-2016-7415.patch
- CVE-2014-9911
- CVE-2015-4844
- CVE-2016-0494
- CVE-2016-6293
- CVE-2016-7415
-- Marc Deslauriers <email address hidden> Fri, 10 Mar 2017 11:41:10 -0500
Available diffs
icu (4.8.1.1-3ubuntu0.7) precise-security; urgency=medium
* SECURITY UPDATE: Multiple security issues. Synchronize security fixes
with Debian's 4.8.1.1-12+deb7u6 release. Thanks to Roberto C. Sanchez
for the work this update is based on.
- debian/patches/CVE-2014-9911.patch
- debian/patches/CVE-2015-4844.patch
- debian/patches/CVE-2016-0494.patch
- debian/patches/CVE-2016-6293.patch
- debian/patches/CVE-2016-7415.patch
- CVE-2014-9911
- CVE-2015-4844
- CVE-2016-0494
- CVE-2016-6293
- CVE-2016-7415
-- Marc Deslauriers <email address hidden> Fri, 10 Mar 2017 11:43:22 -0500
Available diffs
icu (55.1-7ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: Multiple security issues. Synchronize security fixes
with Debian's 52.1-8+deb8u4 release. Thanks to Laszlo Boszormenyi for
the work this update is based on.
- debian/patches/CVE-2015-4844.patch
- debian/patches/CVE-2016-0494.patch
- debian/patches/CVE-2016-6293.patch
- debian/patches/CVE-2016-7415.patch
- CVE-2015-4844
- CVE-2016-0494
- CVE-2016-6293
- CVE-2016-7415
-- Marc Deslauriers <email address hidden> Fri, 10 Mar 2017 11:29:45 -0500
Available diffs
icu (57.1-4ubuntu0.1) yakkety-security; urgency=medium
* SECURITY UPDATE: stack-based buffer overflow via long locale string
- debian/patches/CVE-2016-7415.patch: use patch from 57.1-5.
- CVE-2016-7415
-- Marc Deslauriers <email address hidden> Fri, 10 Mar 2017 11:38:08 -0500
Available diffs
| Superseded in artful-release |
| Obsolete in zesty-release |
| Deleted in zesty-proposed (Reason: moved to release) |
icu (57.1-5) unstable; urgency=high
* Backport upstream fix for CVE-2016-7415: stack-based buffer overflow in
the Locale class via a long locale string (closes: #838694).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sat, 26 Nov 2016 10:58:31 +0000
Available diffs
- diff from 57.1-4 to 57.1-5 (2.1 KiB)
| Superseded in zesty-release |
| Obsolete in yakkety-release |
| Deleted in yakkety-proposed (Reason: moved to release) |
icu (57.1-4) unstable; urgency=high
* Backport upstream fix for CVE-2016-0494: integer signedness issue in
IndicRearrangementProcessor.
* Backport upstream fix for CVE-2016-6293: the uloc_acceptLanguageFromHTTP
function does not ensure that there is a '\0' character at the end of a
certain temporary array.
-- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 07 Sep 2016 22:17:44 +0000
Available diffs
- diff from 57.1-3 to 57.1-4 (3.8 KiB)
icu (57.1-3) unstable; urgency=low * Update libicu-dev dependency of libstdc++-dev (closes: #833938). -- Laszlo Boszormenyi (GCS) <email address hidden> Wed, 10 Aug 2016 16:57:09 +0000
Available diffs
- diff from 57.1-2 to 57.1-3 (516 bytes)
icu (57.1-2) unstable; urgency=medium
[ Helmut Grohne <email address hidden> ]
* Implement cross build support again for debhelper packaging
(closes: #833416).
-- Laszlo Boszormenyi (GCS) <email address hidden> Thu, 04 Aug 2016 04:57:45 +0000
Available diffs
- diff from 57.1-1 to 57.1-2 (1.0 KiB)
- diff from 57.1-1.1 to 57.1-2 (942 bytes)
icu (57.1-1.1) unstable; urgency=medium * Non-maintainer upload. * Upload to unstable. * Update Standars-Version to 3.9.8. -- Matthias Klose <email address hidden> Wed, 03 Aug 2016 20:49:39 +0200
Available diffs
- diff from 57.1-1 to 57.1-1.1 (557 bytes)
icu (57.1-1) experimental; urgency=low
* New major upstream release (closes: #804026).
* Update package names due to soname bump.
* Add icu-devtools debug package.
* Drop CVE-2015-2632.patch as this release contains it.
* Update patches.
* Keep rebuildable.
* Update Standars-Version to 3.9.7 .
[ Helmut Grohne <email address hidden> ]
* Move icu-config to a M-A:no package (closes: #776821).
+ Move icu-config from icu-devtools to libicu-dev.
+ Declare relevant Breaks and Replaces.
+ Remove Multi-Arch:same from libicu-dev.
[ Guido Günther <email address hidden> ]
* Add build and smoke autopkgtest (closes: #813338).
-- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 27 Mar 2016 10:46:16 +0000
Available diffs
- diff from 55.1-7 to 57.1-1 (5.0 MiB)
| Superseded in yakkety-release |
| Published in xenial-release |
| Deleted in xenial-proposed (Reason: moved to release) |
icu (55.1-7) unstable; urgency=high * Fix CVE-2015-2632 vulnerability. -- Laszlo Boszormenyi (GCS) <email address hidden> Sun, 03 Jan 2016 16:44:55 +0100
Available diffs
- diff from 55.1-6ubuntu1 (in Ubuntu) to 55.1-7 (956 bytes)
icu (55.1-6ubuntu1) xenial; urgency=medium
* Merge from Debian unstable, remaining changes:
- debian/patches/CVE-2015-2632.patch
Available diffs
- diff from 55.1-4ubuntu1 to 55.1-6ubuntu1 (1.3 KiB)
icu (4.8.1.1-3ubuntu0.6) precise-security; urgency=medium
* SECURITY UPDATE: information disclosure via overflows
- debian/patches/CVE-2015-2632.patch: properly calculate index in
source/layout/Features.cpp, check for overflows in
source/layout/LETableReference.h.
- CVE-2015-2632
* SECURITY UPDATE: denial of service and possible code execution via
overflows
- debian/patches/CVE-2015-4760.patch: check bounds in
source/layout/ContextualGlyphInsertionProc2.cpp,
source/layout/ContextualGlyphSubstProc.cpp,
source/layout/ContextualGlyphSubstProc2.cpp,
source/layout/IndicRearrangementProcessor.cpp,
source/layout/IndicRearrangementProcessor2.cpp,
use unsigned flags in source/layout/LigatureSubstProc.cpp,
source/layout/StateTables.h, properly handle errors in
source/layout/StateTableProcessor.cpp,
source/layout/StateTableProcessor2.cpp.
- CVE-2015-4760
-- Marc Deslauriers <email address hidden> Fri, 11 Sep 2015 09:29:59 -0400
Available diffs
icu (52.1-3ubuntu0.4) trusty-security; urgency=medium
* SECURITY UPDATE: denial of service via mishandling of converter names
with initial x- substrings
- debian/patches/CVE-2015-1270.patch: fix logic in
source/common/ucnv_io.cpp.
- CVE-2015-1270
* SECURITY UPDATE: information disclosure via overflows
- debian/patches/CVE-2015-2632.patch: properly calculate index in
source/layout/Features.cpp, check for overflows in
source/layout/LETableReference.h.
- CVE-2015-2632
* SECURITY UPDATE: denial of service and possible code execution via
overflows
- debian/patches/CVE-2015-4760.patch: check bounds in
source/layout/ContextualGlyphInsertionProc2.cpp,
source/layout/ContextualGlyphSubstProc.cpp,
source/layout/ContextualGlyphSubstProc2.cpp,
source/layout/IndicRearrangementProcessor.cpp,
source/layout/IndicRearrangementProcessor2.cpp,
use unsigned flags in source/layout/LigatureSubstProc.cpp,
source/layout/StateTables.h, properly handle errors in
source/layout/StateTableProcessor.cpp,
source/layout/StateTableProcessor2.cpp.
- CVE-2015-4760
-- Marc Deslauriers <email address hidden> Fri, 11 Sep 2015 09:28:05 -0400
Available diffs
icu (52.1-8ubuntu0.2) vivid-security; urgency=medium
* SECURITY UPDATE: denial of service via mishandling of converter names
with initial x- substrings
- debian/patches/CVE-2015-1270.patch: fix logic in
source/common/ucnv_io.cpp.
- CVE-2015-1270
* SECURITY UPDATE: information disclosure via overflows
- debian/patches/CVE-2015-2632.patch: properly calculate index in
source/layout/Features.cpp, check for overflows in
source/layout/LETableReference.h.
- CVE-2015-2632
* SECURITY UPDATE: denial of service and possible code execution via
overflows
- debian/patches/CVE-2015-4760.patch: check bounds in
source/layout/ContextualGlyphInsertionProc2.cpp,
source/layout/ContextualGlyphSubstProc.cpp,
source/layout/ContextualGlyphSubstProc2.cpp,
source/layout/IndicRearrangementProcessor.cpp,
source/layout/IndicRearrangementProcessor2.cpp,
use unsigned flags in source/layout/LigatureSubstProc.cpp,
source/layout/StateTables.h, properly handle errors in
source/layout/StateTableProcessor.cpp,
source/layout/StateTableProcessor2.cpp.
- CVE-2015-4760
-- Marc Deslauriers <email address hidden> Fri, 11 Sep 2015 08:47:49 -0400
Available diffs
| 1 → 75 of 161 results | First • Previous • Next • Last |
