diff options
author | Henning Makholm <henning@makholm.net> | 2009-07-01 18:00:00 (EDT) |
---|---|---|
committer | Julien Jorge <julien.jorge@stuff-o-matic.com> | 2013-01-10 16:10:03 (EST) |
commit | 70a9b1ca8750a43e8092807d174a8c49407aa213 (patch) | |
tree | 78e1cbff8e9750d918c4bc8782086fc37306492a /ChangeLog | |
parent | c60d2efdeaa61c5e8a930f9635548f5abaf201b3 (diff) | |
download | xcftools-70a9b1ca8750a43e8092807d174a8c49407aa213.zip xcftools-70a9b1ca8750a43e8092807d174a8c49407aa213.tar.gz xcftools-70a9b1ca8750a43e8092807d174a8c49407aa213.tar.bz2 |
Import of release 1.0.5
Diffstat (limited to 'ChangeLog')
-rw-r--r-- | ChangeLog | 17 |
1 files changed, 17 insertions, 0 deletions
@@ -1,3 +1,20 @@ +2009-07-02 Henning Makholm <henning@makholm.net> + + * Version 1.0.5 + * Fix various bugs if extracted part of image contains pixels with + negative canvas-based coordinates. Thanks to J\"orgen Grahn for + reporting these. (Debian bug #533361). + * One of the fixed bugs was a buffer overrun which would allow a + remote attacker to execute arbitrary if he could trick a user + into converting an appropriately crafted XCF file with either + the -C or the -O option. CVE-2009-2175. + * Fix another bug with interpretation of -C flag, which would + convert the *intersection* of the visible layers rather than + their *union*, as intended. Did I ever test this stuff? + * Minor manpage fixes; -C description should be less confusing now. + * Apply patch from Marcus Alanen for easier RPM packaging: + $(DESTDIR) honored in Makefile's install target, spec file added. + 2006-05-14 Henning Makholm <henning@makholm.net> * Version 1.0.4 |