Hello, kdenetwork 4:3.3.2-3, replacing 4:3.3.2-1 in Sarge, fixes a number of bugs, including several that are RC. These packages have been in Sid for some time, but held out due to missing buildds, so they've proven themselves solid. The most recent upload, from late April, contained only packaging changes: kdenetwork (4:3.3.2-3) unstable; urgency=high * Urgency high because we fix a recently discovered FTBFS that prevents the previous medium-urgency upload to migrate to testing. Only debian/control is changed in this upload. +++ Changes by Adeodato Simó: * xmms-dev has recently moved from depending on xlibs-dev to specifying the exact list of development libraries needed (see Bug#302059), which makes kdenetwork fail to build from source now, Add libxtst-dev to Build-Depends. (Closes: #305942) * Make ksirc recommend libio-socket-ssl-perl, so that SSL connections work. Mention this in the package description. (Closes: #294331) -- Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org> Sat, 23 Apr 2005 04:51:30 +0200 kdenetwork (4:3.3.2-2) unstable; urgency=medium +++ Changes by Christopher Martin: * KDE_3_3_BRANCH update. Kopete loses rich-text support in ICQ, but works around an exploitable crash when contacted by icq5 clients. Bump urgency to medium since these fixes are RC. (Closes: #295265, #297861) * Change kopete's section to kde. (Closes: #292398) * Include the GFDL in debian/copyright, since the Handbooks are licensed under it. * Daniel Stone has kindly relicensed man pages written by him from GDFL to GPL, update copyright notice in kopete.1. +++ Changes by Adeodato Simó: * kopete no longer depends on XMMS, which it did simply because the Now Listening plugin was linked against libxmms. Added a patch to dlopen libxmms at runtime and use it if present, so that the plugin remains functional even if XMMS is not installed. (Closes: #238368, #276586, #292963, #293191) -- Debian Qt/KDE Maintainers <debian-qt-kde@lists.debian.org> Wed, 30 Mar 2005 11:49:58 +0200 As for kdelibs, the sole change between 4:3.3.2-5 and 4:3.3.2-6 is that we added a very small patch (from upstream) to upstream's latest security fix, which caused regressions reading some image files. Definitely worth getting into Sarge, even if the problem doesn't seem to have security implications. 23_kimgio_fix.diff --- kde.orig/kimgio/rgb.cpp +++ kde.patched/kimgio/rgb.cpp @@ -272,7 +272,8 @@ bool SGIImage::readImage(QImage& img) // sanity ckeck if (m_rle) for (uint o = 0; o < m_numrows; o++) - if (m_starttab[o] + m_lengthtab[o] >= m_data.size()) { + // do not convert to >= + if (m_starttab[o] + m_lengthtab[o] > m_data.size()) { kdDebug(399) << "image corrupt (sanity check failed)" << endl; return false; } Thanks for all your work, Christopher Martin
Attachment:
pgpfS4NzmOnCs.pgp
Description: PGP signature